The aim of this paper is to analyse national Member States’ laws that have implemented the GDPR in the field of automated decision-making (prohibition, exceptions, safeguards): all national legislations have been analysed and in particular 9 Member States Law address the case of automated decision making providing specific exemptions and relevant safeguards, as requested by Article 22(2)(b) of the GDPR (Belgium, The Netherlands, France, Germany, Hungary, Slovenia, Austria, the United Kingdom, Ireland).
Mapping CJEU limits on data retention frameworks
Since the 2014 invalidation of the Data Retention Directive, EU retention law is fragmented; CJEU/ECtHR require necessity, proportionality, safeguards, and […]