Table of Contents

Foreword by Gary Marx.- Part 1 Setting the Scene.- 1 – Introduction to privacy impact assessment; David Wright and Paul de Hert.- 2 – A human rights perspective on privacy and data protection impact assessments; Paul de Hert.- 3 – (Regulatory) impact assessment and better regulation; David Parker.- 4 – Prior checking, a forerunner to privacy impact assessments; Gwendal Le Grand and Emilie Barrau.- Part 2 Five Countries Lead the Way.- 5 – PIAs in Australia: A work-in-progress report; Roger Clarke.- 6 – Privacy impact assessment – Great potential not often realised; Nigel Waters.- 7 – Privacy impact assessments in Canada; Robin Bayley and Colin Bennett.- 8 – PIA in New Zealand; John Edwards.- 9 – Privacy impact assessment in the UK; Adam Warren and Andrew Charlesworth.- 10 – PIA requirements and privacy decision-making in US government agencies; Kenneth Bamberger and Deirdre Mulligan.- Part 3 PIA in the Private Sector: Three Examples.- 11 – PIA: Cornerstone of privacy compliance in Nokia; Tobias Bräutigam.- 12 – How Siemens assesses privacy impacts;  Florian Thoma.- 13 – Vodafone’s approach to privacy impact assessments; Stephen Deadman and Amanda Chandler.- Part 4 Specialisesd PIA: the Cases of the Financial Services Indusrty and the RFID PIA Framwork.- 14 – The ISO PIA standard for financial services; Martin Ferris.- 15 – The RFID PIA – developed by industry, agreed by regulators; Sarah Spiekermann.- 16 – Double-take: getting to the RFID PIA Framework; Laurent Beslay and Anne-Christine Lacoste.- Part 5 Specific Issues.- 17 – Surveillance: extending the limits of privacy impact assessment; Charles Raab and David Wright.- 18 – The Madrid Resolution and prospects for transnational PIAs; Artemi Rallo Lombarte.- 19 – Privacy and ethical impact assessment; David Wright and Emilio Mordini.- 20 – Auditing privacy impact assessments: the Canadian experience; Jennifer Stoddart.- 21 – Privacyimpact assessment: Optimising the regulator’s role; Blair Stewart.- 22 – Conclusion: Findings and recommendations; David Wright and Paul de Hert.- About the Authors.- References.- Index.

Reviews

From the reviews:“A volume devoted to one of the privacy tools currently in use to evaluate privacy risks. The book offers a broad and worldwide perspective, with 20–plus chapters contributed by privacy scholars, public and private sector practitioners, and regulators. It’s the first volume on the subject. … Anyone tasked with defining PIA requirements through policy, rule, or law or simply with conducting an individual PIA will be richly rewarded by reading this volume.” (Robert Gellman, First Monday, Vol. 19 (9), September, 2012)“A handbook for those data protection and privacy professionals working in the field … . it gives a comprehensive overview of PIA around the world; it identifies open issues; and it provides the reader with best practices examples of PIA in order to improve any future PIA exercises. … This volume provides a rich set of information and reflections, experiences and examples on PIA, which makes it a truly outstanding contribution in the field—both for practitioners and for academics working in this area.” (Nils Zurawski, International Data Privacy Law, Vol. 2 (4), November, 2012)“Taking a truly international perspective, and with contributions from a large number of leading practitioners, compliance leaders and academics, this publication is in turn historical record, academic study and empirical evaluation. … It is unquestionably an interesting read, with a wealth of experience presented from other countries and multinational companies in relation to the practical realities of using PIAs. … this book is likely to be seen as a highly valuable guide.” (Stephanie Pritchett, Privacy & Data Protection, Vol. 12 (5), June, 2012)