Cargando…
COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes
Digital surveillance has played a key role in containing the COVID-19 outbreak in China, Singapore, Israel, and South Korea. Google and Apple recently announced the intention to build interfaces to allow Bluetooth contact tracking using Android and iPhone devices. In this article, we look at the com...
| Autores principales: | , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Oxford University Press
2020
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7313893/ https://www.ncbi.nlm.nih.gov/pubmed/32728470 http://dx.doi.org/10.1093/jlb/lsaa034 |
| _version_ | 1783550010147733504 |
|---|---|
| author | Bradford, Laura Aboy, Mateo Liddell, Kathleen |
| author_facet | Bradford, Laura Aboy, Mateo Liddell, Kathleen |
| author_sort | Bradford, Laura |
| collection | PubMed |
| description | Digital surveillance has played a key role in containing the COVID-19 outbreak in China, Singapore, Israel, and South Korea. Google and Apple recently announced the intention to build interfaces to allow Bluetooth contact tracking using Android and iPhone devices. In this article, we look at the compatibility of the proposed Apple/Google Bluetooth exposure notification system with Western privacy and data protection regimes and principles, including the General Data Protection Regulation (GDPR). Somewhat counter-intuitively, the GDPR’s expansive scope is not a hindrance, but rather an advantage in conditions of uncertainty such as a pandemic. Its principle-based approach offers a functional blueprint for system design that is compatible with fundamental rights. By contrast, narrower, sector-specific rules such as the US Health Insurance Portability and Accountability Act (HIPAA), and even the new California Consumer Privacy Act (CCPA), leave gaps that may prove difficult to bridge in the middle of an emergency. |
| format | Online Article Text |
| id | pubmed-7313893 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2020 |
| publisher | Oxford University Press |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-73138932020-06-25 COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes Bradford, Laura Aboy, Mateo Liddell, Kathleen J Law Biosci Original Article Digital surveillance has played a key role in containing the COVID-19 outbreak in China, Singapore, Israel, and South Korea. Google and Apple recently announced the intention to build interfaces to allow Bluetooth contact tracking using Android and iPhone devices. In this article, we look at the compatibility of the proposed Apple/Google Bluetooth exposure notification system with Western privacy and data protection regimes and principles, including the General Data Protection Regulation (GDPR). Somewhat counter-intuitively, the GDPR’s expansive scope is not a hindrance, but rather an advantage in conditions of uncertainty such as a pandemic. Its principle-based approach offers a functional blueprint for system design that is compatible with fundamental rights. By contrast, narrower, sector-specific rules such as the US Health Insurance Portability and Accountability Act (HIPAA), and even the new California Consumer Privacy Act (CCPA), leave gaps that may prove difficult to bridge in the middle of an emergency. Oxford University Press 2020-05-28 /pmc/articles/PMC7313893/ /pubmed/32728470 http://dx.doi.org/10.1093/jlb/lsaa034 Text en © The Author(s) 2020. Published by Oxford University Press on behalf of Duke University School of Law, Harvard Law School, Oxford University Press, and Stanford Law School. All rights reserved. For permissions, please e-mail: journals.permissions@oup.com. https://creativecommons.org/licenses/by-nc-nd/4.0/This is an Open Access article distributed under the terms of the Creative Commons Attribution NonCommercial-NoDerivs licence (http://creativecommons.org/licenses/by-nc-nd/4.0/ (https://creativecommons.org/licenses/by-nc-nd/4.0/) ), which permits non-commercial reproduction and distribution of the work, in any medium, provided the original work is not altered or transformed in any way, and that the work is properly cited. For commercial re-use, please contact journals.permissions@oup.com |
| spellingShingle | Original Article Bradford, Laura Aboy, Mateo Liddell, Kathleen COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes |
| title | COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes |
| title_full | COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes |
| title_fullStr | COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes |
| title_full_unstemmed | COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes |
| title_short | COVID-19 contact tracing apps: a stress test for privacy, the GDPR, and data protection regimes |
| title_sort | covid-19 contact tracing apps: a stress test for privacy, the gdpr, and data protection regimes |
| topic | Original Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7313893/ https://www.ncbi.nlm.nih.gov/pubmed/32728470 http://dx.doi.org/10.1093/jlb/lsaa034 |
| work_keys_str_mv | AT bradfordlaura covid19contacttracingappsastresstestforprivacythegdpranddataprotectionregimes AT aboymateo covid19contacttracingappsastresstestforprivacythegdpranddataprotectionregimes AT liddellkathleen covid19contacttracingappsastresstestforprivacythegdpranddataprotectionregimes |