Authors: Rebecca Wong, Joseph Savirimuthu
Addresses: Nottingham Law School, Burton Street, Nottingham, NG1 4BU, UK. ' Liverpool Law School, University of Liverpool, Liverpool, L69 7ZS, UK
Abstract: Identity and its management is now an integral part of web-based services and applications. It is also a live political issue that has captured the interest of organisations, businesses and society generally. As identity management systems assume functionally equivalent roles, their significance for privacy cannot be underestimated. The Centre for Democracy and Technology has recently released a draft version of what it regards as key privacy principles for identity management in the digital age. This paper will provide an overview of the key benchmarks identified by the CDT. The focus of this paper is to explore how best the Data Protection legislation can be said to provide a framework which best maintains a proper balance between |identity| conscious technology and an individual|s expectation of privacy to personal and sensitive data. The central argument will be that increased compliance with the key principles is not only appropriate for a distributed privacy environment but will go some way towards creating a space for various stakeholders to reach consensus applicable to existing and new information communication technologies. The conclusion is that securing compliance with the legislation will prove to be the biggest governance challenge. Standard setting and norms will go some way to ease the need for centralised regulatory oversight.
Keywords: privacy; governance; data protection; identity management systems; internet; legislation; ICT; information technology; communications technology; regulatory oversight.
International Journal of Intellectual Property Management, 2008 Vol.2 No.4, pp.396 - 410
Available online: 26 Nov 2008 *Full-text access for editors Access for subscribers Purchase this article Comment on this article