NRIs Collaborative Session on Data Protection

NRIs Collaborative Session: Data Protection on national and regional levels

 

Theme: Data Governance

Sub-theme: Algorithms/Artificial Intelligence/Machine Learning; Cross-border data; Data Privacy; Human Rights.

Policy Questions: 

 

  • Are there concrete data protection policies in NRIs countries and regions?
  • What are the issues of relevance for your communities?
  • How can we develop internationally accepted standards on data protection?

Relevance to Theme and Internet Governance: Data protection is directly related to the human rights and protection of privacy of people. Related policies and laws are emerging in many countries, while we lack internationally accepted standards and policies.

Description: This session will focus on concrete case study examples of what are the data protection concerns for involved countries and regions, what has been done so far in regard to addressing these and providing solutions. All participants will focus on modes of digital cooperation for the safe and secure Internet. In particular, the session will address the quality of existing policies on national/regional levels, and the consequences these produce after been applied.

Format of the Session: Interactive roundtable discussion

Expected Outcomes:  The session aims to showcase concrete issues local communities have related to data protection, and will produce a set of concrete messages on what are the issues and how to potentially resolve them.

Discussion Facilitation: The moderator will follow the agreed set of policy and will allow for introductory, case study remarks by the NRIs speakers. This will be followed by engaging other present participants into developing an interactive discussion.

Online participation: A dedicated online moderator will be placed next to the onsite moderator. All participants will be using the online speaking queue to be treated equally in their requests for interventions. All input presentation will be made available at the IGF website and links will be shared via the online tool.

Co-Organizers:

  1. Kenya IGF
  2. Sudan IGF
  3. Panama IGF
  4. Burkina Faso IGF
  5. South Korea IGF
  6. North Macedonia IGF 
  7. South Sudan IGF

Speakers: Speakers to be delegated through an open, bottom-up process by the NRIs multistakeholder organizing committees.

Connection to SDGs:

GOAL 10: Reduced Inequality

GOAL 16: Peace and Justice Strong Institutions

GOAL 17: Partnerships to achieve the Goal

1. Key Policy Questions and Expectations
  • Are there concrete data protection policies in NRIs countries and regions?
  • What are the issues of relevance for your communities?
  • How can we develop internationally accepted standards on data protection?

Elaborations on these questions available at: https://docs.google.com/document/d/1GJxPYtNNbvQSSdg-4AIHFVoZlbbm1S1lK2d…

2. Summary of Issues Discussed

The panel made an important input on the fact that the government should take a higher responsibility and initiative for tackling data protection issues. It was mentioned the fact that there should be more pressure on policymakers and politicians to adopt and update Data Protection Laws. The adoption of the International Common Standard to all regions, that would increase, develop and foster economies, as underlined as important. One must mention that these standards must follow the principles laid out in the 2009 Madrid Declaration of The ICDPPC and The Resolution On The Promotion Of New And Long-term Practical Instruments And Continued Legal Efforts For Effective Cooperation In Cross-border Enforcement 41st International Conference Of Data Protection And Privacy Commissioners October 2019, Tirana, Albania. As an example a multi-stakeholder can be an approach to adopt those common standards. Increase the level independence of the bodies that regulate data protection subject rights. In that sense, we need more dialogue between IGF and ICDPPC (now the Global Privacy Assembly). 

3. Policy Recommendations or Suggestions for the Way Forward

The panel made an important input on the fact that the government should take a higher responsibility and initiative for tackling data protection issues. It was mentioned the fact that there should be more pressure on policymakers and politicians to adopt and update Data Protection Laws. Another remark made by North Macedonia IGF was the adoption of the International Common Standard to all regions, that would increase, develop and foster economies. One must mention that these standards must follow the principles laid out in the 2009 Madrid Declaration Of The ICDPPC And The Resolution On The Promotion Of New And Long-term Practical Instruments And Continued Legal Efforts For Effective Cooperation In Cross-border Enforcement 41st International Conference Of Data Protection And Privacy Commissioners October 2019, Tirana, Albania. As an example, a multi-stakeholder can be an approach to adopt those common standards. Increase the level of independence of the bodies that regulate data protection subject rights. In that sense speaking, we need more dialogue between IGF and ICDPPC (now the Global Privacy Assembly). 

4. Other Initiatives Addressing the Session Issues

North Macedonia IGF mentioned some of the initiatives she took the lead on the research of data protection legislation breaches. The training at the Startup Space Community Center on GDPR. SMEs and Startups showed the result that the business sector is more aware of this problem than the public sector. And ironically enough they are the biggest data processors. 

5. Making Progress for Tackled Issues

During the session, the panel mentioned that the governments and legislators have to take responsibility to ensure a good legal framework for unlawful data collection and processing. The challenges is that there are DPOs - data protection officers, but no Information Security officers. On the main issues tackled the progress might be achieved by cross-border partnerships and collaborations to achieve the main goal, for standardizing data protection regulations.

Data protection should remain a major focus of IGF and of NRIs sessions in the future. NRIs are important fora where civil society can discuss and monitor progress made in data protection legislation, but also hold data protection authorities to account.

Unlike ICDPPC, the IGF is good at bringing together the international civil society. However, partnerships between the network of NRIs and DPAs on the issues of data protection may need to be reinforced in the future.

6. Estimated Participation

There were about 35 onsite participants.

There were about 15 women present.

7. Reflection to Gender Issues

IGF north Macedonia mentioned a fact to analyzed the profile of nominated DPOs in public and private entities and over 65% are women. Apartnership meeting with the President of the Women Entrepreneurs was established. There is  Women Empowerment and a High Level of accountability when a Woman is Managing Personal Data.