Protection of neurodata in the European Union: impacts of emerging (neuro)technologieson the (neuro)privacy of the data subject

Latin American Journal of European Studies Pub Date : 2023-12-01 DOI:10.51799/2763-8685v3n2006

Sofia Frischenbruder Sulzbach

{"title":"Protection of neurodata in the European Union: impacts of emerging (neuro)technologieson the (neuro)privacy of the data subject","authors":"Sofia Frischenbruder Sulzbach","doi":"10.51799/2763-8685v3n2006","DOIUrl":null,"url":null,"abstract":"The commercialization of technologies that interface with the human brain has caught attention of the international community, as they allow the collection of data from dimensions that, until now, were considered unobservable by the general public: brain activity data, commonly referred to as \"neurodata\". The insertion of such devices in the consumer market is especially relevant in the current technological context, in which Artificial Intelligence (AI) systems allow the processing of raw neurodata (inputs) and the generation of decoded neurodata (outputs) on the cognitive, affective and/or conative state of the subjects to which they refer. This new factual reality presents legal challenges regarding the protection of neurodata in the European Union (EU), raising questions as to whether neurodata qualifies as personal data for the purposes of applying the General Data Protection Regulation (GDPR) - and, consequently, as to the nature of information relating to emotions, memories, thoughts, and intentions. Focusing on these issues, this paper aims to investigate the degree of protection that the GDPR gives to neurodata in the EU today. To this end, the hypothetical-deductive method is used, starting from the hypothesis that neurodata is not formally included in the traditional GDPR model of \"personal data\" and \"sensitive personal data\". To achieve the general objective, the work is divided into two main parts: (1) the first investigates key concepts involving the subject, to explore the research hypothesis raised; while (2) the second is dedicated to the impacts that the processing has on the data subject. The results show that there is a legal gap regarding neurodata, as it is a sui generis type of personal data, that deserves multidisciplinary and specialized study in the context of emerging (neuro)technologies for the protection of the data subject's (neuro)privacy.","PeriodicalId":171261,"journal":{"name":"Latin American Journal of European Studies","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2023-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Latin American Journal of European Studies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.51799/2763-8685v3n2006","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The commercialization of technologies that interface with the human brain has caught attention of the international community, as they allow the collection of data from dimensions that, until now, were considered unobservable by the general public: brain activity data, commonly referred to as "neurodata". The insertion of such devices in the consumer market is especially relevant in the current technological context, in which Artificial Intelligence (AI) systems allow the processing of raw neurodata (inputs) and the generation of decoded neurodata (outputs) on the cognitive, affective and/or conative state of the subjects to which they refer. This new factual reality presents legal challenges regarding the protection of neurodata in the European Union (EU), raising questions as to whether neurodata qualifies as personal data for the purposes of applying the General Data Protection Regulation (GDPR) - and, consequently, as to the nature of information relating to emotions, memories, thoughts, and intentions. Focusing on these issues, this paper aims to investigate the degree of protection that the GDPR gives to neurodata in the EU today. To this end, the hypothetical-deductive method is used, starting from the hypothesis that neurodata is not formally included in the traditional GDPR model of "personal data" and "sensitive personal data". To achieve the general objective, the work is divided into two main parts: (1) the first investigates key concepts involving the subject, to explore the research hypothesis raised; while (2) the second is dedicated to the impacts that the processing has on the data subject. The results show that there is a legal gap regarding neurodata, as it is a sui generis type of personal data, that deserves multidisciplinary and specialized study in the context of emerging (neuro)technologies for the protection of the data subject's (neuro)privacy.

查看原文本刊更多论文

欧盟的神经数据保护：新兴（神经）技术对数据主体（神经）隐私的影响

与人脑接口技术的商业化引起了国际社会的关注，因为这些技术可以收集到迄今为止仍被公众认为无法观察到的数据：大脑活动数据，通常被称为 "神经数据"。在当前的技术背景下，人工智能（AI）系统可以处理原始的神经数据（输入），并生成解码后的神经数据（输出），这些神经数据涉及主体的认知、情感和/或意志状态。这一新的事实给欧盟（EU）神经数据的保护带来了法律上的挑战，提出了神经数据是否属于适用《通用数据保护条例》（GDPR）的个人数据的问题，以及与情绪、记忆、思想和意图有关的信息的性质问题。本文以这些问题为重点，旨在研究《一般数据保护条例》对当今欧盟国家神经数据的保护程度。为此，本文采用了假设-演绎法，从神经数据未被正式纳入传统 GDPR 模型中的 "个人数据 "和 "敏感个人数据 "这一假设出发。为实现总体目标，研究工作分为两个主要部分：(1) 第一部分研究涉及主体的关键概念，以探讨提出的研究假设；(2) 第二部分专门研究数据处理对数据主体的影响。研究结果表明，神经数据在法律上存在空白，因为它是一种特殊的个人数据，值得在新兴（神经）技术背景下进行多学科的专门研究，以保护数据主体的（神经）隐私。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Latin American Journal of European Studies

自引率

0.00%

发文量