Jusletter IT

GDPR & Blockchain: the Swiss take

  • Authors: Gabriel Jaccard / Adrien Tharin
  • Category of articles: Data Protection
  • Category: Articles
  • Region: Switzerland, EU
  • Field of law: LegalTech, Data Protection
  • Citation: Gabriel Jaccard / Adrien Tharin, GDPR & Blockchain: the Swiss take, in: Jusletter IT 4 December 2018
The following paper addresses the main legal questions & best practices surrounding blockchain and GDPR. The Authors examine the legal challenges of storing personal data on a blockchain in a manner that complies with data protection regulation. In particular, the paper studies the question of personal data when it is considered anonymous, pseudonymous or encrypted on a blockchain. Further, it stresses the need for a legally efficient identity layer on the blockchain and digital systems in general. Finally, the paper addresses the question of the recognizability of the data controller & data processor within a blockchain ecosystem.

Table of contents

  • I. Introduction
  • II. GDPR & Blockchain
  • a. The Blockchain
  • b. GDPR’s application in Switzerland
  • III. Specific issues
  • a. Handling of personal data on the blockchain
  • 1. What if personal data is stored on my blockchain?
  • 2. Is a public key personal data?
  • 3. Does «who is who» really matter on the blockchain?
  • 4. What about Private data, Encrypted data, Pseudonymous or Anonymous data stored on the blockchain?
  • b. Who is the data controller & processor?
  • 1. Data controller
  • 2. Data processor
  • c. Data portability
  • d. Right to be forgotten
  • e. The importance of self-regulation & standards
  • IV. Conclusion

No comments

There are no comments yet

Ihr Kommentar zu diesem Beitrag

AbonnentInnen dieser Zeitschrift können sich an der Diskussion beteiligen. Bitte loggen Sie sich ein, um Kommentare verfassen zu können.