Privacy Traking System Control

software to empower individuals with the automated right to data privacy in relation to the automated processing of their data

The software will have the ability to generate the following core tasks:

• Scan all search engines to monitor what information is on the web and will allow automatically update of personal data (data accuracy) after a set of time that can be set when designing the software, considering the law;
• Journalise and structure the search results upon the controllers identification, jurisdiction, personal data categories or information/the context in which the source appeared and the source of the referral from the web pages (authors, public authorities, databases, etc.);
• Authomated generating standardised requests for the right of access to personal data concerning him/her on behalf of data subject , structuring the form of content (aspects of form, skill and legal ground of processing, rights and previsions that the individual in most cases does not know);
• Shipment in electronic format (with electronic signature) to the electronic addresses of the controllers (entities, public authorities, including to their data protection officers) or generation of the request for printing and sending it signed in hard copy form by mail to the legal address of the controllers;
• Establishment of a „privacy” agenda by tracking (1) the date when the request was sent to the controller that has processed his/her data and (2) the legal term in which the response is to be answered by that controller, prescribed by the law on data protection or law on solving complaints, with automatic alerting and notifying data subject by counting the exact days left/deadline of solving his/her request;
• Upon deadline of submission of the answer to the data subject request, the software to offer the possibility, given the jurisdiction of the controller, to issue a complaint to be addressed directly to the data protection authority of the country concerned/or other entitled Ministry;
• Track an automatic confirmation that the authority has received the request and has registered with the setting in the privacy agenda of the term when the answer is to be generated by the Authority to individual;
• Enrolment of the answer in the system regarding the response and the actions taken by the authority;
• Establish an opportunity to anonymize the decision issued by the Authority and unify the practice of all decisions issued in relation to other individuals concerning the infringement of their right to data privacy;
• Allow the possibility of search within that unified database of specific decision based on certain search criteria;
• Allow the possibility of addressing even anonymous requests when the individual has not yet given the data about himself but wants to know about the, identity of the controllers, what personal data categories it processes, collects, with whom it shares them, how long it store the data collected from the data subject etc.

The application must be designed for both PC, tablet and mobile etc. The application is addressed to data subjects in relation to data controllers and their data processors.

This is a new application, designed to solve the e-globalisation and public services challenges that brought to the people and economy great advantages. In the light of the new European legislation, it will be transposed to the core legal principles of privacy by design and privacy by default.

The soft will be adjusted to the legal principles of privacy by design and privacy by default principles, which will ensure a fair equilibrium in an democratic society by promoting the open data, transparency and will safeguard to each individual or consumer the right to data privacy as enshrined in the Art. 12 of Universal Declaration of Human Rights, conferring the right tools to empower them to take back the control on their personal data. The soft will ensure the right to privacy against automated processing, in automated way, generating each time in the soft a notification to the data subject on communication, transmission, accession of his/her personal data as a mean and legal way on ensuring as well as the right to the information.

The application must be designed for both PC, tablet and mobile etc. The application is addressed to data subjects in relation to data controllers and their data processors. The software adjusted towards e-personal office of the consumer/data subject, will be tracking and inform the data subject on each processed information, identity of data controller, and the management of automated requests generated by the application on behalf of the data subject to data controller or its processors.

The application is designed for individual, data subject and informing, alarming the individual, as well as controller, authority, in accordance with the law.  The application is empower as well as its tasks to implement and follow the legal provision of data protection.

The application is designated to such an extend to scan all the public or private entities that processed or is processing or stored the information about the individual and inform him/her. Based on personal information scanned, the application identifies the entity, also it is linked with the Authority and State Register of Population as a matter of obligation. 

The application, based on a system database can work without internet, but plugged in power. As a matter of fact, the user when first time accessing into the syste, he/she must only register him/herself. The rest of the work is done by the system, and the user is informed about the management of the transmission of information concerning him/her, as a way to control his/her privacy, in an automated way, including in the final stage where the Authority is pronouncing the decision in relation to the controller that infringed the right to data privacy, on behalf of the individual. 

The application is designed for people above 16 years old. It will be provided as electronic signature, to each of individual, and can be purchased at an affordable price. 

National Government

ROMANIAN ASSOCIATION OF SPECIALISTS IN CONFIDENTIALITY AND DATA PROTECTION

National Center for Personal Data Protection

National Public Service Agency

National Police Inspectorate

European Business Association

American Chamber of Commerce

We are the only NGO that promotes the right to data protection and privacy in Moldova, with professional experience gathered from the Data Protection Authority with more than 5 year.

Also, we have support and consult the Government, Business sector and individuals etc. 

Due to the EU Regulation on Data Protection which has a direct impact on business in Moldova, including on individuals with dual citizenship the second being EU, and because of the migration of the population, the NGO is asked to consult and provide support to the private sector, as well as to individuals by representing their rights in court. Moreover, having regard the EU direct neighbourhood with Moldova, the National Data Protection Authority has been elaborated and now the Parliament approved in the first lecture the new law on data protection wich transposes the EU Regulation by 80%. The IT companies settles in Moldova, call centers already requested from us training and written instructions and policies to safeguard the right to privacy and data protection not in accordance with the existing legislation but with the new one approved.

We do understand that by applying to the Mission Billion Challenge, we can contribute with a solution  in this area to the entire world, even thought there is a competition. Also, in the case of not being short-listed we would predict that a better solution has been chosen, that means more expertise and resources in this field shall be invested in the team, especially networking and socialisation. Namely, the MBC is the only platform that can create the achievement of possible further investment and co-operation with the world's or national professionals in this challenging area.

The awareness at the national level is one of the challenges, however via outreach campaigns we can assert this goal for the data subjects. Another challenge will be to convince the data controllers to incorporate this soft or via interoperability system to follow and answer the requests of data subjects which is still bureaucratic and time-consuming procedure for all data controller, as it is provided by data protection legal provisions, even thus it is automatised.