Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: formatting


  1. The OECD privacy principles, which have been the basis for the EU data protection directive. The benefit is, that OECD is not limited just to the UK or Europe.
  2. The EU Data Protection Directive 95/46/EC (Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data)
  3. Additional material is provided by the Article 29 Data Protection Working Party
    1. Opinion on the Concept of Personal Data pdf
    2. Opinion on the concepts of "controller" and "processor" pdf
    3. Opinion on Consent pdf
  4. In addition, while the legal principles are buried in the Directive, the UK law provides a different presentation, which may be more readable
  5. An opinion from the European Court that a member state cannot further limit the power to process data, by adding an additional qualification to their equivalent of Art 7f. There are comments that this is a reminder that the Directive is supposed to \*promote\* the flow of data at the same time as protecting the privacy of individuals.
    1. A related blog posting
  6. A memo from DLA Piper to the eduGAIN project
  7. The REFEDS paper on data protection in Federated Access Management pdf
  8. The eduGAIN Policy Framework Data Protection Good Practice Profile ver 1.0 pdf