Blockchain and privacy: Can they live together?

Listen to article
9 minute read

The amount of data in our world is rapidly increasing. In the Big Data era, data is constantly being collected and analyzed, leading to innovation and economic growth. Companies and organizations use the data they collect to personalize services and optimize the corporate decision-making process, among other things. Today, data is a critical asset in our economy. While we appreciate the benefits of a data-driven society, there is a growing public concern about user privacy. Centralized organizations—both public and private—amass large quantities of personal and sensitive information. Individuals have little to no control of how data about them is stored or used.

As a consequence of public concern regarding the use (or abuse) of personal data, legislators tried to update privacy laws to cope with recent data use technological development, mainly due to social media and other applications (Web 2.0). The European Union (EU) General Data Protection Regulation (GDPR) became binding in May 2018. The GDPR establishes a framework of fundamental rights protection based on the right to data protection in Article 8 of the EU Charter of Fundamental Rights.[1] The GDPR was followed by other privacy legislation worldwide, including the California Consumer Privacy Act (CCPA), etc. The objective of privacy law is to protect natural persons through the fair processing of their personal data and respect their fundamental rights and freedoms—particularly their right to protect personal data. For that purpose, privacy rules create obligations for data controllers—the entities determining the means and purposes of data processing; they allocate many rights to data subjects—the natural persons to whom personal data relates that can be enforced by data controllers.

Blockchain technology has evolved in the last two decades to become one of the most hyped technologies publicly debated in recent years. However, blockchain technology and data privacy laws and regulations have largely developed independently. Heightened global data protection regimes with dramatically increased potential fines drive businesses to further reevaluate their privacy practices. Organizations currently face significant ambiguity and complexity in applying data privacy requirements to blockchain technology and associated services.

This article aims to explain blockchain technology, including its core elements; to discuss key similarities and differences between the use of blockchain and data privacy laws and regulations compliance; and to suggest potential measures for mitigating compliance risks and enabling the use of personal data on blockchain while assuring data privacy.

This document is only available to members. Please log in or become a member.
 


Would you like to read this entire article?

If you already subscribe to this publication, just log in. If not, let us send you an email with a link that will allow you to read the entire article for free. Just complete the following form.

* required field