Purpose limitation is one of the cornerstones of data protection law. It can be considered a bulwark for privacy in the ‘datafied’ society. Purpose limitation is closely linked to the rule of law and specifically foreseeability, because it (originally) imposed limits on the competence of public authorities to process data beyond their legal mandate. It is the principle which protects the contextual confidentiality in which personal data is processed and prevents the unforeseen use of data against a person. The aim of this panel is to create an overview of the recent and planned changes to the purpose limitation principle in EU data protection laws in order to discuss the implications of these changes for data protection law as a substantive limit on the power of government.
• Purpose limitation is one of the cornerstones of data protection law, imposing substantive limits on the powers of government
• What are the current and planned amendments of the purpose limitation principle in EU data protection laws?
• What policy changes concerning data analytics are these amendments facilitating?
• What are the implications of these changes for the fundamental rights and freedoms of citizens?