Marco Luisi | Università degli Studi "La Sapienza" di Roma (original) (raw)

Uploads

Papers by Marco Luisi

Research paper thumbnail of GDPR as a Global Standards? Brussels' Instrument of Policy Diffusion

This study applies the same method on a sample of 58 non-EU national privacy acts published and e... more This study applies the same method on a sample of 58 non-EU national privacy acts published and enforced between 2016 (the year the GDPR was published) and 2020. The timeframe appears drastically shorter than the one opted by Greenleaf. This however is counterbalanced by the higher concentration of legislations issued in this shorter period. The parameters for comparison were increased to 11 to include the appointment of a Data Protection Officer (DPO), which is arguably another key element that distinguished the GDPR from the previously existing frameworks. The remaining 10 are consistent with the Greenleaf (2012) study. These are: 1) appointment of an independent Data Protection Authority (DPA); 2) possibility to appeal to a court to enforce one’s privacy rights; 3) sufficient measures of data protection for cross-border data transfer; 4) principles of purpose limitation and data minimization; 5) a general definition of what does it mean to collect and process data fairly and lawf...

Research paper thumbnail of GDPR as a Global Standards? Brussels' Instrument of Policy Diffusion

This study applies the same method on a sample of 58 non-EU national privacy acts published and e... more This study applies the same method on a sample of 58 non-EU national privacy acts published and enforced between 2016 (the year the GDPR was published) and 2020. The timeframe appears drastically shorter than the one opted by Greenleaf. This however is counterbalanced by the higher concentration of legislations issued in this shorter period. The parameters for comparison were increased to 11 to include the appointment of a Data Protection Officer (DPO), which is arguably another key element that distinguished the GDPR from the previously existing frameworks. The remaining 10 are consistent with the Greenleaf (2012) study. These are: 1) appointment of an independent Data Protection Authority (DPA); 2) possibility to appeal to a court to enforce one’s privacy rights; 3) sufficient measures of data protection for cross-border data transfer; 4) principles of purpose limitation and data minimization; 5) a general definition of what does it mean to collect and process data fairly and lawf...

Log In