Docsity
Log inSign up
Docsity
Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity

Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan

Guidelines and tips
Guidelines and tips
Sell on Docsity
Sell on Docsity
Log inSign up

Prepare for your exams

Study with the several resources on Docsity

Find documents

Prepare for your exams with the study notes shared by other students like you on Docsity

Search Store documents

The best documents sold by students who completed their studies

Search through all study resources
Docsity AINEW

Summarize your documents, ask them questions, convert them into quizzes and concept maps

Explore questions

Clear up your doubts by reading the answers to questions asked by your fellow students

Earn points to download

Earn points by helping other students or get them with a premium plan

Share documents
download point icon20 Points

For each uploaded document

Answer questions
download point icon5 Points

For each given answer (max 1 per day)

All the ways to get free points
Get points immediately

Choose a premium plan with all the points you need

Study Opportunities

Choose your next study program

Get in touch with the best universities in the world. Search through thousands of universities and official partners

Community

Ask the community

Ask the community for help and clear up your study doubts

University Rankings

Discover the best universities in your country according to Docsity users

Free resources

Our save-the-student-ebooks!

Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors

From our blog

Exams and Study
Go to the blog

Data Protection Recommendation for Personal Data Communication by Public Bodies, Study notes of Human Rights

Richmond, The American International University in London (RAiUL)Human Rights

A memorandum from the Committee of Ministers to member states regarding the communication of personal data held by public bodies to third parties. It discusses the need for data protection policies and safeguards in the context of new trends in electronic data handling and the risks of profiling and misuse of personal information. The document emphasizes the importance of a legal framework for personal data communication and the need for consistency in approach.

Typology: Study notes

2021/2022

Uploaded on 09/27/2022

arwen
arwen 🇬🇧

4.3

(10)

249 documents

1 / 19

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Explanatory Memorandum
Recommendation No.R (91) 10 of the Committee of Ministers to Member States on
the communication to third parties of personal data held by public bodies
(Adopted by the Committee of Ministers on 9 September 1991 at the 461st meeting of the
Ministers' Deputies)
Preamble - The issues explained
1. "Greater unity between its members" - the aim of the Council of Europe - may be
furthered in a range of different ways. Article 1 of the Statute of the Organisation makes
specific reference to the Council of Europe's mission in maintaining and promoting
human rights and fundamental freedoms as a way of achieving this "greater unity".
2. This recommendation falls squarely within this role. It is a human rights instrument. It
is concerned with the circulation of information within society and at the same time with
the protection of the private life of the individual. In other words, Article8 (the right to
private life) and Article 10 (freedom of expression) of the European Convention on
Human Rights underlie the approach which motivates the various principles contained in
the recommendation.
3. It is against this human rights background that references are made in the preamble to
certain key legal instruments adopted by the Committee of Ministers of the Council of
Europe in the field of both general information policy as well as privacy policy:
Recommendation No. R (81) 19, the Declaration of the Committee of Ministers of 29
April 1982, the Data Protection Convention of 28 January 1981. All these legal
instruments are designed to promote further (and reconcile) the fundamental freedoms
spelt out in Articles 8 and 10 of the European Convention on Human Rights.
4. Freedom of information policy and privacy policy may compete for priority. The
application of each of these fundamental values must be premised on respect for its
counterpart. Reconciliation is sometimes necessary. This is why, for example, the
implementation of freedom of information policy contained in Recommendation No.
R(81) 19 is made subject to the need to respect, inter alia, the private life of the
individual. From the privacy point of view, the implementation of data protection policy
must, as is declared in the preamble to the Data Protection Convention, take account of
the need "... to reconcile the fundamental values of respect for privacy and the free flow
of information between peoples". For the intergovernmental Committee of Experts on
Data Protection, the drafters of this legal instrument, freedom of information policy and
data protection are not necessarily conflicting values. Data protection is to be seen as
consistent with the broader aspects of information policy within society. It does not seek
to place a priori restrictions on the circulation of personal information within society.
Rather, the principles of data protection seek to determine the conditions under which
personal data may be collected, processed and communicated to third parties, and used by
them.
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13

Partial preview of the text

Download Data Protection Recommendation for Personal Data Communication by Public Bodies and more Study notes Human Rights in PDF only on Docsity!

Explanatory Memorandum Recommendation No.R (91) 10 of the Committee of Ministers to Member States on the communication to third parties of personal data held by public bodies

(Adopted by the Committee of Ministers on 9 September 1991 at the 461st meeting of the Ministers' Deputies)

Preamble - The issues explained

  1. "Greater unity between its members" - the aim of the Council of Europe - may be furthered in a range of different ways. Article 1 of the Statute of the Organisation makes specific reference to the Council of Europe's mission in maintaining and promoting human rights and fundamental freedoms as a way of achieving this "greater unity".
  2. This recommendation falls squarely within this role. It is a human rights instrument. It is concerned with the circulation of information within society and at the same time with the protection of the private life of the individual. In other words, Article 8 (the right to private life) and Article 10 (freedom of expression) of the European Convention on Human Rights underlie the approach which motivates the various principles contained in the recommendation.
  3. It is against this human rights background that references are made in the preamble to certain key legal instruments adopted by the Committee of Ministers of the Council of Europe in the field of both general information policy as well as privacy policy: Recommendation No. R (81) 19, the Declaration of the Committee of Ministers of 29 April 1982, the Data Protection Convention of 28 January 1981. All these legal instruments are designed to promote further (and reconcile) the fundamental freedoms spelt out in Articles 8 and 10 of the European Convention on Human Rights.
  4. Freedom of information policy and privacy policy may compete for priority. The application of each of these fundamental values must be premised on respect for its counterpart. Reconciliation is sometimes necessary. This is why, for example, the implementation of freedom of information policy contained in Recommendation No. R (81) 19 is made subject to the need to respect, inter alia, the private life of the individual. From the privacy point of view, the implementation of data protection policy must, as is declared in the preamble to the Data Protection Convention, take account of the need "... to reconcile the fundamental values of respect for privacy and the free flow of information between peoples". For the intergovernmental Committee of Experts on Data Protection, the drafters of this legal instrument, freedom of information policy and data protection are not necessarily conflicting values. Data protection is to be seen as consistent with the broader aspects of information policy within society. It does not seek to place a priori restrictions on the circulation of personal information within society. Rather, the principles of data protection seek to determine the conditions under which personal data may be collected, processed and communicated to third parties, and used by them.
  1. It should be stressed at the outset that the aim of this recommendation is not to promote transparency within public administration or open government or to encourage freedom of information. The desirability of making public bodies accountable by means of freedom of information principles is already catered for in Recommendation No. R (81) 19 of the Committee of Ministers.

The sort of principles advocated in Recommendation No. R (81) 19 are reflected in a number of national legal systems - for example, general laws on access to public sector information exist in Austria, Denmark, Finland, France, Greece, Netherlands, Norway and Sweden. Other countries envisage access to certain categories of public sector information. The drafters of this text are primarily concerned with the way in which the openness principle - whether in the context of a general law or a sectoral law - interacts with the protection to be accorded to the private life of the individual whose personal data may be communicated to third parties following an access request. Moreover, if personal information must be collected, stored and used by public bodies in accordance with general data protection policy and if, as noted earlier (paragraph 4), data protection policy does not block a priori the communication of personal data by public bodies to requesting third parties under access legislation, how are the conditions for communication to be determined?

  1. Furthermore, a complete approach to personal data or personal data file communication by public bodies to third parties may not be limited solely to situations foreseen in provisions governing access to public sector information. The recommendation is also concerned with those many situations in which public bodies collect and store various categories of personal data with a view to their being made accessible to third parties in accordance with the whole range of legal provisions governing accessibility. In particular, the recommendation addresses those categories of so-called "public files" which contain personal data which are published in accordance with the law. Such files - examples are provided in paragraph 24 of this commentary - are available for public consultation and the data contained in them may be communicated to third parties.
  2. The data protection concerns of the drafters of this recommendation are being expressed in the context of new trends in the handling of personal data or personal data files by public bodies - namely the electronic delivery of personal data or personal data files to requesting third parties, which has been made possible by virtue of the fact that data processing technology has allowed public bodies to store the data which they collect on electronic files. Given the fact that the interventionist and regulatory nature of public powers touches the lives of every citizen, it is not surprising that the databases held by public bodies contain massive quantities of personal information The richness of this information is, not surprisingly, of great interest to third parties, particularly commercial enterprises working within the private sector.
  3. As the preamble notes, there is an increasing tendency on the part of the private sector to exploit personal data or personal data files held by public bodies in order to further marketing campaigns, plan economic strategy, target possible consumer populations,

legal provisions on publicity - the drafters of the recommendation are seeking to emphasise that a legal framework is essential before any communication may be effected. In so doing, they are seeking to avoid the existence of a grey zone, or a situation between law and non-law, wherein vague administrative practices or policies operate. It may be noted in passing that the sort of action which is proposed in this recommendation is consistent with the conclusions which emerged from the conference organised jointly between the Council of Europe and the Commission of the European Communities (Luxembourg, 27-28 March 1990) which dealt, inter alia, with the question of access to public sector information in the new automated environment.

Operative part - Sort of action which could be taken

  1. As with the previous recommendations which it has elaborated for particular sectors, the Committee of Experts on Data Protection is once again offering a body of data protection principles for the benefit of national policy makers for a new context in which data processing technology has intervened to create new risks for the privacy of the individual. The principles contained in the appendix to the recommendation may in many ways be regarded as a counterpart to the Guidelines produced by the Commission of the European Communities for improving synergy between the public and private sectors in the information market. It is to be noted that these Guidelines alert public administrations to the need to protect "legitimate public or private interests" in implementing the policy outlined in the Guidelines. In addition to information to which access may be restricted for reasons of national security, external relations, commercial confidentiality, etc, the Guidelines also recognise that the protection of personal privacy and personal data is a legitimate reason for refusing to make available to third parties information held by public bodies. It is possible therefore to view the corpus of principles offered by the Committee of Experts on Data Protection as detailed guidance on how that need may be realised in practice by the governments of Community member states - as well as non Community members of course.
  2. The importance of the role of national data protection authorities in applying these principles is also noted in the operative part of the recommendation. Some such authorities have already shown their readiness to place limitations on the use which may be made by public bodies of the personal data which they collect and which may be accessible to third parties. In addition, the recommendation also seeks to bring authorities established under provisions governing access to public sector information into the scheme of protection advocated in this recommendation. As is shown later in the text, a cross-fertilisation of the role of these agencies and the competence of data protection authorities is encouraged so as to ensure consistency of approach to the communication of personal data or personal data files by public bodies to third parties.

APPENDIX TO THE RECOMMENDATION

1. Scope and definitions

  1. As noted in the preamble, the principles contained in the recommendation cover the totality of personal data which are collected by public bodies and which may be communicated to third parties. The text of Principle 1.1 avoids making any reference to the need for such data to be collected by public bodies in the discharge of their official functions. While it goes without saying that public bodies should only collect and store personal data for specific and lawful purposes linked to their authorised tasks, the drafters of the recommendation feel that it is worthwhile to include within its scope all personal data collected and held by public bodies which may be communicated to third parties.
  2. Principle 1.1 emphasises that the recommendation is primarily concerned with personal data which are automatically processed by public bodies. This is consistent with the main concern which motivates the need for this recommendation, namely the electronic storage and communication of personal data to third parties by telematic means. Nevertheless, as noted in Principle 1.2, member states may extend the recommendation's principles to personal data which are held by public bodies in manual form. This flexibility is important since various categories of data held by public bodies may exist in both automated form as well as in hard copy. For example, the telephone directory - a personal data file for the purposes of this recommendation - exists both in hard copy form as well as in electronic form. It may also be noted in passing that the data protection legislation of a number of member states covers both automatic as well as manual processing.
  3. Similarly, freedom to extend the scope of the recommendation applies to data concerning corporate bodies, groups, associations, etc, even though they do not possess legal personality in accordance with domestic company law. Much of the information held by public bodies concerns such entities. Reference may be made to files accessible to third parties such as companies' or commercial registers. This is an important factor to be borne in mind by policy makers whose data protection regimes cover both natural and legal persons, as well as any other body not possessing legal personality.
  4. It may be noted that the possibilities for extending the scope of the recommendation described in Principle 1.2 are consistent with the provisions of Article 3, paragraph 2, sub-paragraphs b and c, of Convention No. 108.
  5. Principle 1.3 is devoted to the definition of various critical terms which are used frequently throughout the recommendation.
  6. The definition of "personal data" referred to in Principle 1.3 should not raise too many problems since the formula has been accepted by all member states in previous sectoral recommendations of the Committee of Ministers in the field of data protection. Policy-makers should pay particular attention to the issue of statistical data which, although held in non-nominate form, may nevertheless be linked, using sophisticated data

Committee of Ministers has already encouraged this action in Recommendation No. R (81) 19. The present recommendation is only concerned with addressing the new situation which has arisen since the automation of public sector databases and the possibilities which this has offered to third parties to have easier access to the nominate data contained in the databases without having to justify the reasons why they are seeking personal data files.

  1. Moreover, files may be accessible to third parties. including the general public, because this was the intention of the legislator in specific enactments. These categories of files refer to the so-called "public files" which contain personal data which are collected and stored by public bodies with a view to their official publication. Although such files are generally accessible, it may be the case that access is limited to closed groups - for example certain states restrict access to files on criminal convictions to those operating within the criminal justice system. This "closed user group" restriction explains the reference in Principle 1.3, fourth sub-paragraph 4, to "third parties having a particular interest".
  2. These "public files may include, in particular, telephone directories, electoral registers, land registers, files containing the names and addresses of consumers of electricity and gas, patent and trademark registers, files containing personal data relating to guardianship, commercial registers, vehicle-licensing registers, registers established by data protection authorities containing information on data users, etc. The recommendation proceeds on the basis that such public files must have been created in accordance with specific legal provisions. These may take the form of statutes, regulations, statutory instruments, etc. What is necessary is that the publication of information and its being made accessible to the public, including third parties, are mandated by law including, in the case of some countries, in accordance with provisions governing access to public sector information but, more commonly, in accordance with specific legal provisions governing public files.
  3. There are many reasons why public files may come into existence. For example, they may be set up under statutes with a view to promoting the needs of transparency in a particular economic activity, typically the publication of the names of company directors. Again, information may be made public with a view to promoting public interest in various domains, for example the decision to make accessible to the public the names and addresses of those entitled to vote in national or local elections. Or, information may be made public so as to facilitate dealings between members of the public, as is the case with telephone directories. Finally, the interventionist nature of public powers leads to increased regulation of various activities. Regulation brings with it control over the persons involved in those activities - for example, through licensing procedures. It is not uncommon to find lists of licence-holders (data users, holders of firearm certificates, fishing permits, etc) published under statutory authority and thus made available to the public.
  4. "Communication", a term which appears in the very title of the recommendation, is given a broad definition. It covers both bulk communication of personal data as well as

communication of isolated items of personal data contained in files accessible to third parties. The definition is intended to be technologically relevant. It covers communication by electronic or telematic means, electronic consultation by on-line methods as well as the physical delivery of magnetic tapes and electronic downloading of personal data or personal data files.

  1. The "third parties" are defined so as to specifically exclude communication to public bodies. The definition obviously covers private sector companies, groups, associations, etc as well as individuals. The drafters of this recommendation have not dealt with the issue of communication of personal data or personal data files between public bodies whether for public interest purposes linked to their official functions or for other purposes such as marketing or economic planning outside the strict framework of such functions. As with the issue of statistical data discussed in paragraph 19, the drafters of the recommendation have noted that the Committee of Experts on Data Protection might look specifically at the issue of the communication of personal data between public bodies, with a view to elaborating a separate legal instrument.
  2. Nevertheless, as noted in the course of the discussion, in the definition of "public bodies" a grey area may exist between the activities of public and private bodies, and different states may have different perceptions of what constitutes a private body and a public body. It is for this reason that the recommendation allows a certain flexibility in regard to the scope of the expression "third parties" by allowing states to broaden the scope of the expression "third parties" (Principle 1.3, seventh sub-paragraph). 2. Respect for privacy and data protection principles
  3. The principles laid down in the recommendation are of course designed to ensure respect for the private life of the data subject when his data are to be communicated by public bodies to third parties. As such, the protective framework proposed in the body of the recommendation is consistent with the guarantees for privacy laid down in Article 8 of the European Convention on Human Rights. The drafters of the recommendation have also proceeded on the basis that the right to private life should be reinforced by reference to data protection principles which regulate the conditions in which personal data may be communicated and, in particular, the extent of involvement of the data subject in determining those conditions. In other words, the recommendation is more concerned with respect for privacy in terms of informational self-determination rather than in terms of a "right to be let alone". This view of privacy protection is better adapted to the new technological realities of personal data handling by public bodies as well as the new threats to individual privacy, autonomy, dignity and identity arising out of the misuse of personal data by technical means once the data have been communicated to third parties.
  4. With these factors in mind, Principle 2 of the recommendation notes the need for safeguards and guarantees to accompany the communication of personal data or personal data files to third parties. Principle 2.1 stresses the need to make communication conditional on the existence of a legal basis authorising communication. To illustrate this, reference is made to specific laws, for example laws governing particular types of public

inform them at the time of the collection of the data that these may be communicated to third parties for purposes other than those which motivated their collection, thus allowing them the possibility of raising an objection. These matters are dealt with in greater detail in Principles 4 et seq.

  1. Principle 2.3 contains a general statement to the effect that the processing of the data by a third party after their communication is subjected to the requirements of domestic data protection legislation, including the procedural controls (notification, declaration, registration, etc of personal data files) exercised by the data protection authorities. Principle 6 gives further details on how data may be used by the third parties to whom they have been communicated. However, Principle 2.3 makes it quite clear that data protection legislation covers use as well as other processing stages, such as conservation of the data. 3. Sensitive data
  2. The drafters of the recommendation have structured their approach to the issue of data communication in accordance with the nature of the data collected by public bodies. The nature of the data determines their accessibility to third parties and, accordingly, the conditions for their communication. This approach is reflected in the provisions of Principle 3 of the recommendation as well as in Principles 4 et seq. of the recommendation. Principle 3 relates to personal data which are generally non-accessible to third parties because of their sensitivity or their potential to prejudice the private life of data subjects if they were to be communicated to third parties. Principles 4 et seq, on the other hand, deal with personal data which are generally accessible in accordance with legal provisions. The nature of such data is different and, rather than blocking or taking an extremely restrictive approach to their communication, as with the type of data covered by Principle 3, the issue becomes one of determining the conditions under which such data may be communicated.
  3. Principle 3.1 regards as "sensitive data" any of those categories of sensitive data which are referred to in Article 6 of Convention No. 108 (personal data revealing racial origin, political opinions, religious or other beliefs, personal data concerning health, sexual life or criminal convictions). It should be borne in mind that the list outlined in Article 6 is not exhaustive. Member states may have other perceptions of what constitutes personal data of a sensitive nature.
  4. The general rule on sensitive data is clearly stated in Principle 3.1 - such data should not be placed in a file or in part of a file which is generally accessible to third parties. The drafters of the recommendation have recognised that such a general rule may not be absolute in nature. For example, in certain countries, lists of judgments in bankruptcy against certain individuals may be available for public consultation. Given that some of these countries may regard judgments in bankruptcy as criminal convictions, the list which is made accessible to third parties will contain one of the categories of sensitive data referred to in Article 6 of Convention No. 108. Moreover, the need to monitor the employment activities of enterprises in regard to their policy concerning the recruitment

of ethnic or religious minorities may give rise to the creation of files accessible to third parties which contain sensitive data. Nevertheless, given the fundamental nature of the safeguard stated in Principle 3.1, any exception to it may only be tolerated in well- defined circumstances laid down by law and accompanied by compensatory safeguards and guarantees. This is the purpose of the clause contained in the second sub-paragraph of Principle 3.1. In drafting this clause the drafters of the recommendation base themselves on the relevant derogations specified in Article 9 of Convention No. 108. For example, the two permissible exceptions referred to previously may be based on the provisions in Article 9 which refer to "the suppression of criminal offences" as well as "protecting the rights and freedoms of others". As regards the "appropriate safeguards and guarantees" referred to in the second sub-paragraph of Principle 3.1, the drafters had in mind the sort of safeguards referred to in Article 6 of the convention.

  1. The reference to "stored in a file or in part of a file" is justified by reason of the fact that certain files which may be generally accessible may also contain personal data of a sensitive nature. The protective framework set out in Principle 3.1 would be seriously undermined if it did not deal with this possible lacuna.
  2. Principle 3.2 is concerned with those situations in which public bodies hold lists of politicians' names and their political allegiance or lists of names of individuals who, although not politicians, are nevertheless involved in political life. For example, such individuals may be appointed to the private office of government ministers on the basis of their political affiliation. Of course, such data are prima facie sensitive since they fall within one of the categories set out in Article 6 of Convention No. 108.
  3. Other types of situations not involving data concerning political beliefs may also be envisaged. For example, public bodies may hold lists of names of church leaders with indications on their particular religious affiliations. Once again, such data fall, prima facie, within Article 6 of Convention No. 108 since they relate to religious beliefs.
  4. Nevertheless, the drafters of the recommendation believe that prima facie sensitive data in such circumstances may be made accessible to third parties since the data in question fall within "the public domain".
  5. The drafters of this recommendation have come to this conclusion on the basis of an interpretation of Article 6 of Convention No. 108. In their view, such data concerning individuals involved in public life do not, within the strict meaning of the article, "reveal" such matters as political opinions or religious beliefs. In addition, the drafters of the recommendation believe that making data falling within the public domain accessible to third parties is also justified on the basis of Article 9, paragraph 2. b , of the Convention. It is felt that the accessibility of the data is justified as it is intended to contribute to open democracy and as such is for the protection of "the rights and freedoms of others".
  6. In addition, in elaborating this provision, the drafters bore in mind the judgment of the European Court of Human Rights in the Lingens case in which the Court noted that, unlike a private individual, a politician "... inevitably and knowingly lays himself open to
  1. With these factors in mind, Principle 4.1 requires that the purposes for which the data will be collected and processed in files accessible to third parties as well as the public interest justifying their being made accessible should be indicated in accordance with domestic law and practice. The factors mentioned in Principle 4.1 may be indicated either expressly or implicitly, and not necessarily by law. The reference to "practice" allows member states to use means such as the media, official forms or other appropriate mechanisms to indicate the purposes for which data will be collected and processed in files accessible to third parties as well as the public interest motivating their accessibility. For example, it is sufficient that there exists a law on access to public sector information or freedom of information in a particular country which authorises general access to personal data held by public bodies. Moreover, the public interest justifying the accessibility is to be found in the nature of such general legislation - the need to promote an open and accountable public administration. As regards those categories of "public files" in the classic sense of the term, specific statutes very often govern the purposes for which they may be brought into being as well as the reasons why this is the case.
  2. As with Principle 4.1, Principle 4.2 refers to domestic law and practice as the appropriate vehicle for communicating to data subjects before or at the time of the collection whether or not they are legally obliged to provide their data to a public body. What may constitute domestic law and practice has been discussed in paragraph 48. In the case of the census or the electoral register, the individual should be informed that he is obliged under law to provide certain personal details. Alternatively, in the case of a telephone directory, the data subject should be informed that there is no legal compulsion to have his data stored in a file which is accessible to third parties. Moreover, data subjects should be informed of the legal basis for data collection as well as the purposes for which the data are to be collected and processed. Finally, data subjects should be informed of the public interest which justifies their data being made accessible to third parties.
  3. Principle 4.3 encourages public bodies to be sensitive to the needs of those data subjects whose security and privacy may be particularly at risk if their data were to be made accessible to the public at large. For example, public bodies should heed the requests of individuals working in the security services or who have other legitimate reasons for avoiding publicity not to have their data open to public scrutiny. 5. Access to and communication of personal data by electronic means
  4. Principle 5 of the recommendation advances a number of safeguards and guarantees in respect of the personal data which are automatically processed and which are contained in files accessible to third parties. In the first place, the processing operations effected by public bodies are subject to the provisions of domestic law. Such provisions, and they may take the form of specific regulations for various types of electronic databases held by public bodies, should determine how personal data may be communicated to and accessed by third parties. In particular, the use of technical means for communicating or for consulting electronic files should be placed within a legal framework. There are practical ways of doing this. For example, whenever public bodies

make their electronic files available on-line to the public, they should enter into a contract with third parties who wish to download telematically personal data files on to their databases. Such a contract could contain clauses which reflect any conditions and limitations governing the personal data files being sought. In addition, the contract could oblige the third party to respect any conditions which have been imposed by the data subject on subsequent reuse of the data. Moreover, the contract could be used as a vehicle to alert the third party to the need to use personal data in accordance with domestic law and procedure on data protection.

  1. The provisions of Principle 5.2 are intended to address the issue of security of the electronic files which may be accessed or consulted on line. Technical measures should be taken so as to prevent mass downloading of personal data files in breach of the regulations governing the keeping and communication of electronic files. In addition, consideration should be given to the possible need to limit the criteria on the basis of which personal data may be searched. This issue is discussed later in the commentary on Principle 6.3. 6. Processing by third parties of personal data originating in files accessible to third parties
  2. i. Situation in which the data subject was legally obliged to provide the data (Principle 6.1)

It should be stressed that the term "legally obliged" refers not simply to cases of statutory obligation to provide data, for example in accordance with tax or census obligations, but also covers situations in which data subjects have to provide data in order to receive various social goods or services, for example, education, social security or even the benediction of the state to get married.

ii. Situation in which the data subject volunteered his data to the public body (Principle 6.2)

The data subject may, for example, have replied to a questionnaire sent out by a local authority, answers to which will help the local authority to have an idea of the needs of the local population.

  1. Given that the data subject did not have the possibility to opt out of the collection and subsequent inclusion of his data in files accessible to third parties, because he was legally obliged to furnish the data, Principles 6.1 and 6.2 give the data subject compensatory guarantees so as to regulate subsequent processing of his data by third parties. With this in mind, Principle 6.1 requires that the expressed and informed consent of the data subject, and this consent is revocable at any moment, should be sought before the data may be reused by third parties. In order to make the principle of expressed and informed consent meaningful, the individual should of course be asked at the stage of collection whether or not he is willing to allow his personal data to be communicated to third parties by the public body responsible for collecting and making the data accessible. In the

directory with another category of public file so as to enhance the value of the information contained in the electronic telephone directory.

  1. There are obvious dangers in these techniques of file interconnection or file matching. In particular they may produce automatic lifestyle profiles on individuals without their knowledge and consent. In addition, the possibility to isolate names from public files on the basis of the nationality or religion suggested by the name allows files to be created containing sensitive data. It is for this reason that Principle 5.2 of the recommendation has proposed limitations on the scope of electronic interrogations or electronic searches of files accessible to the public. For example, consideration should be given to the need to prevent electronic searches of public files which are limited to particular names of people living in specific regions or localities. The downloading of such information, coupled with the possibility of matching or interconnecting it with another file, could allow third parties to have quite precise data of a sensitive nature on well-defined groups.
  2. Aware of the problems discussed in the previous paragraph, the drafters of the recommendation have recommended that file matching or file interconnection techniques should only be permissible if domestic law permits them. In addition, domestic law - which once again should be interpreted broadly - should provide appropriate safeguards for the data subject in the event of authorisation being given to third parties to use these techniques. 8. Transborder data flows
  3. The principles discussed so far address specific national contexts in which personal data or personal data files are communicated by public bodies to third parties. The safeguards and guarantees discussed up to now are based on considerations of domestic law. However, the communication of personal data or personal data files held by public bodies in one country to third parties situated in other countries cannot be ignored. The state of technology now enables third parties to access remotely, from country A, personal data files held by public bodies in country B. The data may, for example, be downloaded from one country to another country. Alternatively, magnetic tapes may be sent by public bodies through the postal service to third parties resident in another state. In other words, it is also necessary to discuss the data protection issues raised in this sector in the context of transborder communication of personal data or personal data files (Principle 8.1).
  4. The drafters of the recommendation have sought to adapt the principles of Article 12 of the Data Protection Convention so as to provide specific principles for communication in this sector. Principle 8 of the recommendation analyses a number of situations in which transborder communication may take place:
    • the communication may be to the territory of a state which has ratified the convention;
  • the communication may be to the territory of a state which, although not a Contracting Party to the convention, nevertheless has legal provisions in conformity with the convention and with the present recommendation;
  • the communication may be to the territory of a state which is not possessed of legal provisions in conformity with the convention or with this recommendation.
  1. Taking in turn each of the various hypotheses outlined above, the drafters of the recommendation have provided the following legal framework for transborder data flows.
  2. As regards the first hypothesis and in accordance with the principles of Article 12, paragraph 2, of Convention No. 108, Principle 8.2 of the recommendation sets out the principle of the free flow of data. Since a Contracting Party to the convention must be possessed of data protection norms consistent with the treaty's basic principles, there is no prima facie justification for restricting the flow of data to it. This is certainly the case when the exporting state is also a Contracting Party.

However, Principle 8 of the recommendation is not exclusively concerned with the situation in which the communicating country is a Contracting Party. It also envisages personal data being communicated by non-Contracting Parties, including states which have not yet adopted legislation on data protection. The drafters of the recommendation have sought to encourage the acceptance by all countries of the principle of the free flow of data to states which have ratified Convention No. 108.

The provisions of Principle 8.2 are without prejudice to the right of a Contracting Party to determine the conditions for the transfer of particular categories of personal data or personal data files in accordance with the provisions of Article 12, paragraph 3. a , of Convention No. 108.

  1. Principle 8.3 deals with the situation in which the receiving state has legal provisions which reflect the basic principles of Convention No. 108 as well as the philosophy of this recommendation, but has not yet ratified the convention. Certain states have in fact adopted data protection laws in conformity with the convention but have not yet reached the stage of depositing their instruments of ratification. As with Principle 8.2. Principle 8.3 similarly encourages the free flow of data to such states. It is felt that, even though ratification of the convention is an absolute necessity at some stage, the legal situation in regard to data protection in such countries should be accepted as sufficient and transfrontier communication should be allowed to take place without further conditions. To use the terminology of the convention, an "equivalent level of protection" may be deemed to exist in such countries, at least when the data are to be exported from the territory of Contracting Parties.
  2. Principle 8.4 deals with a situation in which the country of destination has not ratified Convention No. 108 and possesses no legal provisions on the protection of personal data or at least no provisions which may be considered as being compatible with the basic principles of the convention. In this case, and so as not to weaken the protection of data subjects and thus undermine the scope of data protection principles, in particular the

encourages a cross-fertilisation of the role of such authorities so as to ensure consistency of approach to the communication to third parties of personal data or personal data files held by public bodies. The dialogue encouraged in Principle 9 should allow the respective agencies to have information on the conditions which should govern communication. By way of illustration: the communication of personal data under provisions governing freedom of information is invariably restricted where communication would result in prejudice being caused to the privacy of the data subject. The interpretation of such a proviso is usually left undefined in freedom of information legislation. It is felt that authorities entrusted with the interpretation of the proviso could usefully borrow from the conditions which have been laid down by data protection authorities on the use which may be made of personal data which have been declared or notified or registered with them. Given that data protection authorities may place limitations on the use which may be made by public bodies, including communication, of the personal data files which they hold, it is felt appropriate that the agency operating under freedom of information legislation should take note of those conditions.