Implanting Implications: Data Protection Challenges Arising from the Use of Human ICT Implants

  • Eleni KostaEmail author
  • Diana M. Bowman
Part of the Information Technology and Law Series book series (ITLS, volume 23)


The increasing commercialisation of human Information and Communication Technology (ICT) implants has generated heated debate over the ethical, legal and social implications of their use. Despite stakeholders calling for greater policy and legal certainty within this area, gaps have already begun to emerge between the commercial reality and the current legal frameworks designed to regulate it. The aim of this chapter is to examine the effectiveness of the European Union current data protection regulatory framework for regulating ICT implants. By focusing on current and future applications of human ICT implants, the research presented here highlights the potential regulatory challenges posed by the applications, and makes a series of recommendations as to how such issues may be best avoided by jurisdictions grappling with similar emerging issues. In doing so, the chapter draws together the notions of innovation, risk and data protection within the context of a broader governance framework.


European Union Personal Data Data Protection Electronic Communication Data Subject 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


  1. van der Hof S et al (2006) Openbaarheid in het internettijdperk—De invloed van ICT op juridische concepten van openbaarheid (Sdu Uitgevers, Den Haag), pp 152–153Google Scholar
  2. Anton PS, Silberglitt R, Schneider J (2001) The global technology revolution: bio/nano/material trends and their synergies with information technology by 2015. RAND National Defense Research Institute, ArlingtonGoogle Scholar
  3. Buchta A, Dumortier J, Krasemann H (2005) The legal and regulatory framework for PRIME. In: Fischer-Hübner S, Andersson C (ed) D14.0.a: Framework V0. Brussels: Privacy and Identity Management for Europe ProjectGoogle Scholar
  4. Commission European (2007) Communication on radio frequency identification (RFID) in Europe: steps towards a policy framework. EC, BrusselsGoogle Scholar
  5. Cuijpers C, Koops BJ (2008) How fragmentation in European law undermines consumer protection: the case of location-based services. Eur Law Rev 6:880–897Google Scholar
  6. Cuijpers C, Roosendaal A, Koops BJ (eds) (2007) D11.5: the legal framework for location based services in Europe, FIDIS (Future of Identity in the Information Society) Project, 12 June 2007Google Scholar
  7. Elliot V (2006) Speed through the check out with just a wave of your arm, The Times, 10 October.
  8. European Commission (2009) Commission recommendation of 12.5.2009 on the implementation of privacy and data protection principles in applications supported by radio-frequency identification. EC, BrusselsGoogle Scholar
  9. European Group on Ethics and Science in New Technologies (2005) Ethical aspects of ICT implants in the human body. EC, BrusselsGoogle Scholar
  10. Gamboa, JP (2007) Micro RFID chips raise some privacy concerns, The Daily Aztec, 22 February.
  11. Halperin D, Heydt-Benjamin TS, Fu K, Kohno T, Maisel WH (2008) Security and privacy for implantable medical devices. IEEE Pervasive Comput (special issue on implantable electronics) 7(1):30–39Google Scholar
  12. Henning JE, Peter BL, Bernd S (2004) Privacy enhancing technology concepts for RFID technology scrutinised. RVS Group, BieldefeldGoogle Scholar
  13. Hitachi (2007) Hitachi RFID Solutions.
  14. Kabene SM (ed) (2010) Healthcare and the effect of technology: developments, challenges and advancements. IGI Global, LondonGoogle Scholar
  15. Kuner Christopher (2007) European data protection law—corporate compliance and regulation. Oxford University Press, OxfordGoogle Scholar
  16. Maynard AD (2006) Nanotechnology: a research strategy for addressing risk. Project on Emerging Nanotechnologies, Washington, DCGoogle Scholar
  17. McHugh J (2004) A chip in your shoulder: should i get an RFID implant? Slate Magazine, 10 November.
  18. Organisation for Economic Co-operation and Development (2008) Radio frequency identification (RFID): a focus on information security and privacy. Working Party of Information Security and Privacy, ParisGoogle Scholar
  19. Pitkänen O and Niemelä M (2007) Privacy and data protection in Emerging RFID-Applications. Paper presented at the EU RFID Forum 2007, RFID Academic Convocation, 14 March.
  20. Rotter P, Daskala B, Compaño R (2008) RFID implants: opportunities and challenges for identifying people. IEEE Technol Soc Mag 27(2):24CrossRefGoogle Scholar
  21. VeriChip (2006) VeriMed patient identification Delray Beach, FloridaGoogle Scholar
  22. VeriChip (2007a) Company: our RFID tags.
  23. VeriChip (2007b) News release: VeriChip corporation to unveil plans for self-contained implantable RFID glucose-sensing microchip at Grand Hyatt in New York on December 4, 28 November.
  24. Weber K (2006) Privacy invasions. EMBO Rep 7:s36–s39CrossRefGoogle Scholar
  25. Weckert J (2007) An approach to nanoethics. In: Hodge GA, Bowman DM, Ludlow K (eds) New global regulatory frontiers in regulation: the age of nanotechnology. Edward Elgar, Cheltenham, pp 49–66Google Scholar
  26. Wolinksky H (2006) Tagging products and people. EMBO Rep 7(10):965–968CrossRefGoogle Scholar
  27. Zwenne GJ, Schermer B (2005), Privacy en andere juridische aspecten van RFID: unieke identificatie op afstand van producten en personen [Privacy and other legal aspects of RFID: unique identification from a distance of products and people], ‘s-Gravenhage. Elsevier Juridisch, The Hague.

Copyright information

© T.M.C. ASSER PRESS, The Hague, The Netherlands, and the author(s) 2012

Authors and Affiliations

  1. 1.Interdisciplinary Centre for Law & ICT (ICRI)KU LeuvenLeuvenBelgium
  2. 2.Department of Health Management and Policy, School of Public Health and the Risk Science CentreThe University of MichiganAnn ArborUSA

Personalised recommendations