This content has been automatically generated from the original PDF and some formatting may have been lost. Let us know if you find any major problems.
Text in this format is not official and should not be relied upon to extract citations or propose amendments. Please see the PDF for the official version of the document.
STATES OF JERSEY
APPOINTMENT OF BOARD MEMBERS TO THE DATA PROTECTION AUTHORITY
Presented to the States on 22nd March 2023
by the Minister for Economic Development, Tourism, Sport and Culture
STATES GREFFE
2023 R.43
2
REPORT
The Data Protection Authority (Jersey) Law 2018 enables the Minister for Economic Development, Tourism, Sport and Culture to appoint voting members to the Jersey Data Protection Authority.
A rigorous recruitment and selection process was undertaken earlier this year in which the Jersey Data Protection Authority (JDPA) engaged an independent search agent to identify experienced candidates with expert knowledge of:
• The European General Data Protection Regulation (GDPR).
• The Data Protection Act 2018 (UK GDPR)
• Global data protection regulatory frameworks.
• Data Protection (Jersey) Law 2018 (the DPJL).
• The impact of emerging technologies on privacy and data protection laws.
Following this process, the JDPA have identified three successful candidates with the requisite skills, knowledge and behaviours required, who are to be appointed as voting members of the Authority for a term of 4 years each.
Elizabeth Denham
Elizabeth brings significant experience gained over an exceptional career spanning 15 years as a data protection regulator, notably as the Commissioner of the Information & Privacy Commissioner for British Columbia, and later as the UK Information Commissioner, for which she was awarded a CBE in the Queen's 2019 Honours list for Protecting the Data of UK Citizens. During her role as Information Commissioner for the UK, Elizabeth oversaw the introduction of the GDPR and the UK Data Protection Act (2018). She is committed to making digital technologies and data work for the benefit of society has demonstrated a focus on the essential role data protection can play in innovation.
Paul Breitbarth
Paul has in depth knowledge and experience of GDPR, having been a civil servant with the Dutch DPA when this was first proposed, and thereafter being heavily involved in the implementation, from a local and international law enforcement perspective. In addition, within the Article 29 Working Party he was coordinator on the subgroup on Borders, Travel & Law Enforcement, and is secretary of what is now the Global Privacy Assembly. Paul is also a Senior Visiting Fellow at Maastricht University's European Centre on Privacy and Cybersecurity, lecturing on a range of topics from the fundamentals of privacy and data protection law to accountability, international data transfers and ePrivacy.
Stephen Bolinger
Stephen is a qualified lawyer with extensive experience in data protection in technology, financial services, and medical devices. Stephen brings a wealth of commercial and private sector experience, gained across the UK, US and Australia, covering multiple jurisdictions in major global organisations as well as start-up environments and is skilled
R.43/2023
3
at developing and implementing privacy strategies and programmes and embedding privacy ethics into the culture of sensitive industries.
This report is therefore presented in accordance with Article 3(4) of the Data Protection Authority (Jersey) Law 2018 to notifying the States Assembly of the Minister's intention to make the appointments.
Financial and manpower implications:
There are no additional finance, manpower or other implications
R.43/2023