Privacy, Data Protection and Data-driven Technologies

Martin Ebers is President of the Robotics & AI Law Society (RAILS) and Associate Professor of IT Law at the University of Tartu (Estonia). He taught and presented at more than 100 international conferences, is a member of several national and international research networks and published 16 books and over 120 articles in the field of law and technology, especially artificial intelligence, as well as in commerical, private, European, comparative and international law. His latest books include Algorithms and Law (2020), Algorithmic Governance and Governance of Algorithms (2021), Contracting and Contract Law in the Age of Artificial Intelligence (2022) and the Stichwortkommentar Legal Tech (2023). Karin Sein is a Professor of Civil Law in the Faculty of Law of the University of Tartu, Estonia. Her main research interests cover domestic and European contract law, consumer law, private international law and international civil procedure and also law and digitalisation. In recent years, she has provided expertise for the Estonian Ministry of Justice on implementing European consumer protection directives into Estonian contract law. During the Estonian EU Presidency in July–December 2017, she was acting as Chair for the Council Working Group for the Proposals of the Directive on Digital Content and of the Directive on Sale of Consumer Goods.

Preface by Wojciech Wiewiórowski

Part I: Introduction

1. Data-driven Technologies: Challenges for Privacy and Data Protection Law

Part II: Consent, Data Protection and New Technologies

2. Dark Patterns and the Scraping Consumer Consent: Comparative Remarks on More Effective Legal Compliance

3. The Consent Service in Estonia: Enhancement of State-held Data Sharing vs Privacy Risks

4. Consent to Data Processing in Biobanking: Regulatory Challenges of Data Processing in Biobanking on the Estonian Example

Part III: M2M Communication, AI Systems and Data Protection

5. M2M Communications in 5G Networks: Data Protection and Privacy Aspects

6. Training of AI Systems: How to Comply with the GDPR?

7. Training Your Medical/Nursing Robot: From the General Data Protection Regulation to the European Health Data Space

Part IV: Blockchain, Robots, Legal Tech and Data Protection Challenges

8. Data Protection and Blockchain Technologies

9. Personal Care Robots and EU Data Protection Law

10. Legal Tech and Data Protection: Enemies or Friends?

Part V: Behavioral Advertising, Biometrics, Emotions and Data Protection

11. The Mismatch between GDPR and Behavioural Advertising: What Way Forward?

12. Beyond Procedural Fetishism: The Inadequacy of GDPR in Regulating Facial Recognition Technologies and Public Space Surveillance

13. The Privacy of Emotions: From the GDPR to the AI Act – An Overview of Emotional AI Regulation and the Protection of Privacy and Personal Data