Selected Issues from the Dark Side of the General Data Protection Regulation

Open access


The Regulation (EU) 2016/679 on the protection of personal data (GDPR) was enacted in 2016 and applies from 25thMay 2018 in the entire EU. The GDPR is a product of an ambitious reform and represents a direct penetration of the EU law into the legal systems of the EU member states. The EU works on the enhancement of awareness about the GDPR and points out its bright side. However, the GDPR has its dark side as well, which will inevitably have a negative impact. Hence, the goal of this paper is twofold - (i) to scientifically identify, forecast, and analyze selected problematic aspects of the GDPR and its implementation, in particular for Czech municipalities, and (ii) to propose recommendations about how to reduce, or even avoid, their negative impacts. These theoretic analyses are projected to a Czech case study focusing on municipalities, which offers fresh primary data and allows a further refining of the proposed recommendations. An integral part of the performed analyses is also a theoretic forecast of expenses linked to the GDPR, which municipalities will have to include in their mandatory expenses and mid-term prognostic expectations regarding the impact on the budgets of these municipalities from Central Bohemia. The GDPR, like Charon, is at the crossing, the capacity and knowledge regarding its application is critical for operating in the EU in 2018. It is time both to admit that the GDPR has its dark side and to present real and practical recommendations about how to mitigate it.

If the inline PDF is not rendering correctly, you can download the PDF file here.

  • Arreda P.E. (1996). The Socratic Method. Harvard Law Review. 109(5) Pp. 911-922.

  • Auwermeulen Van Der B. (2017). How To Attribute The Right To Data Portability In Europe: A Comparative Analysis Of Legislations. Computer Law & Security Review. 33 Pp. 57-72. Doi: 10.1016/J.Clsr.2016.11.012

  • Balcerzak A.P. (2015). Europe 2020 Strategy And Structural Diversity Between Old And New Memember States. Application Of Zero Unitarization Method For Dynamic Analysis In The Years 2004-2013. Economics & Sociology. 8(2) Pp. 190-210. Doi: 10.14254/2071-789x.2015/8-2/14

  • Balcerzak A.P. (2016). Technological Potential Of European Economy. Proposition Of Measurement With Application Of Multiple Criteria Decision Analysis. Montenegrin Journal Of Economics. 12(3) Pp. 7-17. Doi: 10.14254/1800-5845.2016/12-3/1

  • Barnard-Willis D. Pauner Chulvi Ch. Hert De P. D. (2016.) Data Protection Authority Perspectives On The Impact Of Data Protection Reform On Cooperation In The Eu. Computer Law & Security Review 32(4) Pp. 587-598. Doi: 10.1016/J.Clsr.2016.05.006

  • Bologno L. Bistolfi C. (2017). Pseudonymization And Impacts Of Big (Personal/Anonymous) Data Processing In The Transition From The Directive 95/46/Ec To The New Eu General Data Protection Regulation. Computer Law & Security Review. 33(2) Pp. 171-181. Doi: 10.1016/J.Clsr.2016.11.002.

  • Chirita A.D. (2014). A Legal-Historical Review Of The Eu Competition Rules. International And Comparative Law Quarterly. 63 (2) Pp. 281-316. Doi: 10.1017/S0020589314000037

  • Cradock E. Stalla-Bourdillon S. Millard D. (2017). Nobody Puts Data In A Corner? Why A New Approach To Categorizing Personal Data Is Required For The Obligation To Inform. Computer Law & Security Review. 33 Pp. 142-158. Doi: 10.1016/J.Clsr.2016.11.005

  • Custers B. Duchesne R. Sears A.M. Et Al. (2018). A Comparison Of Data Protection Legislation And Policies Across The Eu. Computer Law & Security Review. 34(2) Pp. 234-243. Doi: 10.1016/J.Clsr.2017.09.001

  • Cvik E. Macgregor Pelikánová R. (2016). Implementation Of Directive 2014/17/Eu And Its Impact On Eu And Member States Markets From Not Only A Czech Perspectives. In: Kapounek S. Krutilova V. (Eds.) 19th International Conference Enterprise And Competitive Environment (Ece) Brno. Procedia Social And Behavioral Sciences. 220 Pp. 85-94. Doi: 10.1016/J.Sbspro.2016.05.472

  • Czech Association Of Towns And Villages - Catv (2018a). Český Svaz Měst A Obcí - - S Ochranou Osobních Údajů Podle Nového Obecného Nařízení (Gdpr) By Mohla Pomoci Centra Společných Služeb. Retrieved From Http://Www.Smocr.Cz/Cz/Nase-Projekty/Centraspolecnych-Sluzeb-Obci/S-Ochranou-Osobnich-Udaju-Podle-Noveho-Obecneho-Narizenigdpr-By-Mohla-Pomoci-Centra-Spolecnych-Sluzeb.Aspx [Accessed: 28 May 2018]

  • Czech Association Of Towns And Villages - Catv (2018b). Český Svaz Měst A Obcí - Pověřence Pro Ochranu Osobních Údajů Podle Tzv. Gdpr By Mohla Pro Obce Zajistit Centra Společných Služeb. Retrieved From Http://Www.Smocr.Cz/Cz/Tiskovyservis/Tiskove-Zpravy/Poverence-Pro-Ochranu-Osobnich-Udaju-Podle-Tzv-Gdpr-By-Mohlapro-Obce-Zajistit-Centra-Spolecnych-Sluzeb.Aspx [Accessed: 28 May 2018]

  • Czech Statistical Office - Cso (2018). Český Statistický Úřad - Malý Lexicon Obcí. Retrieved From Https://Www.Czso.Cz/Csu/Czso/Maly-Lexikon-Obci-Ceske-Republiky-2017 [Accessed: 28 May 2018]

  • David P.A. Hall B.H. Toole A.A. (2000). Is Public R&D A Complement Or Substitute For Private R&D? A Review Of The Econometric Evidence. Research Policy. 29(4-5) Pp. 497-529. Doi: 10.1016/S0048-7333(99)00087-6

  • European Commission (2017). [Online] Reform Of Eu Data Protection Rules. Retrieved From Http://Ec.Europa.Eu/Justice/Data-Protection/Reform/Index_En.Htm [Accessed: 28 May 2018]

  • Gellert R. (2018). Understanding The Notion Of Risk In The General Data Protection Regulation. Computer Law & Security Review. 34(2) Pp. 279-288. Doi: 10.1016/J.Clsr.2017.12.003

  • Hert De P. Papakonstantinou V. (2016). The New General Data Protection Regulation: Still And Sound System For The Protection Of Individuals? Computer Law & Security Review. 32(2) Pp. 179-194. Doi: 10.1016/J.Clsr.2016.02.006

  • Hert De P. Papakonstantinou V. Malgieri G. Et Al. (2018). The Right To Data Portability In The Gdpr: Towards User-Centric Interoperability Of Digital Services. Computer Law & Security Review. 34(2) Pp. 193-203. Doi: 10.1016/J.Clsr.2017.10.003

  • Iyke B.N. (2017). Does Trade Openness Matter For Economic Growth In The Cee Countries? Review Of Economic Perspectives - Národohospodářský Obzor. 17(1) Pp. 3-24. Doi: 10.1515/Revecp-2017-0001

  • Jindřichovská I. Kubíčková D. (2017). The Role And Current Status Of Ifrs In The Completion Of National Accounting Rules - Evidence From The Czech Republic. Accounting In Europe. 14(1-2) Pp. 56-66. Doi: 10.1080/17449480.2017.1301671

  • Jindřichovská I. Kubíčková D. (2016). Economic And Political Implications Of Ifrs Adoption In The Czech Republic In: Efobi U. Nnadi M. Sailesh T. Enrico U Iyoha F. Economics And Political Implications Of International Financial Reporting Standards. Igi Global Hershey Pa 17033 Usa.

  • Knapp V. (1995). Teorie Práva. 1 Vyd. Praha Cz : C.H.Beck.

  • Krystlik J. (2017). With Gdpr Preparation Is Everything. Computer Fraud & Security. 6 Pp. 5-8. Doi: 10.1016/S1361-3723(17)30050-7

  • Kuner Ch. Jerker D. Svantesson B. Et Al. (2017).The Gdpr As A Chance To Break Down Borders. International Data Privacy Law. 7(4) Pp. 213-232. Doi: 10.1093/Idpl/Ipx023

  • Lindqvist J. (2017). New Challenges To Personal Data Processing Agreements: Is The Gdpr Fit To Deal With Contract Accountability And Liability In A World Of The Internet Of Things? International Journal Of Law And Information Technology. 26(1) Pp. 45-63 Doi: 10.1093/Ijlit/Eax024.

  • Macgregor Pelikánová R. 2012. And The Best Top Level Domain For European Enterprises Is ... International And Comparative Law Review. 12(2) Pp. 41-57.

  • Macgregor Pelikánová R. (2013). Internet My Dearest What Type Of European Integration Is The Clearest? Acta Universitatis Agriculturae Et Silviculturae Mendelianae Brunensis. 61(7) Pp. 2475-2481.

  • Macgregor Pelikánová R. (2014a). Selected Current Aspects And Issues Of European Integration. Ostrava Cz : Key Publishing.

  • Macgregor Pelikánová R. (2014b). The (Dis)Harmony Of Opinions Regarding Domain Names In The Czech Republic. Scientific Papers Of The University Of Pardubice Series D: Faculty Of Economics And Administration. 21(32) Pp. 73-84

  • Macgregor Pelikánová R. (2017). European Myriad Of Approaches To Parasitic Commerical Practices. Oeconomia Copernicana. 8(2) Pp. 167-180. Doi: 10.24136/Oc.V8i2.11

  • Macgregor Pelikánová R. Císařová J. Beneš M. (2017). The Misleading Perception Of The Purpose Of The Protection Against Misleading Advertising By The Eu Law And Its Impact On The Czech Republic. Lawyer Quarterly. 7(3) Pp. 145-161

  • Martínez-Martínez D.F. (2018). Unification Of Personal Data Protection In The European Union: Challenges And Implications. Profesional De La Informacion.27(1) Pp. 185-194.

  • Malatras A. Sanchez I. Beslay L. Et Al. (2017). Pan-European Personal Data Breaches: Mapping Of Current Practices And Recommendations To Facilitate Cooperation Among Data Protection Authorities. Computer Law & Security Review. 33 Pp. 458-469. Doi: 10.1016/J.Clsr.2017.03.013

  • Matejka J. (2013). Internet Jako Object Práva - Hledání Rovnováhy Autonomie A Soukromí. Praha Cz : Cz Nic.

  • Ministry Of Finance Of The Czech Republic - Mf (2017). Ministerstvo Financí Čr - Monitor - Informační Portál [Online]. Retrieved From: Http://Monitor.Statnipokladna.Cz/2017/ [Accessed: 28 May 2018]

  • Pakšiová R. (2016). Understanding Of Corporate Social Responsibility In Large Companies In Slovakia Within The Context Of A Sustainable Development. In Economic Policy In The European Union Member Countries. International Scientific Conference. Karviná : School Of Business Administration In Karvina Su In Opava Pp. 516-525.

  • Piekarczyk A. (2016). Contemporary Organization And A Perspective On Integration And Development. Oeconomia Copernicana. 7(3) Pp. 467-483. Doi: 10.12775/Oec.2016.027

  • Pormeister K. (2017). Genetic Data And The Research Exemption: Is The Gdpr Going Too Far? International Data Privacy Law. 7(2) Pp. 137-146. Doi: 10.1093/Idpl/Ipx006

  • Raab Ch. Szekely I. (2017). Data Protection Authorities And Information Technology. Computer Law & Security Review. 33 Pp. 421-433. Doi: 10.1016/J.Clsr.2017.05.002

  • Silverman D. (2013). Doing Qualitative Research - A Practical Handbook. 4th Edition London Uk : Sage.

  • Staníčková M. Melecký L. Navrátil B. (2013). Measuring The Student Research Projects' Efficiency Using Dea Method. In: Efficiency And Responsibility In Education 2013 - Erie: Proceedings Of The 10th International Conference. Prague: Czech University Of Life Sciences Prague 2013 Pp. 573-580.

  • Tankard C. (2016). What The Gdpr Means For Businesses. Network Security. 6 Pp. 5-8. Doi: 10.1016/S1353-4858(16)30056-3

  • Tikkinen-Piri Ch. Rohunen A. Markula J. (2017). Eu General Data Protection Regulation: Changes And Implications For Personal Data Collecting Companies. Computer Law & Security Review (In Press). Doi: 10.1016/J.Clsr.2017.05.015

  • Turečková K. Nevima J. (2016). The Perils Of Drawing From European Funds In Public Education. In: Proceedings Of The 11th International Scientific Conference Public Administration 2016. Pardubice: University Of Pardubice Faculty Of Economics And Administration Pp. 273-282. Isbn 978-80-7560-040-0.

  • Vivant M. (2016). Building A Common Culture Ip? International Revue Of Intellectual Property And Competition Law. 47(3) Pp. 259-261. Doi: 10.1007/S40319-016-0472-Y

  • Vokoun M. (2017). Characteristic Of The Innovation Activities Of Firms In Europe: A Critical Review Of International Differences. Review Of Economic Perspectives - Národohospodářský Obzor. 17(3) Pp. 239-262. Doi: 10.1515/Revecp-2017-0013

  • Zerlang J. (2017). Gdpr: A Milestone In Convergence For Cyber-Security And Compliance. Network Security. 6 Pp. 8-11. Doi: 10.1016/S1353-4858(17)30060-0

  • Zuiderveen Borgesius F.J (2016). Singling Out People Without Knowing Their Names - Behavioural Targeting Pseudonymouos Data And The New Data Protection Regulation. Computer Law & Security Review. 32 Pp. 256-271. Doi: 10.1016/J.Clsr.2015.12.013.

Journal information
Impact Factor

CiteScore 2018: 0.66

SCImago Journal Rank (SJR) 2018: 0.21
Source Normalized Impact per Paper (SNIP) 2018: 0.682

All Time Past Year Past 30 Days
Abstract Views 0 0 0
Full Text Views 787 505 11
PDF Downloads 600 365 12