D7.5 Data Privacy & Protection


Reynold Greenlaw, Andrew Muddiman


This deliverable describes the framework within which data privacy and protection is handled within the EmerGent project.

The document provides detail of how the framework is implemented, including:

  •  a description of the project body, the Ethics Advisory Committee, that advises on compliance with EU law, including its Structure (section 2.1) and Terms of Reference (section 2.2)
  • the specific Recommendations from the Ethics Advisory Committee, detailing the Legal Compliances that are required for EmerGent to comply with EU law (section 3.1) and the formal Statements of Compliance by the committee (section 3.2)
  • a detailed Privacy Impact Assessment that has been conducted as part of the project, including:
    • the need for the Privacy Assessment (section 4.1)
    • an analysis of the privacy-related information flows both at a generic level and specifically within emergency management (section 4.2)
    • the Consultation Requirements required as part of the Privacy Assessment (section 4.3)
    • the specific risks that have been identified as a result of the Privacy Assessment (section 4.4), how these risks are to be mitigated (section 4.5) and how these actions will be approved and integrated into the project (sections 4.6 and 4.7).

Purpose of the document

The purpose of the EmerGent project is to:

  • understand the positive and negative impact of social media in emergencies in order to enhance objective and perceived safety and security of citizens before, during and after emergencies
  • strengthen the role of European companies dealing with services and products related to the proposed research and development results.

The EmerGent Project Abstract specifically states that ‘all analysis and impact assessment results will lead to the creation of guidelines (O4). These guidelines will enable EMS and all other involved stakeholders to understand the benefit of social media and its integration into their process on different levels (conceptual & technical)’.

The Work Package relating to this document, WP7 (Guidelines, Dissemination, Exploitation and Ethics), supports the overall project objectives by:

  • delivering a report with the findings of the project, in the form of guidelines for future adoption of social media in the emergency management procedures
  • carrying out dissemination activities, collect and collate results and outcomes
  • maximising the possible reach of the project findings in as many areas as possible
  • identifying possible exploitation paths for the project results, both in term of tools and guidelines.

This deliverable (D7.5) relates to the overall project and WP objectives by:

  • contributing directly to the creation of data privacy and protection guidelines for use within emergency management procedures
  • providing a process and guidance for the project, including those who are Data Processors and Data Controllers, to ensure compliance with European law on Data Privacy and Protection, both at the outset and on an ongoing basis, through
    • establishment of an Ethics Advisory Committee
    • statements of compliance for the relevant authorities
  • contributing to the ethical framework to be used when engaging with participants in research (D7.9).