@article{MTMT:34142535, title = {Farkasbiztos téglaház? A KKV-k információbiztonsága Magyarországon}, url = {https://m2.mtmt.hu/api/publication/34142535}, author = {Mike, Nimród and Krén, Enikő and Kecskeméti, Tamás}, doi = {10.14267/VEZTUD.2023.09.04}, journal-iso = {VEZETÉSTUDOMÁNY}, journal = {VEZETÉSTUDOMÁNY}, volume = {54}, unique-id = {34142535}, issn = {0133-0179}, abstract = {Az informatikai és információbiztonság olyan fontos a KKV-k életében, mint a sivatagban az oázis. A vállalatok versenyképességéhez nagyban hozzájárul a biztonság szintje, amely terület erősen alulreprezentált a KKV-szektorban. A tanulmány arra a kérdésre keresi a választ, miszerint valóban megfigyelhető-e, hogy a sürgetett digitalizáció negatív hatással van az információbiztonsági szintre nézve a KKV-k életében Magyarországon. Az elemzés főként az e-kereskedelemben aktívan részt vevő cégekre terjed ki. Magyarországon és az Európai Unióban összehasonlítva kimutathatók az információbiztonsággal és adatvédelemmel kapcsolatos trendek, amelyekből látható a területet érintő elmaradottság. A tanulmány a Digiméter 2020, 2021 és 2022-es kvantitatív kutatásának eredményét mutatja be, emellett az Európai Unió által biztosított DESI-index (Digital Economy and Society Index) és NCSI (National Cybersecurity Index) nyilvános adatait dolgozza fel. A kutatás várható eredménye igazolja, hogy Magyarországon jól látható az információbiztonság kiforratlansága.}, year = {2023}, pages = {44-57} } @mastersthesis{MTMT:33720935, title = {European Privacy by Design}, url = {https://m2.mtmt.hu/api/publication/33720935}, author = {Mike, Nimród}, doi = {10.14267/phd.2023003}, unique-id = {33720935}, abstract = {Three competing forces are shaping the concept of European Privacy by Design (PbD): laws and regulations, business goals and architecture designs. These forces carry their own influence in terms of ethics, economics, and technology. In this research we undertook the journey to understand the concept of European PbD. We examined its nature, application, and enforcement. We concluded that the European PbD is under-researched in two aspects: at organizational level (compared to the individual level); and mainly in the way it is enforced by authorities. We had high hopes especially with regards to the latter, and eager to bring significant scientific contribution on this field. We were interested to learn if data protection authorities are having such impacts looking at European PbD, that can pioneer new approaches to privacy preservation. This is why we elaborated on possible ways to measure their activity, in a manner that both legal and non-legal experts can understand our work. We promised a response to the research question can the enforcement of European PbD be measured and if yes, what are possible ways to do so? We conducted data analytics on quantitative and qualitative data to answer this question the best way possible. Our response is a moderate yes, the enforcement of PbD can be measured. Although, at this point, we need to settle with only good-enough ways of measure and not dwell into choosing the most optimal or best ways. One reason for this is that enforcement of PbD cases are highly customized and specific to their own circumstances. We have shown this while creating models to predict the amount of administrative fines for infringement of GDPR. Clustering these cases was a daunting task. Second reason for not delivering what could be the best way of measure is lack of data availability in Europe. This problem has its roots in the philosophical stance that the European legislator is taking on the topic of data collection within the EU. Lawmakers in Europe certainly dislike programs that collect gigantic amounts of personal data from EU citizens. Third reason is a causal link between the inconsistent approach between the data protection authorities’ practices. This is due to the different levels of competencies, reporting structures, personnel numbers, and experience in the work of data protection authorities. Looking beyond the above limitations, there are certainly ways to measure the enforcement of European PbD. Our measurements helped us formulate the following statements: a. The European PbD operates in ‘data saver’ mode: we argue that analogous to the data saving mode on mobile phones, where most applications and services get background data only via Wi-Fi connection, in Europe data collection and data processing is kept to minimal. Therefore, we argue that European PbD is in essence about data minimization. Our conviction that this concept is more oriented towards data security have been partially refuted. b. The European PbD is platform independent: we elaborated in the thesis on various infrastructures and convergent technologies that found compatibility with the PbD principles. We consider that the indeed the concept is evolutionary and technology –neutral. c. The European PbD is a tool obligation: we argue that the authorities are looking at PbD as a tool utilization obligation. In a simple language, companies should first perform a privacy impact assessment in order to find out which tools are supporting their data processing activities and then implement these, as mandated PbD. d. The European PbD is highly territorial: we reached the conclusion that enforcement of PbD is highly dependent on geographical indicators (i.e. countries and counties). The different level of privacy protection cultures are still present in Europe. On a particular level, what is commonly true across all countries is that European PbD mandates strong EU data sovereignty.}, year = {2023} } @inproceedings{MTMT:34043921, title = {Information Security among SMEs in Hungary - An Overview}, url = {https://m2.mtmt.hu/api/publication/34043921}, author = {Mike, Nimród and Krén, E. and Kecskeméti, T.}, booktitle = {2023 46th MIPRO ICT and Electronics Convention (MIPRO)}, doi = {10.23919/MIPRO57284.2023.10159886}, unique-id = {34043921}, year = {2023}, pages = {1521-1525} } @article{MTMT:33543740, title = {Exploring the field of privacy-engineering}, url = {https://m2.mtmt.hu/api/publication/33543740}, author = {Mike, Nimród}, journal-iso = {INFOKOMMUNIKÁCIÓ JOG}, journal = {INFOKOMMUNIKÁCIÓ ÉS JOG}, volume = {18}, unique-id = {33543740}, issn = {1786-0776}, year = {2022}, pages = {33-39} } @article{MTMT:32083352, title = {Data Protection Has Entered the Chat. An Analysis of GDPR Fines}, url = {https://m2.mtmt.hu/api/publication/32083352}, author = {Mike, Nimród}, doi = {10.5817/MUJLT2022-2-3}, journal-iso = {MASARYK UNIV J LAW TECHN}, journal = {MASARYK UNIVERSITY JOURNAL OF LAW AND TECHNOLOGY}, volume = {16}, unique-id = {32083352}, issn = {1802-5943}, year = {2022}, eissn = {1802-5951}, pages = {163-213} } @inproceedings{MTMT:33025628, title = {Observations on the regulatory effectiveness of Article 25 GDPR}, url = {https://m2.mtmt.hu/api/publication/33025628}, author = {Mike, Nimród}, booktitle = {2022 45th Jubilee International Convention on Information, Communication and Electronic Technology (MIPRO), May 23-27, 2022, Opatija, Croatia}, doi = {10.23919/MIPRO55190.2022.9803492}, unique-id = {33025628}, year = {2022}, pages = {1240-1244} } @article{MTMT:33543753, title = {A Case Study Discovering the Potential for Algorithmic Decision Making on Setting GDPR Fines}, url = {https://m2.mtmt.hu/api/publication/33543753}, author = {Mike, Nimród}, doi = {10.47745/AUSLEG.2021.10.2.04}, journal-iso = {ACTA UNIV SAP LEGAL STUD}, journal = {ACTA UNIVERSITATIS SAPIENTIAE LEGAL STUDIES}, volume = {10}, unique-id = {33543753}, issn = {2285-6293}, year = {2021}, eissn = {2286-0940}, pages = {215-230} } @inproceedings{MTMT:32546823, title = {Privacy by Research and Design. From Literature to Application}, url = {https://m2.mtmt.hu/api/publication/32546823}, author = {Mike, Nimród}, booktitle = {Zborník príspevkov z online medzinárodnej vedeckej konferencie doktorandov a mladých vedeckých pracovníkov : Míľniky Práva V Stredoeurópskom Priestore [Collection of Papers from online International Academic Conference of PhD. Students and Young Researchers : Milestones of Law in Central Europe]}, unique-id = {32546823}, year = {2021}, pages = {368-376} } @misc{MTMT:32083364, title = {Privacy by research and design. From literature to application.}, url = {https://m2.mtmt.hu/api/publication/32083364}, author = {Mike, Nimród}, unique-id = {32083364}, year = {2021} } @inproceedings{MTMT:32083347, title = {Privacy Compliant Cloud Computing in ERP-solutions}, url = {https://m2.mtmt.hu/api/publication/32083347}, author = {Mike, Nimród}, booktitle = {Bratislava Legal Forum 2020 [Bratislavské Právnické Fórum 2020]}, unique-id = {32083347}, year = {2020}, pages = {15-23} } @misc{MTMT:31676259, title = {Penalty prediction with data mining}, url = {https://m2.mtmt.hu/api/publication/31676259}, author = {Mike, Nimród}, unique-id = {31676259}, year = {2020} } @misc{MTMT:31676254, title = {GDPR infringement: how much you pay?}, url = {https://m2.mtmt.hu/api/publication/31676254}, author = {Mike, Nimród}, unique-id = {31676254}, abstract = {Controllers, processors, joint-controllers and sub-processors: they are all liable. Up to date these participants have managed to generate a fund of €470 mill. from 240 issued fines. With the help of multivariate statistical methods and machine learning, researchers should be able to scan for correlations between cases and features – if any. This is a promising field to understand the behavior of various data protection authorities (DPAs) across EU. Figures show that certain DPAs are more active than others when it comes to number of fines issued, whereas some DPAs are aiming for less numbered, but greater monetary penalties. This paper shall focus on establishing a prediction algorithm using R programming language. The scope is to study the determining factors for fines issued under various articles of the General Data Protection Regulation (GDPR) and to construct a model, which simply predicts the amount of future fines. To this extent, as the first step data must be collected, structured, cleaned and prepared for analysis. This is a crucial step for the analysis. The next phase should include variable determinations and the construction of regression models. Last, but not least, we will test the accuracy of the models and conclude which one has the best prediction rate. The applicability of the results is still debatable due to the primal stage of the prediction model and future work points into the direction of defining a unified variable catalogue to get most accurate results.}, year = {2020} } @misc{MTMT:31676252, title = {The predicted cost of ignorance}, url = {https://m2.mtmt.hu/api/publication/31676252}, author = {Mike, Nimród}, unique-id = {31676252}, abstract = {Controllers, processors, joint-controllers and sub-processors: they are all liable. Up to date these participants have managed to generate a fund of €470 mill. from 240 issued fines. With the help of multivariate statistical methods and machine learning, researchers should be able to scan for correlations between cases and features – if any. This is a promising field to understand the behavior of various data protection authorities (DPAs) across EU. Figures show that certain DPAs are more active than others when it comes to number of fines issued, whereas some DPAs are aiming for less numbered, but greater monetary penalties. This paper shall focus on establishing a prediction algorithm using R programming language. The scope is to study the determining factors for fines issued under various articles of the General Data Protection Regulation (GDPR) and to construct a model, which simply predicts the amount of future fines. To this extent, as the first step data must be collected, structured, cleaned and prepared for analysis. This is a crucial step for the analysis. The next phase should include variable determinations and the construction of regression models. Last, but not least, we will test the accuracy of the models and conclude which one has the best prediction rate.}, year = {2020} } @article{MTMT:33543737, title = {Security or Privacy?. Shuffling the Puzzle of Blockchain Compatibility with the EU-GDPR}, url = {https://m2.mtmt.hu/api/publication/33543737}, author = {Mike, Nimród}, journal-iso = {INFOKOMMUNIKÁCIÓ JOG}, journal = {INFOKOMMUNIKÁCIÓ ÉS JOG}, volume = {16}, unique-id = {33543737}, issn = {1786-0776}, year = {2019}, pages = {34-38} } @article{MTMT:30676035, title = {Jönnek a pomogácsok!. A GDPR, mint az online zaklatás egyik új ellenszere}, url = {https://m2.mtmt.hu/api/publication/30676035}, author = {Mike, Nimród}, journal-iso = {ARSBONI}, journal = {ARSBONI}, volume = {2019}, unique-id = {30676035}, year = {2019}, eissn = {2064-4655} } @misc{MTMT:30673455, title = {"Virtuality Awaits" or Digitizing the Role of Counselling in the Modern Era}, url = {https://m2.mtmt.hu/api/publication/30673455}, author = {Mike, Nimród}, unique-id = {30673455}, year = {2019} } @misc{MTMT:30673442, title = {Less data is more information. A perspective of anonymization}, url = {https://m2.mtmt.hu/api/publication/30673442}, author = {Mike, Nimród}, unique-id = {30673442}, year = {2018} } @misc{MTMT:30673375, title = {Cyberbulling. crime a rough game?}, url = {https://m2.mtmt.hu/api/publication/30673375}, author = {Mike, Nimród}, unique-id = {30673375}, year = {2017} } @{MTMT:30673242, title = {Online zaklatás. bűntény vagy durva játék?}, url = {https://m2.mtmt.hu/api/publication/30673242}, author = {Mike, Nimród}, booktitle = {XXXIII. Országos Tudományos Diákköri Konferencia}, unique-id = {30673242}, year = {2017}, pages = {117} } @inproceedings{MTMT:30673212, title = {Online zaklatás. bűntény vagy durva játék?}, url = {https://m2.mtmt.hu/api/publication/30673212}, author = {Mike, Nimród}, booktitle = {Etüdök jogtudományra}, unique-id = {30673212}, year = {2017}, pages = {194-199} }