å人æ å ±ä¿è·ã®éèŠæ§ãé«ãŸãäžãåºåæ¥çã«ãããŠãGDPRãžã®å¯Ÿå¿ãæ¥åãšãªã£ãŠããŸããGDPRã¯ãEUåžæ°ã®å人ããŒã¿ãåãæ±ãäžçäžã®äŒæ¥ã«é©çšãããæ³èŠå¶ã§ãããéåããå Žåã«ã¯é«é¡ãªå¶è£éãç§ãããå¯èœæ§ããããŸããåºåæ¥çã§ã¯ãã¿ãŒã²ãã£ã³ã°åºåãªã©ã®å人ããŒã¿ã掻çšããææ³ãäž»æµã§ãããGDPRã«é©åããããã«ã¯ãããŒã¿ã®åéã»ç®¡çæ¹æ³ãåæååŸããã»ã¹ã®èŠçŽããäžå¯æ¬ ã§ããæ¬èšäºã§ã¯ãGDPRã®æŠèŠãšåºåæ¥çãžã®åœ±é¿ãå ·äœçãªå¯Ÿå¿æ¹æ³ã«ã€ããŠãåå¿è ã«ãåããããã解説ããŸãã
GDPRãšã¯äœãïŒåºåæ¥çãžã®åœ±é¿ã解説
è¿å¹Žãå人æ å ±ä¿è·ã«é¢ããèŠå¶ãäžççã«åŒ·åãããäžã欧å·é£åïŒEUïŒã§æœè¡ããããEUäžè¬ããŒã¿ä¿è·èŠåãïŒGDPRïŒã泚ç®ãéããŠããŸããGDPRã¯ãEUã«ãããå人ããŒã¿ã®ä¿è·ãšåãæ±ãã«é¢ããå æ¬çãªæ³èŠå¶ã§ãEUåå ã§äºæ¥ãå±éããäŒæ¥ã ãã§ãªããEUåžæ°ã®å人ããŒã¿ãåãæ±ãäžçäžã®äŒæ¥ã«é©çšãããŸããç¹ã«ãåºåæ¥çã¯å人ããŒã¿ã掻çšããããšãå€ããããGDPRã®åœ±é¿ã倧ããåãããšèããããŠããŸããæ¬èšäºã§ã¯ãGDPRã®æŠèŠãšç®çãåºåæ¥çãžã®åœ±é¿ãéåããå Žåã®ããã«ãã£ã«ã€ããŠè§£èª¬ããŸãã
GDPRã®æŠèŠãšç®ç
GDPRã¯ãEUåžæ°ã®å人ããŒã¿ä¿è·ã匷åããããŒã¿äž»äœïŒå人ïŒã®æš©å©ãæ¡å€§ããããšãç®çãšããæ³èŠå¶ã§ããäž»ãªç¹åŸŽã¯ä»¥äžã®éãã§ãã
- å人ããŒã¿ã®å®çŸ©ã®æ¡å€§ïŒIPã¢ãã¬ã¹ãCookieããŒã¿ãªã©ãå«ãïŒ
- ããŒã¿äž»äœã®æš©å©ã®åŒ·åïŒããŒã¿ã¢ã¯ã»ã¹æš©ãåé€æš©ã移転暩ãªã©ïŒ
- ããŒã¿ä¿è·è²¬ä»»è ïŒDPOïŒã®èšçœ®çŸ©å
- ãã©ã€ãã·ãŒã»ãã€ã»ãã¶ã€ã³ãšãã©ã€ãã·ãŒã»ãã€ã»ããã©ã«ãã®å°å ¥
- ããŒã¿ä¿è·åœ±é¿è©äŸ¡ïŒDPIAïŒã®å®æœçŸ©å
ãããã®èŠå®ã«ãããäŒæ¥ã¯ããŒã¿äž»äœã®åæååŸãæ å ±æäŸãããŒã¿ç®¡çäœå¶ã®æŽåãªã©ãæ±ããããŸããGDPRã¯ãäŒæ¥ã«å¯ŸããŠéææ§ã®é«ãå人ããŒã¿ã®åãæ±ããèŠæ±ããŠãããéåããå Žåã«ã¯é«é¡ãªå¶è£éã課ãããå¯èœæ§ããããŸãã
GDPRãåºåæ¥çã«äžãã圱é¿
åºåæ¥çã§ã¯ãã¿ãŒã²ãã£ã³ã°åºåããªããŒã±ãã£ã³ã°åºåãªã©ãå人ããŒã¿ã掻çšããåºåææ³ãäž»æµãšãªã£ãŠããŸããGDPRã®æœè¡ã«ããããããã®ææ³ã«å€§ããªåœ±é¿ãçãããšäºæ³ãããŸãã
åºåææ³ | GDPRã®åœ±é¿ |
---|---|
ã¿ãŒã²ãã£ã³ã°åºå | ãŠãŒã¶ãŒã®åæååŸãå¿ èŠãšãªããã¿ãŒã²ãã£ã³ã°ã®ç²ŸåºŠãäœäžããå¯èœæ§ãããã |
ãªããŒã±ãã£ã³ã°åºå | ãŠãŒã¶ãŒã®åæååŸãšãããŒã¿åé€èŠæ±ãžã®å¯Ÿå¿ãå¿ èŠãšãªãã |
è¡åã¿ãŒã²ãã£ã³ã°åºå | ãŠãŒã¶ãŒã®è¡åå±¥æŽã®ååŸã«åæãå¿ èŠãšãªããããŒã¿åéãå¶éãããã |
ãŸããåºåäž»ãšãããªãã·ã£ãŒãã¢ããã¯ãã³ããŒãªã©ã®é¢ä¿è éã§ãããŒã¿å ±æãåŠçã«é¢ããå¥çŽã®èŠçŽããå¿ èŠãšãªããŸããGDPRãžã®å¯Ÿå¿ã¯ãåºåæ¥çå šäœã§åãçµãã¹ã課é¡ã§ãããå瀟ãã³ã³ãã©ã€ã¢ã³ã¹äœå¶ãæŽåãããŠãŒã¶ãŒã®ãã©ã€ãã·ãŒä¿è·ã«åªããããšãæ±ããããŸãã
GDPRã«éåããå Žåã®ããã«ãã£
GDPRã«éåããå Žåã以äžã®ãããªããã«ãã£ã課ãããå¯èœæ§ããããŸãã
- å¶è£éïŒéåã®å 容ãçšåºŠã«å¿ããŠãå šäžç幎é売äžé«ã®4ïŒ ãŸãã¯2,000äžãŠãŒãïŒçŽ26ååïŒã®ããããé«ãæ¹ãäžéãšããŠèª²ãããã
- æ¯æ£æªçœ®ã®åœä»€ïŒç£ç£åœå±ãããéåè¡çºã®æ¯æ£ãå人ããŒã¿ã®åŠçåæ¢ãªã©ã®åœä»€ãåããå¯èœæ§ãããã
- è©å€ã®äœäžïŒGDPRã®éåãå ¬ã«ãªãããšã§ãäŒæ¥ã®ä¿¡é Œæ§ãè©å€ã倧ããæãªããããªã¹ã¯ãããã
GDPRã®éåã¯ãäŒæ¥ã«ãšã£ãŠå€§ããªæ倱ã«ã€ãªãããããŸããããã®ãããåºåæ¥çã«éãããEUåžæ°ã®å人ããŒã¿ãåãæ±ããã¹ãŠã®äŒæ¥ã¯ãGDPRãç解ããé©åãªå¯Ÿå¿ãè¡ãããšãäžå¯æ¬ ã§ãã
æ¬èšäºã§ã¯ãGDPRã®æŠèŠãšç®çãåºåæ¥çãžã®åœ±é¿ãéåããå Žåã®ããã«ãã£ã«ã€ããŠè§£èª¬ããŸãããGDPRã¯ãå人ããŒã¿ä¿è·ã®èŠ³ç¹ãããåºåæ¥çã«å€§ããªå€é©ãããããæ³èŠå¶ã§ããäŒæ¥ã¯ããŠãŒã¶ãŒã®ãã©ã€ãã·ãŒä¿è·ãæåªå ã«èããéææ§ã®é«ãå人ããŒã¿ã®åãæ±ããè¡ãããšãæ±ããããŸããGDPRãžã®å¯Ÿå¿ã¯ãçæçã«ã¯äŒæ¥ã«ãšã£ãŠè² æ ãšãªããããããŸããããäžé·æçã«ã¯ããŠãŒã¶ãŒãšã®ä¿¡é Œé¢ä¿ã®æ§ç¯ããããŒã¿ç®¡çäœå¶ã®åŒ·åã«ã€ãªãããšæåŸ ãããŸããåºåæ¥çã®é¢ä¿è ã¯ãGDPRãæ·±ãç解ããé©åãªå¯Ÿå¿ãé²ããŠããããšãéèŠã§ãã
åºåæ¥çã«ãããGDPRãžã®å¯Ÿå¿æ¹æ³
GDPRã®æœè¡ã«ãããåºåæ¥çã¯å人ããŒã¿ã®åãæ±ãã«ã€ããŠå€§ããªåœ±é¿ãåããŠããŸããåºåäž»ãåºå代çåºãã¢ããã¯ãã³ããŒãªã©ã®é¢ä¿è ã¯ãGDPRã«é©åããããã®å¯Ÿå¿çãè¬ããå¿ èŠããããŸããããã§ã¯ãåºåæ¥çãGDPRã«å¯Ÿå¿ããããã®æ¹æ³ã«ã€ããŠè©³ãã解説ããŸãã
å人ããŒã¿ã®åéãšç®¡çæ¹æ³ã®èŠçŽã
GDPRã§ã¯ãå人ããŒã¿ã®å®çŸ©ãæ¡å€§ãããIPã¢ãã¬ã¹ãCookieããŒã¿ãªã©ãå人ããŒã¿ãšããŠæ±ãããããã«ãªããŸãããåºåæ¥çã§ã¯ããããã®ããŒã¿ã掻çšããã¿ãŒã²ãã£ã³ã°åºåãäž»æµãšãªã£ãŠããŸãããGDPRã«é©åããããã«ã¯ãããŒã¿ã®åéãšç®¡çæ¹æ³ãèŠçŽãå¿ èŠããããŸãã
å ·äœçã«ã¯ã以äžã®ãããªå¯Ÿå¿ãæ±ããããŸãã
- å人ããŒã¿ã®åéç®çãæ確åãããŠãŒã¶ãŒã«åããããã説æãã
- å¿ èŠæå°éã®ããŒã¿ã®ã¿ãåéããç®çéæåŸã¯éããã«åé€ãã
- ããŒã¿ã®æå·åãå¿ååãªã©ã®å®å šç®¡çæªçœ®ãè¬ãã
- ããŒã¿äž»äœã®æš©å©ïŒã¢ã¯ã»ã¹æš©ãåé€æš©ã移転暩ãªã©ïŒã«å¯Ÿå¿ã§ããäœå¶ãæŽåãã
ãããã®å¯Ÿå¿ã«ãããå人ããŒã¿ã®åéãšç®¡çãé©åã«è¡ããGDPRã«é©åããããšãã§ããŸãã
åæååŸããã»ã¹ã®æ¹å
GDPRã§ã¯ãå人ããŒã¿ã®åãæ±ãã«ã€ããŠããŠãŒã¶ãŒã®æ瀺çãªåæãå¿ èŠãšãããŠããŸããåºåæ¥çã§ã¯ãã¿ãŒã²ãã£ã³ã°åºåãªã©ã«å©çšããããã«ããŠãŒã¶ãŒã®è¡åå±¥æŽãèå³é¢å¿ããŒã¿ãåéããããšãäžè¬çã§ãããGDPRã«é©åããããã«ã¯ãé©åãªåæååŸããã»ã¹ãæŽåããå¿ èŠããããŸãã
å ·äœçã«ã¯ã以äžã®ãããªå¯Ÿå¿ãæ±ããããŸãã
- å¹³æãªèšèã§ãããŒã¿åéã®ç®çãå©çšæ¹æ³ã説æãã
- ãªããã€ã³æ¹åŒã§ããŠãŒã¶ãŒãèœåçã«åæãäžããä»çµã¿ãå°å ¥ãã
- åæã®æ€åãå€æŽãç°¡åã«è¡ããæ©èœãæäŸãã
- åæååŸã®èšé²ãé©åã«ç®¡çããå¿ èŠã«å¿ããŠèšŒæã§ããããã«ãã
ãŠãŒã¶ãŒã®åæãé©åã«ååŸããããšã§ãGDPRã«é©åãããŠãŒã¶ãŒãšã®ä¿¡é Œé¢ä¿ãç¯ãããšãã§ããŸãã
ããŒã¿ä¿è·è²¬ä»»è ïŒDPOïŒã®èšçœ®
GDPRã§ã¯ãäžå®ã®æ¡ä»¶ã«è©²åœããäŒæ¥ã«å¯ŸããŠãããŒã¿ä¿è·è²¬ä»»è ïŒDPOïŒã®èšçœ®ã矩åä»ããããŠããŸããDPOã¯ãå人ããŒã¿ã®åãæ±ãã«é¢ããç£ç£ãå©èšãè¡ããGDPRãžã®é©åæ§ã確ä¿ãã圹å²ãæ ããŸãã
åºåæ¥çã§ã¯ã倧éã®å人ããŒã¿ãåãæ±ãããšãå€ããããDPOã®èšçœ®ãå¿ èŠãšãªãã±ãŒã¹ãå€ããšèããããŸããDPOã¯ã以äžã®ãããªæ¥åãè¡ããŸãã
- å人ããŒã¿ã®åãæ±ãã«é¢ãã瀟å ããªã·ãŒãæç¶ãã®çå®ãšå®æœ
- åŸæ¥å¡ãžã®æè²ããã¬ãŒãã³ã°ã®å®æœ
- ããŒã¿ä¿è·åœ±é¿è©äŸ¡ïŒDPIAïŒã®å®æœãšç£ç£
- ç£ç£åœå±ãšã®é£çµ¡çªå£ãšããŠã®åœ¹å²
DPOãèšçœ®ããå人ããŒã¿ä¿è·ã«é¢ããäœå¶ãæŽåããããšã§ãGDPRãžã®é©åæ§ãé«ããããšãã§ããŸãã
GDPRãžã®å¯Ÿå¿ã¯ãåºåæ¥çã«ãšã£ãŠå€§ããªèª²é¡ã§ãããåæã«ãŠãŒã¶ãŒãšã®ä¿¡é Œé¢ä¿ãæ§ç¯ããæ©äŒã§ããããŸããå人ããŒã¿ã®åéãšç®¡çæ¹æ³ã®èŠçŽããåæååŸããã»ã¹ã®æ¹åãDPOã®èšçœ®ãªã©ã®å¯Ÿçãè¬ããããšã§ãGDPRã«é©åãã€ã€ããŠãŒã¶ãŒã®ãã©ã€ãã·ãŒä¿è·ãšäºæ¥ã®çºå±ãäž¡ç«ããããšãã§ããã§ããããåºåæ¥çã®é¢ä¿è ã¯ãGDPRãæ·±ãç解ããé©åãªå¯Ÿå¿ãé²ããŠããããšãéèŠã§ãã
GDPRãèžãŸããåºåé ä¿¡ã®æé©å
GDPRã®æœè¡ã«ãããåºåæ¥çã¯å人ããŒã¿ã®åãæ±ãã«é¢ããŠå€§ããªåœ±é¿ãåããŠããŸããããããGDPRãéµå®ããªãããå¹æçãªåºåé ä¿¡ãè¡ãããšã¯å¯èœã§ããããã§ã¯ãGDPRãèžãŸããåºåé ä¿¡ã®æé©åã«ã€ããŠãå ·äœçãªææ³ã解説ããŸãã
ã¿ãŒã²ãã£ã³ã°ææ³ã®å·¥å€«
GDPRã§ã¯ãå人ããŒã¿ã®åéãšå©çšã«ã€ããŠããŠãŒã¶ãŒã®åæãå¿ èŠãšãããŠããŸãããã®ãããåŸæ¥ã®ãããªãã现ããã¿ãŒã²ãã£ã³ã°ãé£ãããªã£ãŠããé¢ããããŸãããããã以äžã®ãããªææ³ãçšããããšã§ãGDPRã«é©åãã€ã€ãå¹æçãªã¿ãŒã²ãã£ã³ã°ãå¯èœã§ãã
- ã³ã³ãã¯ã¹ãã¥ã¢ã« ã¿ãŒã²ãã£ã³ã°ïŒãŠãŒã¶ãŒã®é²èŠ§ããŠããããŒãžã®å 容ã«åºã¥ããŠåºåãé ä¿¡ããææ³ãå人ããŒã¿ã䜿çšããªããããGDPRã®å¶çŽãåãã«ããã
- ãã¡ãŒã¹ãããŒãã£ããŒã¿ã®æŽ»çšïŒèªç€Ÿãµã€ããã¢ããªã§åéããããŠãŒã¶ãŒã®åæãåŸãããŒã¿ã掻çšããããµãŒãããŒãã£ããŒã¿ã«æ¯ã¹ãGDPRã®é©çšãç·©ãããªå Žåãããã
- ã»ã°ã¡ã³ãã®æé©åïŒå¹ åºããŠãŒã¶ãŒå±€ã«å¯ŸããŠåºåãé ä¿¡ããã¬ã¹ãã³ã¹ã®è¯ãã»ã°ã¡ã³ããç¹å®ããããšã§ãå¹æçãªã¿ãŒã²ãã£ã³ã°ãå¯èœã
ãããã®ææ³ãçµã¿åãããããšã§ãGDPRã«é©åããªããããŠãŒã¶ãŒã®èå³é¢å¿ã«åãããåºåé ä¿¡ãå¯èœãšãªããŸãã
éææ§ã®é«ãåºå衚瀺
GDPRã§ã¯ãå人ããŒã¿ã®åãæ±ãã«ã€ããŠãéææ§ã®ç¢ºä¿ãæ±ããããŠããŸããåºåé ä¿¡ã«ãããŠãããŠãŒã¶ãŒã«å¯ŸããŠãããŒã¿ã®å©çšç®çãååŸæ¹æ³ãæ瀺ããããšãéèŠã§ããå ·äœçã«ã¯ã以äžã®ãããªå¯Ÿå¿ãèããããŸãã
- åºå衚瀺ã«ã¢ã€ã³ã³ãã©ãã«ãä»äžãããŠãŒã¶ãŒãããŒã¿ã®å©çšç¶æ³ã確èªã§ããããã«ããã
- ãã©ã€ãã·ãŒããªã·ãŒãã¯ãããŒããªã·ãŒãåãããããèšèŒãããŠãŒã¶ãŒã容æã«ã¢ã¯ã»ã¹ã§ããå Žæã«æ²èŒããã
- ãªããã¢ãŠãæ©èœãæäŸãããŠãŒã¶ãŒãããŒã¿å©çšãæåŠã§ããéžæè¢ãçšæããã
éææ§ã®é«ãåºå衚瀺ãè¡ãããšã§ããŠãŒã¶ãŒã®ä¿¡é Œãç²åŸããGDPRãžã®é©åæ§ãé«ããããšãã§ããŸãã
æ¶è²»è ã®ãã©ã€ãã·ãŒä¿è·ãšåºåå¹æã®ãã©ã³ã¹
GDPRãžã®å¯Ÿå¿ã¯ãæ¶è²»è ã®ãã©ã€ãã·ãŒä¿è·ãšåºåå¹æã®ãã©ã³ã¹ãåãããšãéèŠã§ããé床ãªå人ããŒã¿ã®åéãå©çšãæ§ããããšã§ããŠãŒã¶ãŒã®ä¿¡é Œãç²åŸã§ããäžæ¹ãåºåå¹æãäœäžããå¯èœæ§ããããŸãããã®ãããããŒã¿ã®å©çšç®çãæ確ã«ããå¿ èŠæå°éã®ããŒã¿ãåéã»æŽ»çšããããšãæ±ããããŸãã
ãŸããããŒãœãã©ã€ãºãåºåãšãã³ããŒãœãã©ã€ãºãåºåãçµã¿åããããªã©ããŠãŒã¶ãŒã®éžæè¢ãæäŸããããšãå¹æçã§ãããŠãŒã¶ãŒã®ãã©ã€ãã·ãŒä¿è·ãéèŠãã€ã€ãé©åãªåºåé ä¿¡ãè¡ãããšã§ãäžé·æçãªåºåå¹æã®åäžãæåŸ ã§ããŸãã
ææ³ | ã¡ãªãã | ãã¡ãªãã |
---|---|---|
ããŒãœãã©ã€ãºãåºå | ãŠãŒã¶ãŒã®èå³é¢å¿ã«åãããåºåé ä¿¡ãå¯èœ | å人ããŒã¿ã®åéã»å©çšã«åæãå¿ èŠ |
ãã³ããŒãœãã©ã€ãºãåºå | å人ããŒã¿ã䜿çšããªããããGDPRã®å¶çŽãåãã«ãã | åºåå¹æãçžå¯Ÿçã«äœãå¯èœæ§ããã |
GDPRãèžãŸããåºåé ä¿¡ã®æé©åã¯ãã¿ãŒã²ãã£ã³ã°ææ³ã®å·¥å€«ãéææ§ã®é«ãåºå衚瀺ãæ¶è²»è ã®ãã©ã€ãã·ãŒä¿è·ãšåºåå¹æã®ãã©ã³ã¹ãåãããšãéèŠã§ãããããã®ç¹ã«çæããªãããé©åãªåºåé ä¿¡æŠç¥ãç«ãŠãããšã§ãGDPRã«é©åãã€ã€ãå¹æçãªåºåé ä¿¡ãå¯èœãšãªãã§ããããåºåæ¥çã®é¢ä¿è ã¯ãGDPRã®èŠä»¶ãæ·±ãç解ããæ¶è²»è ã®ãã©ã€ãã·ãŒä¿è·ãšäºæ¥ã®çºå±ãäž¡ç«ãããåªåãæ±ããããŠããŸãã
ãŸãšã
GDPRã¯ãEUåžæ°ã®å人ããŒã¿ä¿è·ã匷åããããã®æ³èŠå¶ã§ãããåºåæ¥çã«å€§ããªåœ±é¿ãäžããŠããŸããã¿ãŒã²ãã£ã³ã°åºåãªã©ã®å人ããŒã¿ã掻çšããææ³ãäž»æµã®äžãGDPRã«é©åããããã«ã¯ãããŒã¿ã®åéã»ç®¡çæ¹æ³ãåæååŸããã»ã¹ã®èŠçŽããããŒã¿ä¿è·è²¬ä»»è ïŒDPOïŒã®èšçœ®ãªã©ãå¿ èŠã§ãããŸããã¿ãŒã²ãã£ã³ã°ææ³ã®å·¥å€«ãéææ§ã®é«ãåºå衚瀺ãæ¶è²»è ã®ãã©ã€ãã·ãŒä¿è·ãšåºåå¹æã®ãã©ã³ã¹ãåãããšãéèŠã§ããGDPRãžã®å¯Ÿå¿ã¯ããŠãŒã¶ãŒãšã®ä¿¡é Œé¢ä¿æ§ç¯ããããŒã¿ç®¡çäœå¶ã®åŒ·åã«ã€ãªããæ©äŒã§ããããããåºåæ¥çã®é¢ä¿è ã¯é©åãªå¯Ÿå¿ãé²ããŠããããšãæ±ããããŸãã