nl en

Privacy & Data Protection


Admission requirements



Privacy is probably the topic most mentioned and debated in relation to new technologies. An emerging body of academic work analyses how digital technologies impact on privacy and related values, such as autonomy, dignity, accountability and transparency. By studying the theoretical framework of privacy and data protection laws vis-à-vis the practical implications of the application of these, this course provides in-depth knowledge of how the right to privacy and the right to personal data protection are influenced by technological, social, and economic developments.

This course will focus on the intricate difficulties of regulating privacy and data protection rights in the era of Big Data and Online Social Networking. What do these rights entail and how is technology changing them? How are they important and can they still be adequately guaranteed through law or other regulatory instruments? How are law and policy in these areas developing and how effective will they be? Special attention will be paid to the proposed General Regulation on Data Protection and the debate about new instruments and concepts developed in that context. Concepts to be discussed are, e.g., the (im)possibilities of a ‘right-to-be-forgotten’, the proposed ‘data-portability requirements’ and restrictions on profiling. Tools to be discussed are privacy or data protection impact assessments (PIA/DPIA) and ‘privacy by design and by default’.

Course objectives

Objectives of the course

  • This course aims to provide students with in-depth knowledge on privacy and data protection law within the EU and skills to apply this knowledge in cases.

Achievement levels
The following achievement levels apply with regard to the course:

  • Students will be able to describe and explain the laws and regulations and relevant institutions in the domain of EU privacy and data protection law in a national, European and international context.

  • Students will be able to apply these laws and regulations in practical examples and map and address relevant legal and non-legal elements in the domain of privacy and data protection law.

  • Students will be able to evaluate the impact of international laws and regulations in the domain of privacy and data protection law.

  • Students will be able to identify in which ways violations on privacy and data protection law may be prevented

  • Students will be able to evaluate and balance the interests protected by privacy and data protection law agains other, competing personal and societal interests


The timetable of this course can be found in uSis

Mode of instruction


  • Number of (3 hour) lectures: 6

  • Names of lecturers: BHM Custers, GJ Zwenne, guest lecturers

  • Required preparation by students: required readings, assignments

Assessment method

Examination form(s)

  • Written exam (3 hours)

Submission procedures

Areas to be tested within the exam
The examination syllabus consists of the required reading (literature) for the course, the course information guide and the subjects taught in the lectures, the seminars and all other instructions which are part of the course.


More information on this course is offered in Blackboard.

Reading list

The required readings will be published on BlackBoard


Students have to register for courses and exams through uSis.

There is a maximum of 60 students. Any additional students will be placed on a reservations list.

Contact information

  • Co-ordinator: B.H.M. Custers

  • Work address: KOG

  • Contact information:

  • Email:


  • Institute: metajuridica

  • Department: eLaw

  • Telephone number secretary: 071- 527 8838

  • Email: