Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
International Jurisdiction over Cross-border Private Enforcement Actions under the GDPR
Stockholm University, Faculty of Law, Department of Law.
2018 (English)In: Scandinavian Studies in Law, ISSN 0085-5944, Vol. 65Article in journal (Other academic) Published
Abstract [en]

The new European Union (EU) Regulation on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter “General Data Protection Regulation or “GDPR”) aims to strengthen individual rights for the protection of personal data by, inter alia, facilitating private enforcement actions. To this end, the GDPR clarifies the data subject’s right to a direct and independent private enforcement action directly against the controller or processer. As the infringement of personal data rights increasingly takes on cross border dimensions, the GDPR sets out rules on jurisdiction allowing the data subject to bring a private enforcement action in the Member State where the offending controller or processor has its establishment, or alternatively in the Member State where the data subject has his or her habitual residence.

The aim of this article is to analyze the jurisdictional options available to a data subject to bring a private enforcement action to enforce his/her data protection rights before the GDPR, under the Member States’ general rules on jurisdiction in private international law, and after the GDPR, under the GDPR’s own rules on jurisdiction. In addition, the article analyzes whether the new rules on jurisdiction in the GDPR supplement or supplant the Member States’ general rules on jurisdiction. The article discusses and analyzes the areas where the application and interpretation of the rules are unclear, and proposes interpretations that best serve the objectives of the GDPR to strengthen the rights of data subjects by facilitating private enforcement actions without jeopardizing the principle of legal certainty deemed necessary for the free movement of data within the EU.

Place, publisher, year, edition, pages
2018. Vol. 65
Keywords [en]
International jurisdiction, GDPR, Brussels, Regulation
National Category
Law (excluding Law and Society)
Research subject
Legal Science
Identifiers
URN: urn:nbn:se:su:diva-161563DOI: 10.2139/ssrn.3159854OAI: oai:DiVA.org:su-161563DiVA, id: diva2:1261600
Available from: 2018-11-08 Created: 2018-11-08 Last updated: 2018-11-13Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text

Search in DiVA

By author/editor
Lundstedt, Lydia
By organisation
Department of Law
In the same journal
Scandinavian Studies in Law
Law (excluding Law and Society)

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 152 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf