Books and edited volumes

J. Peter Burgess and Dariusz Kloza (eds.) (2021) Border Control and New Technologies: Addressing Integrated Impact Assessment, Brussels: ASP Editions, 260 pp.

Raphaël Gellert (2020) The Risk-Based Approach to Data Protection, Oxford: Oxford University Press, 304 pp.

Articles and book chapters

Alessandra Calvi (2022) ‘Gender, data protection & the smart city: Exploring the role of DPIA in achieving equality goals‘, European Journal of Spatial Development 19(3), pp. 24–47.

Simone Casiraghi and Alessandra Calvi (2020) ‘Biometric Data in the EU (Reformed) Data Protection Framework and Border Management: A Step Forward or an Unsatisfactory Move?‘, in: Maria Tzanou (ed.) Personal Data Protection and Legal Developments in the European Union, Hershey, PA: IGI Global, pp. 202-223.

Niels van Dijk, Alessia Tanas, Kjetil Rommetveit & Charles Raab (2018) ‘Right engineering? The redesign of privacy and personal data protection‘, International Review of Law, Computers & Technology 32(2-3), pp. 230-56.

Niels van Dijk, Raphaël Gellert and Kjetil Rommetveit (2016) ‘A risk to a right? Beyond data protection risk assessments’, Computer Law & Security Review 32(2), pp. 286–30.

István Böröcz (2016) ‘Risk to the Right to the Protection of Personal Data: An Analysis Through the Lenses of Hermagoras‘, European Data Protection Law Review 2(4), pp. 467–80.

Dariusz Kloza, Niels van Dijk and Paul De Hert (2015) ‘Assessing the European Approach to Privacy and Data Protection in Smart Grids. Lessons for Emerging Technologies‘, in: Florian Skopik and Paul Smith (eds.) Smart Grid Security. Waltham, MA: Elsevier, pp. 11–47.

Dariusz Kloza (2014) ‘Privacy Impact Assessments as a Means to Achieve the Objectives of Procedural Justice‘, in: Schweighofer Erich, Franz Kummer and Walter Hötzendorfer (eds.) Transparenz / Transparency. Tagungsband des 17. Internationalen Rechtsinformatik Symposions IRIS 2014, Wien: Österreichische Computer Gesellschaft, pp. 567-76.

Dariusz Kloza (2013) ‘Public voice in privacy governance: lessons from environmental democracy‘, in: Schweighofer, E., Saarenpää, A., and Böszörmenyi, J. (eds.) KnowRi§ht 2012. Knowledge Rights – Legal, Societal and Related Technological Aspects. 25 years of Data Protection in Finland. Wien: Österreichische Computer Gesellschaft, pp. 80–97.

Commissioned research

Ilse Haesaert and Thomas van Gremberghe (eds.), Jan Leonard, Veerle Verbustel, Robin Vissers, Maciej Skonieczka, Elisabeth De Maesschalck, Filip De Wolf, Dariusz Kloza, Simone Casiraghi, Nikolaos Ioannidis, Ioulia Konstantinou, Sara Roda and Niels van Dijk (2020) Guidance on data protection impact assessment for the telecommunications sector in Belgium, Agoria: Brussels, 93 pp.

Paul De Hert, Dariusz Kloza and David Wright (2012) Recommendations for a privacy impact assessment framework for the European Union, Deliverable D3 of the PIAF [A Privacy Impact Assessment Framework for data protection and privacy rights] project. Brussels – London, 34 pp.


Thibaut D’hulst and Dariusz Kloza (2022) ‘Data protection impact assessment: More than just a compliance tool’, Van Bael & Bellis.

Nikolaos Ioannidis (2022) ‘Impact assessment for artificial intelligence: Protection-by-design of fundamental rights‘, LSTS Blog.

Alessandra Calvi (2022) ‘Towards a right to Data Protection Impact Assessment?‘, LSTS Blog.

Nikolaos Ioannidis and Olga Gkotsopoulou (2021) ‘The Palimpsest of Conformity Assessment in the Proposed Artificial Intelligence Act: A Critical Exploration of Related Terminology‘, European Law Blog.

Dariusz Kloza and Laura Drechsler (2020) ‘Proportionality has come to the GDPR‘, European Law Blog.