Ming Ding | Information Security and
Privacy Group | Data61, CSIROPrivacy legislation and regulations
•The European Union and the European Economic Area
➢2016 -General Data Protection Regulation ( GDPR ): The toughest data privacy and security law in
the world. Though it was drafted and passed by the EU, it imposes obligations onto
organizations anywhere , so long as they target or collect data related to people in the EU. The
GDPR recognizes a list of new data privacy rights , which aim to give individuals more control over
the data they loan to organizations. ( https://gdpr -info.eu/ )
✓The right to be informed
✓The right of access
✓The right to rectification
✓The right to erasure
✓The right to restrict processing
✓The right to data portability
✓The right to object
✓Rights in relation to automated decision making and profiling.