Citizen Centric Approach to Data

Our Ambition

Main Goal: Disseminate data protection guidelines 


In the wake of the Snowden revelations, there is now a unanimous recognition that citizen rights for privacy need particular attention. The EU has recently amended the former Data Protection Directive and issued the new General Data Protection Regulation (Regulation EU 2016/679). By 25 May 2018, all Member States must implement the Regulation and adopt all necessary measures to ensure compliance. Sanctions foreseen could amount to up to 2% of the worldwide turnover of an enterprise in case of breach. More specifically the regulation requires:

  • Privacy by Design and by Default, i.e. data protection is designed into the development of business processes for products and services;
  • Privacy settings to be set at a high level by default;
  • Data Protection Impact Assessments (PIA) to be conducted when specific risks occur to the rights and freedoms of data subjects.

The objective of this initiative is to provide data protection guidelines for EIP-SCC applications with a focus on a citizen centric viewpoint.

Latest news

Latest EIP-SCC News

Status and Forward Plans

During the period from winter 2017 to spring 2018, the initiative is focusing on addressing GDPR compliance in existing projects: 

  • A workshop on GDPR compliance was organised for the SharingCities H2020 project to address GDPR compliance, involving three cities, London, Milan, Lisbon, and a further one is scheduled
  • A webinar was organised in April 2017 with the support of the ESPRESSO support action
  • The initiative aims at delivering the following in 2017 and 2018:
  • Additional workshops on GDPR compliance
  • Feedback on privacy management guidelines
  • Discussion towards privacy management guidelines






  1. Develop and communicate ‘call to action’ to city leaders




  1. Engage SCC01s on GDPR agenda, as workshop candidates




  1. Develop privacy mgmt. guidelines (leadership/mgmt. levels)




To know more...

Contact us at: