Spring Guest lectures in GDPR 2022
As part of teaching activities offered at the elective course JUS-294-2-A “Privacy and data protection – GDPR”, all our students and other persons interested in data protection and the GDPR are warmly welcome to join four guest lectures. The lectures are held by privacy and data protection experts working in both public and private sector. For details concerning the guest lecturers, topics of their lectures and participation, please check the invitations below.
Hovedinnhold
Guest lecture 1: How is the GDPR enforced?
All interested students and other data protection enthusiasts are now kindly invited to register for a guest lecture with Tobias Judin, the Head of International at the Norwegian Data Protection Authority.
Topic: How is the GDPR enforced?
Organisations that violate the European data protection rules risk hefty fines and other corrective measures. How do supervisory authorities proceed when they discover infringements? What should companies expect if they do not comply to the GDPR? Is GDPR enforced effectively? This presentation aims to explain which enforcement tools supervisory authorities have at their disposal, how these tools are used in practice, and which challenges lie ahead.
Tobias Judin is the Head of International at the Norwegian Data Protection Authority. He represents Norway in the European Data Protection Board, working in close cooperation with the other EEA data protection supervisory authorities. He is furthermore responsible for the Norwegian Data Protection Authority’s cross-border cases and cases regarding international transfers. Tobias is a lawyer, technologist and sinologist by education.
Time and place:
14th March 2022, 12.15-14.00, Auditorium in JUSS II, Jekteviksbakken 31 or Zoom.
Register in advance for this meeting here.
After registering, you will receive a confirmation email containing information about joining the meeting. The link you will receive is your personal link and it will not work if shared with other persons.
Guest lecture 2: An exploration of hot-topic issues in the field of privacy law
All interested students and other data protection enthusiasts are now kindly invited to register for a guest lecture with Kristian Bygnes from the Norwegian Data Protection Authority (Datatilsynet).
Wherever you go, there you are. If you go online, that activity will most likely be tracked and analyzed. Increasingly, that is also the case for when you move and interact offline. Discussions about online tracking tends to focus on the big (tech) actors performing and monetizing this tracking. Naturally, their practices and the potential consequences of their actions merit scrutiny.
Change is however not contingent on the good will of big actors to unilaterally decide to limit their tracking. The field of privacy law contains a multitude of different players that in some ways tries to navigate privacy law and EU-institutions to resist privacy invasive practices. This presentation tries to explore and give a high-level overview of the current hot-topic issues currently being discussed and decided in the field of privacy law, primarily connected to different ways your personal data is being used online.
Kristian Bygnes graduated from the University of Bergen law programme. His master thesis considered the legal status of inferences (assumptions made about a person based on collected data and probability) under the GDPR. After graduating, he interned for the privacy organization noyb in Vienna, where he worked closely on the “Out of Control” project by the Norwegian Consumer Council and the complaints filed against the adtech industry in conjunction with the published report. He currently works at the Norwegian Data Protection Authority (Datatilsynet).
Time and place:
15. mars 12.15 – 14.00 on Zoom
Link here
Guest lecture 3: Transfers of personal data outside of EEA
All interested students and other data protection enthusiasts are now kindly invited to register for a guest lecture with Ane Rode and Torodd Aastorp, lawyers affiliated with Føyen’s ICT and media department.
Topic: Transfers of personal data outside of EEA; What impact has the Schrems II judgement had on international data transfers?
In principle, transfer of personal data to a third country is prohibited. However, there are some exceptions from this rule. A transfer can take place if the conditions laid down in the provisions of the GDPR relating to the transfer of personal data to third countries are complied with by the controller or the processor. The GDPR provides different transfer mechanisms for transfers of personal data from the EEA to a third country. In the Schrems II judgement handed down by the Court of Justice of the European Union (CJEU) on 16 July 2020 , the CJEU declared that the transfer mechanism Privacy Shield was no longer lawful. The Schrems II judgement has had significant impact on international data transfers, and we will look at how the judgement has affected the use of the transfer mechanism Standard Contractual Clauses.
Ane is affiliated with Føyen’s ICT and Media department. She works mainly with privacy and IT legal issues, including the use and sharing of personal data, IT agreements and procurement and fintech. Rode graduated from the University of Bergen where she wrote her master thesis on who is responsible for personal data on a blockchain.
Torodd is affiliated with Føyen’s ICT and Media department. He works mainly with privacy and IT legal issues, including the use and sharing of personal information, IT agreements and procurement, as well as intellectual property law. Torodd graduated from the University of Bergen, where he wrote his master thesis on a risk-based approach to the requirements for the transfer of personal data to states outside the EU / EEA, in light of the Schrems II judgment.
Time and place:
5th April 2022, 12.15-14.00, Zoom.
Register in advance by clicking here.
After registering, you will receive a confirmation email containing information about joining the meeting. The link you will receive is your personal link and it will not work if shared with other persons.
Guest lecture 4: Working with data protection issues
All interested students and other data protection enthusiasts are now kindly invited to register for the final guest lecture in data protection and GDPR with Gry Hvidsten, Partner at Wikborg Rein’s Oslo office, Head of WR's Data Protection Practice and deputy of the firm's Technology and Digitalisation practice.
Gry Hvidsten, Partner at Wikborg Rein's Oslo office, Head of WR's Data Protection Practice and deputy of the firm's Technology and Digitalisation practice. Gry will talk about her experience working with data protection issues.
Gry has been working with data protection issues for more than 20 years; in the Legislation Department of the Ministry of Justice, in Norway's largest company, Equinor, and as a long-time business lawyer. She assists both public and private companies in a variety of industries with questions related to compliance, introduction of new technology and new solutions, privacy in the workplace, whistleblowing/investigation, digitalization and digital business, sanctions and GDPR, electronic marketing, big data analytics, GDPR due diligence related to transactions etc. Gry also assists with agreements related to the handling of data, including data processing agreements and transfer agreements related to the provision of cloud services. Over the last couple of years Gry has assisted businesses with assignments related to the Covid-19 situation and also with the aftermath of the Schrems-II decision from the European Court of Justice. She is particularly committed to helping businesses achieve compliance in practical day-to-day business as well as identifying how data protection regulations could contribute to more effective business development if the right assessments are made early in the process.”
Time and place:
10 May 10.15-12.00, Seminar room II, Faculty of Law (NO DIGITAL OPTION)