Regulatory Developments

Last updated: 
3 months 2 weeks ago
Blog Manager
Log in to request membershipHide blog description
One of Jisc’s activities is to monitor and, where possible, influence regulatory developments that affect us and our customer universities, colleges and schools as operators of large computer networks. Since Janet and its customer networks are classified by Ofcom as private networks, postings here are likely to concentrate on the regulation of those networks. Postings here are, to the best of our knowledge, accurate on the date they are made, but may well become out of date or unreliable at unpredictable times thereafter. Before taking action that may have legal consequences, you should talk to your own lawyers. NEW: To help navigate the many posts on the General Data Protection Regulation, I've classified them as most relevant to developing a GDPR compliance process, GDPR's effect on specific topics, or how the GDPR is being developed. Or you can just use my free GDPR project plan.

Group administrators:

Recent members:

ENISA: "Right to be Forgotten" has limits

Tuesday, November 20, 2012 - 12:36

ENISA’s study on the “Right to be Forgotten” contains useful reminders that once information is published on the Internet it may be impossible to completely remove it. Implementing a right to be forgotten would involve four stages:

  • Identifying and locating the information to be removed;
  • Tracking all copies that may have been made, including unauthorised copies and modified versions;
  • Determining who has the right to request removal (for example if a photograph shows two or more people, which of them is entitled to delete it?);
  • Removing the information, including all copies and modified versions.

The report notes that Internet technology allows anyone - without requiring any form of authorisation - to copy, modify and republish information, and that technology cannot keep track of these activities. As a result it is generally impossible to even locate all copies and versions of information, let alone find any organisation with the authority or jurisdiction to ensure all of them are removed.

The report concludes that a law (such as the proposed EU Data Protection Regulation) might be able to make information harder to find, though a national or European law would still be limited to Internet search and hosting services within its jurisdiction. But ultimately if you want to be certain of keeping control of information, don’t put it on a public website.

Data Protection Regulation
right to be forgotten
  • Twitter logo
  • LinkedIn logo
  • Google+ logo
  • Reddit logo
  • StumbleUpon logo