Home >

news ヘルプ

論文・著書情報


タイトル
和文:Privacy Enhancing Technologies in the EU Digital Omnibus Proposal : Clarifying the Role of PETs in the Definition of Personal Data under the GDPR 
英文:Privacy Enhancing Technologies in the EU Digital Omnibus Proposal : Clarifying the Role of PETs in the Definition of Personal Data under the GDPR 
著者
和文: Kenji Suzuki.  
英文: Kenji Suzuki.  
言語 English 
掲載誌/書名
和文:In: Morinaga, S., Nakano, Y., Tono, K. (eds) New Frontiers in Artificial Intelligence. JSAI-isAI 2026.Lecture Notes in Computer Science (LNCS) 
英文:In: Morinaga, S., Nakano, Y., Tono, K. (eds) New Frontiers in Artificial Intelligence. JSAI-isAI 2026.Lecture Notes in Computer Science (LNCS) 
巻, 号, ページ Vol. 16608        pp. 87-100
出版年月 2026年6月6日 
出版者
和文:Springer Nature Singapore 
英文:Springer Nature Singapore 
会議名称
和文: 
英文: 
開催地
和文: 
英文: 
アブストラクト The EU Digital Omnibus Proposal was published by the European Commission on November 19, 2025. It aims to simplify the overall EU digital legislative framework. As part of this effort, it proposes amendments to clarify the interpretation of “personal data” under the General Data Protection Regulation (GDPR). In particular, the proposal introduces a subject-specific and context-dependent assessment of identifiability, under which information does not constitute personal data for an entity that lacks reasonably available means of re-identification. However, the current GDPR framework lacks clarity regarding how identifiability should be assessed across different entities. This paper focuses on the judgment of Court of Justice of the European Union (CJEU) in SRB (Case C-413/23 P European Data Protection Supervisor v Single Resolution Board [2025]) as the institutional background of this amendment. While the judgment recognizes that identifiability may depend on the means reasonably available to each entity, it also maintains a controller-based standard for the transparency obligation, thereby separating the assessment of identifiability from the establishment of that obligation. Against this background, this paper addresses the following research question: how the EU Digital Omnibus Proposal transforms the legal role of privacy enhancing technologies (PETs) from supplementary safeguards into institutional elements that define the scope of personal data under the GDPR. It argues that the proposal repositions PETs as structural components that shape the range of reasonably available re-identification means and thereby influence the scope of application and the activation of obligations under the GDPR. This institutional design suggests a new approach to balancing data protection and data utilization, in which the boundary between personal and non-personal data is constructed through technology-dependent identifiability assessments.

©2007 Institute of Science Tokyo All rights reserved.