Session
With public and private entities relying on personal data and behavioural information to provide digital services (with varying degrees of transparency), and with surveillance tools increasingly used outside of rule of law frameworks, protecting privacy and personal data in the digital space is an increasingly complex matter. This complexity poses challenges when it comes to defining and implementing relevant legislation. Outlining data subject rights and establishing responsibilities for their protection, clarifying meaningful consent for data processing, and setting conditions for international data transfers are some of the key issues that legislators around the world have to unpack when devising legal frameworks. And while such frameworks have been or are being put in place in many countries around the world, the reality is that there is still a patchwork of different legal approaches to protecting privacy and personal data. How do these many legal approaches work together in the framework of a borderless digital space? What is still missing?