Document Actions

Citation and metadata

Recommended citation

Bernold Nieuwesteeg, Quantifying Key Characteristics of 71 Data Protection Laws, 7 (2017) JIPITEC 182 para 1.

Download Citation

Endnote

%0 Journal Article
%T Quantifying Key Characteristics of 71 Data Protection Laws
%A Nieuwesteeg, Bernold
%J JIPITEC
%D 2017
%V 7
%N 3
%@ 2190-3387
%F nieuwesteeg2017
%X This paper presents a pioneering study that unlocks six characteristics in the literal text of 71 Data Protection Laws (DPLs). The characteristics are: the type of collection requirements; the presence of data protection authorities; data protection officers; data breach notification laws; monetary-; and criminal penalties. The quantification allows comparison of data protection laws with each other, such as a potential federal U.S. DPL with European DPLs. It can also be used for empirical legal research in information security by linking the data to other variables, for instance, deep packet inspection. There are some noteworthy initial results: only 5 out of 71 DPLs have penalties for non-compliance that exceed 1 million euro. Moreover, compared to the United States (US), few countries (21 out of 71) have data breach notification laws. Principal component analysis reveals that the six characteristics can be grouped in two unobserved factors, which explain ‘basic characteristics’ across laws and ‘add-ons’ to these characteristics. By combining these two factors a privacy index is constructed. Moreover, countries that are not known for their stringent privacy control such as Mauritius and Mexico occupy a top position in this index. Member States of the European Union have DPLs with a privacy control score above average but hold no absolute top position. It is hoped that these findings will open avenues for new research, such as adding more characteristics to the database and further quantification of (internet) law.
%L 340
%K Data Protection Laws
%K comparative law
%K empirical legal analysis
%K privacy control
%K quantitative text analysis
%U http://nbn-resolving.de/urn:nbn:de:0009-29-45103
%P 182-203

Download

Bibtex

@Article{nieuwesteeg2017,
  author = 	"Nieuwesteeg, Bernold",
  title = 	"Quantifying Key Characteristics of 71 Data Protection Laws",
  journal = 	"JIPITEC",
  year = 	"2017",
  volume = 	"7",
  number = 	"3",
  pages = 	"182--203",
  keywords = 	"Data Protection Laws; comparative law; empirical legal analysis; privacy control; quantitative text analysis",
  abstract = 	"This paper presents a pioneering study that unlocks six characteristics in the literal text of 71 Data Protection Laws (DPLs). The characteristics are: the type of collection requirements; the presence of data protection authorities; data protection officers; data breach notification laws; monetary-; and criminal penalties. The quantification allows comparison of data protection laws with each other, such as a potential federal U.S. DPL with European DPLs. It can also be used for empirical legal research in information security by linking the data to other variables, for instance, deep packet inspection. There are some noteworthy initial results: only 5 out of 71 DPLs have penalties for non-compliance that exceed 1 million euro. Moreover, compared to the United States (US), few countries (21 out of 71) have data breach notification laws. Principal component analysis reveals that the six characteristics can be grouped in two unobserved factors, which explain `basic characteristics' across laws and `add-ons' to these characteristics. By combining these two factors a privacy index is constructed. Moreover, countries that are not known for their stringent privacy control such as Mauritius and Mexico occupy a top position in this index. Member States of the European Union have DPLs with a privacy control score above average but hold no absolute top position. It is hoped that these findings will open avenues for new research, such as adding more characteristics to the database and further quantification of (internet) law.",
  issn = 	"2190-3387",
  url = 	"http://nbn-resolving.de/urn:nbn:de:0009-29-45103"
}

Download

RIS

TY  - JOUR
AU  - Nieuwesteeg, Bernold
PY  - 2017
DA  - 2017//
TI  - Quantifying Key Characteristics of 71 Data Protection Laws
JO  - JIPITEC
SP  - 182
EP  - 203
VL  - 7
IS  - 3
KW  - Data Protection Laws
KW  - comparative law
KW  - empirical legal analysis
KW  - privacy control
KW  - quantitative text analysis
AB  - This paper presents a pioneering study that unlocks six characteristics in the literal text of 71 Data Protection Laws (DPLs). The characteristics are: the type of collection requirements; the presence of data protection authorities; data protection officers; data breach notification laws; monetary-; and criminal penalties. The quantification allows comparison of data protection laws with each other, such as a potential federal U.S. DPL with European DPLs. It can also be used for empirical legal research in information security by linking the data to other variables, for instance, deep packet inspection. There are some noteworthy initial results: only 5 out of 71 DPLs have penalties for non-compliance that exceed 1 million euro. Moreover, compared to the United States (US), few countries (21 out of 71) have data breach notification laws. Principal component analysis reveals that the six characteristics can be grouped in two unobserved factors, which explain ‘basic characteristics’ across laws and ‘add-ons’ to these characteristics. By combining these two factors a privacy index is constructed. Moreover, countries that are not known for their stringent privacy control such as Mauritius and Mexico occupy a top position in this index. Member States of the European Union have DPLs with a privacy control score above average but hold no absolute top position. It is hoped that these findings will open avenues for new research, such as adding more characteristics to the database and further quantification of (internet) law.
SN  - 2190-3387
UR  - http://nbn-resolving.de/urn:nbn:de:0009-29-45103
ID  - nieuwesteeg2017
ER  - 
Download

Wordbib

<?xml version="1.0" encoding="UTF-8"?>
<b:Sources SelectedStyle="" xmlns:b="http://schemas.openxmlformats.org/officeDocument/2006/bibliography"  xmlns="http://schemas.openxmlformats.org/officeDocument/2006/bibliography" >
<b:Source>
<b:Tag>nieuwesteeg2017</b:Tag>
<b:SourceType>ArticleInAPeriodical</b:SourceType>
<b:Year>2017</b:Year>
<b:PeriodicalTitle>JIPITEC</b:PeriodicalTitle>
<b:Volume>7</b:Volume>
<b:Issue>3</b:Issue>
<b:Url>http://nbn-resolving.de/urn:nbn:de:0009-29-45103</b:Url>
<b:Pages>182-203</b:Pages>
<b:Author>
<b:Author><b:NameList>
<b:Person><b:Last>Nieuwesteeg</b:Last><b:First>Bernold</b:First></b:Person>
</b:NameList></b:Author>
</b:Author>
<b:Title>Quantifying Key Characteristics of 71 Data Protection Laws</b:Title>
<b:Comments>This paper presents a pioneering study that unlocks six characteristics in the literal text of 71 Data Protection Laws (DPLs). The characteristics are: the type of collection requirements; the presence of data protection authorities; data protection officers; data breach notification laws; monetary-; and criminal penalties. The quantification allows comparison of data protection laws with each other, such as a potential federal U.S. DPL with European DPLs. It can also be used for empirical legal research in information security by linking the data to other variables, for instance, deep packet inspection. There are some noteworthy initial results: only 5 out of 71 DPLs have penalties for non-compliance that exceed 1 million euro. Moreover, compared to the United States (US), few countries (21 out of 71) have data breach notification laws. Principal component analysis reveals that the six characteristics can be grouped in two unobserved factors, which explain ‘basic characteristics’ across laws and ‘add-ons’ to these characteristics. By combining these two factors a privacy index is constructed. Moreover, countries that are not known for their stringent privacy control such as Mauritius and Mexico occupy a top position in this index. Member States of the European Union have DPLs with a privacy control score above average but hold no absolute top position. It is hoped that these findings will open avenues for new research, such as adding more characteristics to the database and further quantification of (internet) law.</b:Comments>
</b:Source>
</b:Sources>
Download

ISI

PT Journal
AU Nieuwesteeg, B
TI Quantifying Key Characteristics of 71 Data Protection Laws
SO JIPITEC
PY 2017
BP 182
EP 203
VL 7
IS 3
DE Data Protection Laws; comparative law; empirical legal analysis; privacy control; quantitative text analysis
AB This paper presents a pioneering study that unlocks six characteristics in the literal text of 71 Data Protection Laws (DPLs). The characteristics are: the type of collection requirements; the presence of data protection authorities; data protection officers; data breach notification laws; monetary-; and criminal penalties. The quantification allows comparison of data protection laws with each other, such as a potential federal U.S. DPL with European DPLs. It can also be used for empirical legal research in information security by linking the data to other variables, for instance, deep packet inspection. There are some noteworthy initial results: only 5 out of 71 DPLs have penalties for non-compliance that exceed 1 million euro. Moreover, compared to the United States (US), few countries (21 out of 71) have data breach notification laws. Principal component analysis reveals that the six characteristics can be grouped in two unobserved factors, which explain ‘basic characteristics’ across laws and ‘add-ons’ to these characteristics. By combining these two factors a privacy index is constructed. Moreover, countries that are not known for their stringent privacy control such as Mauritius and Mexico occupy a top position in this index. Member States of the European Union have DPLs with a privacy control score above average but hold no absolute top position. It is hoped that these findings will open avenues for new research, such as adding more characteristics to the database and further quantification of (internet) law.
ER

Download

Mods

<mods>
  <titleInfo>
    <title>Quantifying Key Characteristics of 71 Data Protection Laws</title>
  </titleInfo>
  <name type="personal">
    <namePart type="family">Nieuwesteeg</namePart>
    <namePart type="given">Bernold</namePart>
  </name>
  <abstract>This paper presents a pioneering study that unlocks six characteristics in the literal text of 71 Data Protection Laws (DPLs). The characteristics are: the type of collection requirements; the presence of data protection authorities; data protection officers; data breach notification laws; monetary-; and criminal penalties. The quantification allows comparison of data protection laws with each other, such as a potential federal U.S. DPL with European DPLs. It can also be used for empirical legal research in information security by linking the data to other variables, for instance, deep packet inspection. There are some noteworthy initial results: only 5 out of 71 DPLs have penalties for non-compliance that exceed 1 million euro. Moreover, compared to the United States (US), few countries (21 out of 71) have data breach notification laws. Principal component analysis reveals that the six characteristics can be grouped in two unobserved factors, which explain ‘basic characteristics’ across laws and ‘add-ons’ to these characteristics. By combining these two factors a privacy index is constructed. Moreover, countries that are not known for their stringent privacy control such as Mauritius and Mexico occupy a top position in this index. Member States of the European Union have DPLs with a privacy control score above average but hold no absolute top position. It is hoped that these findings will open avenues for new research, such as adding more characteristics to the database and further quantification of (internet) law.</abstract>
  <subject>
    <topic>Data Protection Laws</topic>
    <topic>comparative law</topic>
    <topic>empirical legal analysis</topic>
    <topic>privacy control</topic>
    <topic>quantitative text analysis</topic>
  </subject>
  <classification authority="ddc">340</classification>
  <relatedItem type="host">
    <genre authority="marcgt">periodical</genre>
    <genre>academic journal</genre>
    <titleInfo>
      <title>JIPITEC</title>
    </titleInfo>
    <part>
      <detail type="volume">
        <number>7</number>
      </detail>
      <detail type="issue">
        <number>3</number>
      </detail>
      <date>2017</date>
      <extent unit="page">
        <start>182</start>
        <end>203</end>
      </extent>
    </part>
  </relatedItem>
  <identifier type="issn">2190-3387</identifier>
  <identifier type="urn">urn:nbn:de:0009-29-45103</identifier>
  <identifier type="uri">http://nbn-resolving.de/urn:nbn:de:0009-29-45103</identifier>
  <identifier type="citekey">nieuwesteeg2017</identifier>
</mods>
Download

Full Metadata

JIPITEC – Journal of Intellectual Property, Information Technology and E-Commerce Law
Article search
Extended article search
Newsletter
Subscribe to our newsletter
Follow Us
twitter
 
Navigation