THE RIGHT TO PRIVACY IN THE DIGITAL AGE THROUGH THE PERSPECTIVE OF FIDUCIARY DUTIES
DOI:
https://doi.org/10.51989/NUL.2026.1.12Keywords:
fiduciary legal relations, right to privacy, duty of loyalty, informed consent, conflict of interestAbstract
The article examines the point of ensuring the right to privacy in the digital age through the perspective of fiduciary legal relations. The author analyzes the international legal basis for the protection of privacy enshrined in the Universal Declaration of Human Rights, the International Covenant on Civil and Political Rights, and the European Convention on Human Rights, and traces the evolution of the doctrinal understanding of privacy from the classic «right to be left alone» to Helen Nissenbaum’s concept of contextual integrity, according to which privacy is the right to an appropriate flow of personal information within a specific social context. Considerable attention is paid to a critical analysis of the dominant model of informed consent as the primary mechanism for protecting personal data. It is argued that this model is ineffective given the fundamental inability of users to assess all the consequences of giving consent, the significant volume and complexity of privacy policies, information asymmetry on the part of data controllers, power asymmetry manifested in manipulative interface design, and the de facto monopoly of digital companies, which deprives users of real alternatives. Based on a comparative analysis of the characteristics of fiduciary relationships and legal relationships between personal data controllers and users, the author demonstrates the existence of significant structural similarities between them, which justifies the application of fiduciary duties of loyalty, care, and confidentiality to the activities of digital companies. The content of these duties is revealed: the duty of loyalty involves prohibiting the manipulation of users, acting in their interests, and avoiding conflicts of interest; the duties of care and confidentiality are aimed at ensuring the security of personal data, in particular through the principle of data accountability. The author analyzes the advantages of the fiduciary approach, in particular its correlation with the principles of purpose limitation and data minimization enshrined in the EU General Data Protection Regulation, and also considers criticisms of this concept regarding the problem of dual loyalty, incompatibility with advertising business models, and enforcement difficulties. At the same time, alternative approaches to strengthening privacy are explored, including antitrust regulation, functional compatibility, and the environmental analogy of excessive data collection. In conclusion, it is argued that the fiduciary model is not a universal solution to the problem of privacy protection, but it provides a valuable additional legal tool that should be applied in Ukrainian legislation in specific areas where users are particularly vulnerable.
References
Загальна декларація прав людини: прийнята і проголошена резолюцією 217 A (III) Генеральної Асамблеї ООН від 10.12.1948. URL: https://zakon.rada.gov.ua/laws/show/995_015#Text (дата звернення: 24.02.2026).
Міжнародний пакт про громадянські і політичні права: прийнято резолюцією 2200 A (XXI) Генеральної Асамблеї ООН від 16.12.1966. URL: https://zakon.rada.gov.ua/laws/show/995_043 (дата звернення: 24.02.2026).
Конвенція про захист прав людини і основоположних свобод: прийнята в Римі 04.11.1950. URL:https://zakon.rada.gov.ua/laws/show/995_004 (дата звернення: 24.02.2026).
Рішення Європейського суду з прав людини у справі «NIEMIETZ v. GERMANY» (заява № 13710/88) від 16.12.1992. URL:https://hudoc.echr.coe.int/eng#{%22itemid%22:[%22001-57887%22]} (дата звернення: 24.02.2026).
Warren S. D., Brandeis L. D. The Right to Privacy. Harvard Law Review. 1890. Vol. 4, No. 5. С. 193–220. URL:https://groups.csail.mit.edu/mac/classes/6.805/articles/privacy/Privacy_brand_warr2.html (дата звернення: 24.02.2026).
Austin L. M. Rereading Westin. Theoretical Inquiries in Law. 2019. Vol. 20. No. 1. P. 53–81. DOI: https://doi.org/10.1515/til-2019-0003. URL: https://ssrn.com/abstract=3290887 (дата звернення: 24.02.2026).
Nissenbaum H. Privacy in Context: Technology, Policy, and the Integrity of Social Life. Stanford : Stanford University Press, 2010. 304 с.
Про захист персональних даних: Закон України від 01.06.2010 № 2297-VI. URL: https://zakon.rada.gov.ua/laws/show/2297-17#Text (дата звернення: 24.02.2026).
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation). URL: https://eur-lex.europa.eu/eli/reg/2016/679/oj/eng (дата звернення: 24.02.2026).
OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data. Paris: OECD Publishing, 2002. URL:https://doi.org/10.1787/9789264196391-en (дата звернення: 24.02.2026).
Nissenbaum H. A Contextual Approach to Privacy Online. Daedalus. 2011. Vol. 140, No. 4. P. 32–48. URL:https://doi.org/10.1162/DAED_a_00113 (дата звернення: 25.02.2026).
Richards N. M., Hartzog W. Taking Trust Seriously in Privacy Law. Stanford Technology Law Review. 2016. Vol. 19. С. 431–472. URL: https://ssrn.com/abstract=2655719 (дата звернення: 25.02.2026).
Balkin J. M. The Fiduciary Model of Privacy. Harvard Law Review Forum. 2020. Vol. 134. C. 11–33. URL: https://harvardlawreview.org/wp-content/uploads/2020/10/134-Harv.-L.-Rev.-F.-11.pdf (дата звернення: 25.02.2026).
Frankel T. Fiduciary law. New York: Oxford University Press, 2011. 332 с.
Khan L. M., Pozen D. A skeptical view of information fiduciaries. Harvard Law Review. 2019. Vol. 133. С. 497–541
Downloads
Published
Issue
Section
License
Copyright (c) 2026 New Ukrainian Law
This work is licensed under a Creative Commons Attribution 4.0 International License.
