Коллектив авторов - Новая парадигма защиты и управления персональными данными в Российской Федерации и зарубежных странах в условиях развития систем обработки данных в сети Интернет
23
Рамочное соглашение IP/10/1661 «О защите информации в области полицейского и судебного сотрудничества».
24
См.: Personal data protection in the European. Union European Parliament resolution of 6 July 2011 on a comprehensive approach on personal data protection in the European Union (2011/2025 (INI)) // Official Journal С 033 E. 05.02.2013. P. 0101–0110; Directive of the European Parliament and of the Council 2012/0010 (COD) on the protection of individuals with regard to the processing of personal data by competent authorities for the purposes of prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and the free movement of such data. Brussels, 25.01.2012 (проект); Resolution of the 85th Conference of the Data Protection Commissioners of the Federal Government and the Bremerhaven on 13–14 March 2013 «Europe must strengthen data protection».
25
Пояснительный доклад к Конвенции № 108 «О защите прав физических лиц в отношении автоматизированной обработки персональных данных». URL: http://conventions.coe.int/Treaty/RUS/Reports/Html/108.htm.
26
Recommendation No. Rec(81)l of the Committee of Ministers to member states on regulations for automated medical data banks (adopted by the Committee of Ministers on 23 January 1981 at the 328th meeting of the Ministers' Deputies). Council of Europe, 1981. URL: http://www.coe.int/t/dg3/health/recommendations_en.asp.; Recommendation No. Rec(97)5 of the Committee of Ministers to member states on the protection of medical data (adopted by the Committee of Ministers on 13 February 1997 at the 584th meeting of the Ministers' Deputies). Council of Europe, 1997. URL: https://wcd.coe.int/ ViewDoc.jsp?id=690735& Site=CM&BackColorInternet=C3C3C3&BackColorIntrane t=EDB021&BackColorLogged=F5D383.
27
Recommendation No. Rec(83) 10 of the Committee of Ministers to member states on the protection of personal data used for scientific research and statistics (adopted by the Committee of Ministers on 23 September 1983 at the 362nd meeting of the Ministers' Deputies). Council of Europe, 1983. URL: https://wcd.coe.int/ViewDoc.jsp?id=69073 5&Site=CM&BackColorInternet=C3C3C3&BackColorIntranet=EDB021&BackColor Logged=F5D383.
28
Recommendation No. Rec(85)20 of the Committee of Ministers to member states on the protection of personal data used for the purposes of direct marketing (adopted by the Committee of Ministers on 25 October 1985 at the 389th meeting of the Ministers' Deputies). Council of Europe, 1985. URL: https://www.coe.int/t/dghl/standardsetting/ dataprotection/legalinstrumentsen.asp.
29
Recommendation No. Rec(86)l of the Committee of Ministers to member states on the protection of personal data used for social security purposes (adopted by the Committee of Ministers on 23 January 1986 at the 392nd meeting of the Ministers' Deputies). Council of Europe, 1986. URL: https://www.coe.int/t/dghl/standardsetting/dataprotec-tion/legal_instruments_en.asp.
30
Recommendation No. Rec(87)15 of the Committee of Ministers to member states on the protection of personal data used in the police sector (adopted by the Committee of Ministers on 17 September 1987 at the 410th meeting of the Ministers' Deputies). Council of Europe, 1987. URL: https://www.coe.int/t/dghl/standardsetting/dataprotection/ legalinstrumentsen. asp.
31
Recommendation No. Rec(89)2 of the Committee of Ministers to member states on the protection of personal data used for employment purposes (adopted by the Committee of Ministers on 18 January 1989 at the 423rd meeting of the Ministers' Deputies). Council of Europe, 1989. URL: https://www.coe.int/t/dghl/standardsetting/dataprotec-tion/legal_instruments_en. asp.
32
Recommendation No. Rec(90) 19 of the Committee of Ministers to member states on the protection of personal data used for payment and related operations (adopted by the Committee of Ministers on 13 September 1990, at the 443rd meeting of the Ministers' Deputies). Council of Europe, 1990. URL: https://www.coe.int/t/dghl/standardsetting/ dataprotection/legalinstrumentsen. asp.
33
Recommendation No. Rec(95)4 of the Committee of Ministers to member states on the protection of personal data collected and processed in the area of telecommunication services, with particular reference to telephone services (adopted by the Committee of Ministers on 7 February 1995 at the 528th meeting of the Ministers' Deputies). Council of Europe, 1995. URL: https://www.coe.int/t/dghl/standardsetting/dataprotection/le-galinstrumentsen. asp.
34
Recommendation No. Rec(97) 18 of the Committee of Ministers to member states on the protection of personal data collected and processed for statistical purposes (adopted by the Committee of Ministers on 30 September 1997 at the 602nd meeting of the Ministers’ Deputies). Council of Europe, 1997. URL: https://www.coe.int/t/dghl/stan-dardsetting/dataprotection/legalinstrumentsen. asp.
35
Recommendation No. Rec(91)10 of the Committee of Ministers to member states on the communication to third parties of personal data held by public bodies (adopted by the Committee of Ministers on 9 September 1991 at the 461st meeting of the Ministers' Deputies). Council of Europe, 1991. URL: https://www.coe.int/t/dghl/standardsetting/ dataprotection/legalinstrumentsen.asp.
36
Recommendation No. Rec(99)5 of the Committee of Ministers to member states on the protection of privacy on the Internet (adopted by the Committee of Ministers on 23 February 1999 at the 660th meeting of the Ministers' Deputies). Council of Europe, 1999. URL: https: //www. coe.int/t/dghl/standardsetting/dataprotection/legalinstrumentsen. asp.
37
Recommendation No. Rec(2002)9 of the Committee of Ministers to member states on the protection of personal data collected and processed for insurance purposes (adopted by the Committee of Ministers on 18 September 2002 at the 808th meeting of the Ministers' Deputies). Council of Europe, 2002. URL: https://www.coe.int/t/dghl/stan-dardsetting/dataprotection/legalinstrumentsen. asp.
38
Recommendation CM/Rec(2010) 13 on the protection of individuals with regard to automatic processing of personal data in the context of profiling (adopted by the Committee of Ministers on 23 November 2010 at the 1099th meeting of the Ministers’ Deputies). Council of Europe, 2010. URL: https://www.coe.int/t/dghl/standardsetting/dataprotec-tion/legal_instruments_en. asp.
39
Мешков Ю. Ратификация Конвенции Совета Европы: защита персональных данных будет усилена // Персональные данные. 2013. № 5 (60).
40
Ad hoc Committee on Data Protection (CAHDATA). URL: https://www.coe.int/ t/dghl/standardsetting/dataprotection /TPD_documents/CAHDATA%203_Report_ CM(2015)40_En.pdf.
41
Recommendation CM/Rec(2010)13 of the Committee of Ministers to member states on the protection of individuals with regard to automatic processing of personal data in the context of profiling. URL: https://wcd.coe.int/ViewDoc.jsp?Ref=CM/ Rec(2010)13#.
42
Additional Protocol to the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data regarding supervisory authorities and transborder data flows. URL: http://conventions.coe.int/Treaty/RUS/Reports/ Html/108.htm
43
Recommendation CM/Rec(2010)13 of the Committee of Ministers to member states on the protection of individuals with regard to automatic processing of personal data in the context of profiling (Adopted by the Committee of Ministers on 23 November 2010 at the 1099th meeting of the Ministers’ Deputies). URL: https://wcd.coe.int/ViewDoc. jsp?id=1710949&Site=CM#P5_189.
44
Основные положения Организации по экономическому сотрудничеству и развитию (ОЭСР) о защите неприкосновенности частной жизни и международных обменов персональными данными. URL: http://www.uipdp.com/upload/legis-lation/international/directiveoesrl.pdf
45
Data Protection Act 1998. URL: http://www.legislation.gov.uk/ukpga/1998/29/ contents
46
Freedom of Information Act 2000. URL: http://www.legislation.gov.uk/ukpga/ 2000/36/contents
47
Protection of Freedoms Act 2012. URL: http://www.legislation.gov.uk/ukpga/ 2012/9/contents/enacted
48
The Criminal Justice and Data Protection (Protocol No. 36) Regulations 2014. URL: http://www.legislation.gov.uk/ukdsi/2014/9780111122723/contents
49
The Freedom of Information and Data Protection (Appropriate Limit and Fees) Regulations 2004. URL: http://www.legislation.gov.uk/uksi/2004/3244/pdfs/ uksi_20043244_en.pdf
50
В законе используется термин «sensitive personal data», который переводится на русский язык как «чувствительные данные». В части 1 данного закона к sensitive personal data отнесены перечисленные в абзаце категории информации. Дословно в «Акте о защите данных» указано: «In this Act “sensitive personal data” means personal data consisting of information as to…» В целях разграничения «чувствительных данных» и конфиденциальной информации в разделе по Великобритании используется термин «чувствительные данные».
51
Сайт законодательства UK. URL: http://www.legislation.gov.uk/all?title= The%20Data%20Protection%20Act
52
DCMS takes on responsibility for UK data protection policy and sponsorship of the ICO. От 18 сентября 2015 г. URL: http://www.out-law.com/en/articles/2015/sep-tember/dcms-takes-on-responsibility-for-uk-data-protection-policy-and-sponsorship-of-the-ico/
53
Елин B.M., Жарова A.K. О выделении информационных объектов в самостоятельную категорию объекта преступления // Труды Института государства и права Российской академии наук. 2009. № 5. С. 205–229; Елин В.М. Мошенничество в сфере компьютерной информации как новый состав преступления // Бизнес-информатика. 2013. № 2 (24). С. 70–76.
54
Register (notify) under the Data Protection Act. URL: https://ico.org.uk/for-organisations/register/
55
URL: http://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=OJ: L:2006:105:0 054:0063:EN: PDF
56
Официальный интернет-портал правовой информации. URL: www.pravo. gov.ru от 5 августа 2014 г.
57
Directive 2006/24/ЕС of the European Parliament and of the Council of 15 March 2006 on the retention of data generated or processed in connection with the provision of publicly available electronic communications services or of public communications networks and amending Directive 2002/58/EC. URL: http://www.out-law.com/en/ articles/2012/may/survey-reveals-nearly-half-of-web-users-happy-with-behavioural-advertising-/
58
Guidance on the use of cloud computing. URL: https://ico.org.uk/media/1540/ cloud_computing_guidance_for_organisations.pdf
59
Register (notify) under the Data Protection Act. URL: https://ico.org.uk/for-organisations/register/
60
Personal information online code of practice on 26 May. URL: 2011 https://ico.org. uk/media/for-organisations/documents/1591/personal_information_online_cop.pdf
61
Cloud Computing. A Practical Introduction to the Legal Issues. URL: http:// www.bsigroup.com/en/sectorsandservices/Forms/BIP-0117-Sample-chapter-form/?id= 187489).
62
В настоящее время эта стратегия является недействующей.
63
Government ICT strategy. URL: http://www.cabinetoffice.gov.uk/sites/default/ files/resources/uk-government-government-ict-strategy_0.pdf
64
Жарова A.K. Условия оказания услуги по предоставлению доступа к облачным вычислениям // Государство и право. 2012. № 12. С. 86–90.
65
Information Commissioner’s Office. URL: https://ico.org.uk/
66
BVerfG, Urteil vom 15. Dezember 1983 Az.: 1 BvR 209/83, 1 BvR 484/83, 1 BvR 440/83, 1 BvR 420/83, 1 BvR 362/83, 1 BvR 269/83 (Volkszählungsurteil).
67
Fernmeldegeheimnis.
68
BVerfG, Urteil vom 27. Februar 2008 Az.: 1 BvR 370/07, 1 BvR 595/07.
69
Bundesdatenschutzgesetz.
70
URL: http://curia.europa.eu/juris/documents.jsf?num=C-293/12
71
URL: http://dip21.bundestag.de/dip21/brd/2007/0798-07.pdf
72
URL: https://www.bundesyerfassungsgericht.de/entscheidungen/rs20100302 lbvr025608.html
73
URL: http://curia.europa.eu/juris/documents.jsf?num=C-293/12
74
URL: http://curia.europa.eu/juris/documents.jsf?num=C-329/12
75
Gola/Schomerus, opa.eu/juris/d. Закон о персональных данных Германии.
76