Generalklauseln im Datenschutzrecht: Zur Rehabilitierung eines zentralen Bausteins des allgemeinen Informationsverwaltungsrechts

Research output: Contribution to journalArticleResearch

Authors

  • Nikolaus Marsch
  • Timo Rademacher

Research Organisations

External Research Organisations

  • Saarland University
View graph of relations

Details

Translated title of the contributionGeneral clauses in the Data Protection Law: On the rehabilitation of a central component of the general Information Management Law
Original languageGerman
Pages (from-to)1-35
Number of pages35
JournalDie Verwaltung
Volume54
Issue number1
Publication statusPublished - 2021

Abstract

German data protection laws all provide for provisions that allow public authorities to process personal data whenever this is ‘necessary’ for the respective authority to fulfil its tasks or, in the case of sensitive data in the meaning of art. 9 GDPR, if this is ‘absolutely necessary’. Therewith, in theory, data protection law provides for a high degree of administrative flexibility, e. g. to cope with unforeseen situations like the Coronavirus pandemic. However, these provisions, referred to in German doctrine as ‘Generalklauseln’ (general clauses or ‘catch-all’-provisions in English), are hardly used, as legal orthodoxy assumes that they are too vague to form a sufficiently clear legal basis for public purpose processing under the strict terms of the German fundamental right to informational self-determination (art. 2‍(1), 1‍(1) German Basic Law). As this orthodoxy appears to be supported by case law of the German Constitutional Court, legislators have dutifully reacted by creating a plethora of sector specific laws and provisions to enable data processing by public authorities. As a consequence, German administrative data protection law has become highly detailed and confusing, even for legal experts, therewith betraying the very purpose of legal clarity and foreseeability that scholars intended to foster by requiring ever more detailed legal bases. In our paper, we examine the reasons that underlie the German ‘ban’ on using the ‘Generalklauseln’. We conclude that the reasons do not justify the ban in general, but only in specific areas and/or processing situations such as security and criminal law. Finally, we list several arguments that do speak in favour of a more ‘daring’ approach when it comes to using the ‘Generalklauseln’ for public purpose data processing.

ASJC Scopus subject areas

Cite this

Generalklauseln im Datenschutzrecht: Zur Rehabilitierung eines zentralen Bausteins des allgemeinen Informationsverwaltungsrechts. / Marsch , Nikolaus; Rademacher, Timo.
In: Die Verwaltung, Vol. 54, No. 1, 2021, p. 1-35.

Research output: Contribution to journalArticleResearch

Marsch , Nikolaus ; Rademacher, Timo. / Generalklauseln im Datenschutzrecht : Zur Rehabilitierung eines zentralen Bausteins des allgemeinen Informationsverwaltungsrechts. In: Die Verwaltung. 2021 ; Vol. 54, No. 1. pp. 1-35.
Download
@article{6fb49d9a31744602b5031529e35003da,
title = "Generalklauseln im Datenschutzrecht: Zur Rehabilitierung eines zentralen Bausteins des allgemeinen Informationsverwaltungsrechts",
abstract = "German data protection laws all provide for provisions that allow public authorities to process personal data whenever this is {\textquoteleft}necessary{\textquoteright} for the respective authority to fulfil its tasks or, in the case of sensitive data in the meaning of art. 9 GDPR, if this is {\textquoteleft}absolutely necessary{\textquoteright}. Therewith, in theory, data protection law provides for a high degree of administrative flexibility, e. g. to cope with unforeseen situations like the Coronavirus pandemic. However, these provisions, referred to in German doctrine as {\textquoteleft}Generalklauseln{\textquoteright} (general clauses or {\textquoteleft}catch-all{\textquoteright}-provisions in English), are hardly used, as legal orthodoxy assumes that they are too vague to form a sufficiently clear legal basis for public purpose processing under the strict terms of the German fundamental right to informational self-determination (art. 2‍(1), 1‍(1) German Basic Law). As this orthodoxy appears to be supported by case law of the German Constitutional Court, legislators have dutifully reacted by creating a plethora of sector specific laws and provisions to enable data processing by public authorities. As a consequence, German administrative data protection law has become highly detailed and confusing, even for legal experts, therewith betraying the very purpose of legal clarity and foreseeability that scholars intended to foster by requiring ever more detailed legal bases. In our paper, we examine the reasons that underlie the German {\textquoteleft}ban{\textquoteright} on using the {\textquoteleft}Generalklauseln{\textquoteright}. We conclude that the reasons do not justify the ban in general, but only in specific areas and/or processing situations such as security and criminal law. Finally, we list several arguments that do speak in favour of a more {\textquoteleft}daring{\textquoteright} approach when it comes to using the {\textquoteleft}Generalklauseln{\textquoteright} for public purpose data processing.",
author = "Nikolaus Marsch and Timo Rademacher",
year = "2021",
doi = "10.3790/verw.54.1.1",
language = "Deutsch",
volume = "54",
pages = "1--35",
number = "1",

}

Download

TY - JOUR

T1 - Generalklauseln im Datenschutzrecht

T2 - Zur Rehabilitierung eines zentralen Bausteins des allgemeinen Informationsverwaltungsrechts

AU - Marsch , Nikolaus

AU - Rademacher, Timo

PY - 2021

Y1 - 2021

N2 - German data protection laws all provide for provisions that allow public authorities to process personal data whenever this is ‘necessary’ for the respective authority to fulfil its tasks or, in the case of sensitive data in the meaning of art. 9 GDPR, if this is ‘absolutely necessary’. Therewith, in theory, data protection law provides for a high degree of administrative flexibility, e. g. to cope with unforeseen situations like the Coronavirus pandemic. However, these provisions, referred to in German doctrine as ‘Generalklauseln’ (general clauses or ‘catch-all’-provisions in English), are hardly used, as legal orthodoxy assumes that they are too vague to form a sufficiently clear legal basis for public purpose processing under the strict terms of the German fundamental right to informational self-determination (art. 2‍(1), 1‍(1) German Basic Law). As this orthodoxy appears to be supported by case law of the German Constitutional Court, legislators have dutifully reacted by creating a plethora of sector specific laws and provisions to enable data processing by public authorities. As a consequence, German administrative data protection law has become highly detailed and confusing, even for legal experts, therewith betraying the very purpose of legal clarity and foreseeability that scholars intended to foster by requiring ever more detailed legal bases. In our paper, we examine the reasons that underlie the German ‘ban’ on using the ‘Generalklauseln’. We conclude that the reasons do not justify the ban in general, but only in specific areas and/or processing situations such as security and criminal law. Finally, we list several arguments that do speak in favour of a more ‘daring’ approach when it comes to using the ‘Generalklauseln’ for public purpose data processing.

AB - German data protection laws all provide for provisions that allow public authorities to process personal data whenever this is ‘necessary’ for the respective authority to fulfil its tasks or, in the case of sensitive data in the meaning of art. 9 GDPR, if this is ‘absolutely necessary’. Therewith, in theory, data protection law provides for a high degree of administrative flexibility, e. g. to cope with unforeseen situations like the Coronavirus pandemic. However, these provisions, referred to in German doctrine as ‘Generalklauseln’ (general clauses or ‘catch-all’-provisions in English), are hardly used, as legal orthodoxy assumes that they are too vague to form a sufficiently clear legal basis for public purpose processing under the strict terms of the German fundamental right to informational self-determination (art. 2‍(1), 1‍(1) German Basic Law). As this orthodoxy appears to be supported by case law of the German Constitutional Court, legislators have dutifully reacted by creating a plethora of sector specific laws and provisions to enable data processing by public authorities. As a consequence, German administrative data protection law has become highly detailed and confusing, even for legal experts, therewith betraying the very purpose of legal clarity and foreseeability that scholars intended to foster by requiring ever more detailed legal bases. In our paper, we examine the reasons that underlie the German ‘ban’ on using the ‘Generalklauseln’. We conclude that the reasons do not justify the ban in general, but only in specific areas and/or processing situations such as security and criminal law. Finally, we list several arguments that do speak in favour of a more ‘daring’ approach when it comes to using the ‘Generalklauseln’ for public purpose data processing.

UR - http://www.scopus.com/inward/record.url?scp=85120042358&partnerID=8YFLogxK

U2 - 10.3790/verw.54.1.1

DO - 10.3790/verw.54.1.1

M3 - Artikel

VL - 54

SP - 1

EP - 35

JO - Die Verwaltung

JF - Die Verwaltung

SN - 0042-4498

IS - 1

ER -