Skip to main content

Trinity College Dublin, The University of Dublin

Trinity Menu Trinity Search



Dr. Maria Grazia Porcedda
Assistant Professor, Law

Biography

Dr Maria Grazia Porcedda is Assistant Professor of IT Law. Her research addresses the relationship between law and technology and in particular matters of privacy, data protection, cyber security and cybercrime. Maria Grazia regularly presents her work at international academic and multi-stakeholder conferences and has published contributions in leading European law and technology venues. Her monograph, 'Cybersecurity, Privacy and Data Protection in EU Law' is due to appear with Hart Publishing in 2022.

Maria Grazia's scholarship is policy-oriented, collaborative and interdisciplinary. She is the PI in the project 'Appraising the prevention and deterrence of cybercrime in Ireland through the law' (Provost PhD Projects Award) and of a number of other awards (TRISS Research Fellowship and AHSS Beneficiary Fund). She is also member of the PROTECT ITN Marie Skłodowska-Curie ITN network and an academic collaborator of ADAPT.

In 2018 Maria Grazia advised the EU Directorate General for Development and Cooperation as a Member of the Task Force on Cyber Capacity Building, coordinated by the European Union Institute for Security Studies, with which she has cooperated on matters of cyber security. She is an external member of Ethical Advisory Boards, including to the School of Linguistics, Speech and Communication Sciences and the H2020 TRESSPASS project.

Before joining the School of Law at Trinity College Dublin, Maria Grazia was a Research Fellow in the Centre for Criminal Justice Studies at the University of Leeds. Previously Maria Grazia was a Research Associate within the Robert Schuman Centre for Advanced Studies and the Department of Law at the European University Institute in Florence, as well as the Centre de Recherche Information, Droit et Société of the University of Namur. She trained on privacy and security matters at the Organization for Economic Cooperation and Development (OECD, Paris) and the European Data Protection Supervisor (EDPS, Brussels).

Maria Grazia holds a PhD in Law from the European University Institute with a thesis titled "Cybersecurity and Privacy Rights in EU Law. Moving beyond the Trade-off Model to Appraise the Role of Technology". She holds an LL.M. in Comparative, European and International Laws (European University Institute), an M.A. in International Relations (University of Bologna with honours from Collegio Superiore), and a B.A. in Political Science (University of Cagliari). Her early work was awarded prizes by the Lyncean Academy (Accademia Nazionale dei Lincei, Premio Ruffini) and the Italian Information Security Association (CLUSIT). During her studies she also earned grants to visit at various institutions, including Johns Hopkins SAIS, École Normale Supérieure de Lyon and University of California at Berkeley.

Publications and Further Research Outputs

Peer-Reviewed Publications

Information Polity, (2022), Johann Cas, Paul de Hert, Maria Grazia Porcedda, Charles Raab, [eds.] Journal, 2022

Maria Grazia Porcedda, Data Protection Implications of Data Driven Measures Adopted in Ireland at the Outset of the Covid-19 Pandemic, European Data Protection Law , (2), 2021, p1- Journal Article, 2021

Porcedda, Maria Grazia and David S. Wall, Cascade and Chain Effects in Big Data Cybercrime: Lessons from the TalkTalk hack, IEEE European Symposium on Security & Privacy (S&PW), First Workshop on Attackers and Cyber-Crime Operations , Stockholm, 20 June 2019, IEEE, 2019, pp10.1109/EuroSPW.2019.00056 Conference Paper, 2019 DOI

Maria Grazia Porcedda, `Privacy by Design' in EU Law. Matching Privacy Protection Goals with the Essence of the Rights to Private Life and Data Protection, Lecture Notes in Computer Science, 6th Annual Privacy Forum (APF 2018), Barcelona, 13-14 June 2018, Manel Medina, Andreas Mitrakas, Prof. Dr. Kai Rannenberg, Erich Schweighofer and Nikolaos Tsouroulas , 11079, Springer, 2018, pp183 - 204 Conference Paper, 2018

Patryk Pawlak, Dr. Andrea Calderaro, Alejandro Pinto, Maria Grazia Porcedda, Cristina Schulman, Thorsten Wetzling, International Cooperation and Development Operational Guidance for the EU's international cooperation on cyber capacity building, Luxembourg, 2018 Report, 2018

On Boundaries - Finding the Essence of the Right to the Protection of Personal Data in, editor(s)Ronald Leenes, Rosamunde van Brakel, Serge Gutwirth, Paul De Hert , Data Protection and Privacy. The Internet of Bodies, Hart Publishing, 2018, pp277 - 312, [Maria Grazia Porcedda] Book Chapter, 2018 URL

Maria Grazia Porcedda, Patching the patchwork: appraising the EU regulatory framework on cyber security breaches, Computer Law & Security Review, 34, (5), 2018, p1077--1098 Journal Article, 2018

Data science, data crime and the law in, editor(s)Vanessa Mak, Eric Tjong Tjin Tai and Anna Berlee , Research Handbook in Data Science and Law, Edward Elgar, 2018, pp214 - 244, [Maria Grazia Porcedda and David S. Wall] Book Chapter, 2018

Maria Grazia Porcedda, Cybersecurity and privacy rights in EU law. Moving beyond the trade-off model to appraise the role of technology, European University Institute, 2017 Thesis, 2017 URL

Elisa Orrù Maria Grazia Porcedda Sebastian Weydner-Volkmann, Rethinking Surveillance and Control. Beyond the 'Security vs. Privacy' Debate, Nomos Verlag, 2017, 1 - 240pp Book, 2017

The manifold significance of citizens' legal recommendations on privacy, security and surveillance in, editor(s)Michael Friedewald, J. Peter Burgess, Johann Čas, Rocco Bellanova, Walter Peissl , Surveillance, Privacy and Security Citizens' Perspectives, Routledge, 2017, pp191 - 211, [Maria Grazia Porcedda] Book Chapter, 2017

The Recrudescence of `Security v. Privacy' after the 2015 Terrorist Attacks, and the Value of `Privacy Rights' in the European Union in, editor(s)Elisa Orrù, Maria Grazia Porcedda and Sebastian Weydner-Volkmann , Rethinking Surveillance and Control. Beyond the 'Security vs. Privacy' Debate, Nomos Verlagsgesellschaft mbH & Co. KG, 2017, pp137-180 , [Maria Grazia Porcedda] Book Chapter, 2017 DOI

Regulation of data breaches in the European Union: Private companies in the driver's seat of cybersecurity? in, editor(s)Oldrich Bures and Helena Carrapico , Security Privatization: How Non-Security-Related Private Businesses Shape Security Governance, 2017, pp275 - 299, [Maria Grazia Porcedda] Book Chapter, 2017

Maria Grazia Porcedda, Rule of Law and Human Rights in Cyberspace, in P. Pawlak (ed), Riding the Digital Wave, Issue, Issue, 21, Paris, European Union Institute for Security Studies, December, 2014 Report, 2014

Maria Grazia Porcedda, Lessons from PRISM and Tempora: the self-contradictory nature of the fight against cyberspace crimes. Deep packet inspection as a case study, Neue Kriminalpolitik, 25, (4), 2013, p305-409 Journal Article, 2013 URL

Law enforcement in the clouds: Is the EU data protection legal framework up to the task? in, editor(s)Serge Gutwirth, Ronald Leenes, Paul de Hert, Yves Poullet , European Data Protection: In Good Health?, 2012, pp203 - 232, [Maria Grazia Porcedda] Book Chapter, 2012

Maria Grazia Porcedda, Data Protection and the Prevention of Cybercrime: a Dual Role for Security Policy in the EU, European University Institute, 2012 Thesis, 2012 URL

Maria Grazia Porcedda, Transatlantic Approaches to Cybersecurity and Cybercrime, in P. Pawlak (ed), The EU-US Security and Justice Agenda in Action, Chaillot Papers, Paris, European Union Institute for Security Studies, 2011 Report, 2011

Maria Grazia Porcedda, Data Protection and the Prevention of Cybercrime. The EU as an Area of Security?, 2011 Working Paper, 2011 URL

Non-Peer-Reviewed Publications

Maria Grazia Porcedda, Sentencing data-driven cybercrimes. An examination of English & Welsh sentencing remarks through the lenses of the cybercrime cascade effect, BILETA 2021, University of Newcastle, online, 14-16 April 2021, 2021 Oral Presentation, 2021

Maria Grazia Porcedda, Best Practice in Data Protection in Research and Beyond, Data Protection Concerns in Cross Border Research and Practice, Online, 23 June 2021, 2021, Dublin City University Invited Talk, 2021

Maria Grazia Porcedda, Data compromise: data breaches, data crime and the law, Lecture, University of Pisa, online, 13 May, 2021, MSc Organizational Sciences and Information Technology Law Invited Talk, 2021

Maria Grazia Porcedda, Beyond Contact-Tracing Apps: Data Protection Implications of Data-Driven Measures Adopted in Ireland to Contain Covid-19, COVID-19 and Legal Responses on the Island of Ireland, Online, 11 December 2020, 2020 Oral Presentation, 2020

Maria Grazia Porcedda, My experience as a researcher in IT Law specialising in cybersecurity and data protection, European Researchers Night 2020, Online, 27 November 2020, 2020 Oral Presentation, 2020

Maria Grazia Porcedda, Under the radar: lessons from ordinary data processing in easing pandemic lockdown. Available at: https://tcdlaw.blogspot.com/2020/07/under-radar-lessons-from-ordinary-data.html , 2020, - Miscellaneous, 2020

Maria Grazia Porcedda, Privacy, data protection and selfhood, Self in the Digital World seminar, Long Room Hub, 25 February, 2020 Invited Talk, 2020

Maria Grazia Porcedda, 'Under the radar': the dangers of ordinary data processing in easing pandemic lockdown. Available at: https://www.youtube.com/watch?v=HaejkT6_SSE, Data Protection and the Covid-19 pandemic, Online, 30 June, 2020, Irish Centre for European Law Invited Talk, 2020

Maria Grazia Porcedda, Businesses need to be careful with personal data during pandemic. The Irish Times, 20 July 2020. Available at: https://www.irishtimes.com/opinion/businesses-need-to-be-careful-with-personal-data-during-pandemic-1.4308278, 2020, - Miscellaneous, 2020

Maria Grazia Porcedda, The Cybercrime Cascade Effect and Criminal Justice Responses, EUROCRIM 2019 Conference, Ghent, Belgium, 18-20 September 2019, 2019 Oral Presentation, 2019

Maria Grazia Porcedda, Learning from common experience to steer the future of data, EU-China Symposium on Data Security and Personal Information protection, Brussels, 29 November, 2019, Privacy Hub, Vrije Universiteit Brussels and Cybersecurity Association of China Invited Talk, 2019

Maria Grazia Porcedda, The regulation of security incidents and the making of cyber security law, EU Cybersecurity Law workshop, Cyber and Data Security Lab, VUB , Brussels, 11 October, 2019, Cyber and Data Security Lab, Vrije Universiteit Brussel Invited Talk, 2019

Maria Grazia Porcedda, Prosecuting Cybercrime: Courts, Data Crime and the Cascade Effect, 2nd Conference on the Human Factor in Cybercrime, Leiden, 16-18 October 2019, edited by Vrije Universiteit Amsterdam , 2019 Oral Presentation, 2019

Research Expertise

Projects

  • Title
    • Appraising the prevention and deterrence of cybercrime in Ireland through the law
  • Summary
    • Ireland has been touted as the data capital of Europe, thanks to it hosting both the European headquarters and data centres of Big Tech companies. This data bonanza is inevitably attracting the attention of cybercriminals: according to reports released in 2020, Ireland is witnessing a steep increase in cybercrime, including data breaches. Retaining such data leadership requires investing in strategies, including laws and regulations, to secure both the infrastructure and the data. As legislation designed explicitly to prevent or deter cybercrime is relatively recent, there is a shortage of statistics, case law and studies that provide a picture of the evolution of cybercrime in Ireland and the adequacy of legal responses. Both scholars and policy-makers alike have suggested there is a need to fill the gap through scholarly and policy research. This project aims to fill the gap by studying the implementation of the applicable law to prevent cybercrime and deter cyber-offenders and chart the incidence of instances of cybercrime.
  • Funding Agency
    • Trinity College Dublin
  • Date From
    • 01/09/2021
  • Date To
    • 31/08/2025
  • Title
    • Reconciling Cybersecurity, Privacy and Data Protection
  • Funding Agency
    • Trinity College Dublin
  • Title
    • National parliaments and cybersecurity: the case study of Covid-19 parliamentary debates
  • Funding Agency
    • Trinity College Dublin
  • Title
    • COVID-19 Law and Human Rights Observatory
  • Summary
    • The COVID-19 Law and Human Rights Observatory "engages in research across the full range of Ireland's legal response to COVID-19" with the objective of informing the public and sparking public debate. The Observatory's Blog publishes academic commentary on Ireland's legal response to COVID-19 as it evolves. The Observatory has also been publishing a range of public policy reports that address critical aspects of Ireland's response to COVID-19 (https://www.tcd.ie/law/tricon/covidobservatory/index.php)
  • Funding Agency
    • Trinity College Dublin
  • Date From
    • May 2020
  • Date To
    • 2021
  • Title
    • Horizon 2020 European Research Council Awards
  • Summary
    • The project funded the employment of two part-time researchers and research visits to support the drafting of the ERC Starting Grant 2021
  • Funding Agency
    • Enterprise Ireland
  • Date From
    • 23-07-2020
  • Date To
    • 22-07-2021
  • Title
    • AHSS ERC Teaching Buy-out scheme
  • Summary
    • The purpose of the project was to support my application to the ERC Starting Grant 2021
  • Funding Agency
    • Trinity College Dublin
  • Date From
    • 29-04-2020
  • Date To
    • 31-05-2021

Keywords

cyber law; cyber security; Cybercrime; Cyberspace; data privacy; DATA PROTECTION; Data Protection Law; EU General Data Protection Regulation ; ICT and Privacy; IT law; IT Law and Policy; law and technology; PRIVACY; Privacy Law; SURVEILLANCE

Recognition

Representations

Member of the External Ethical Advisory Board of the H2020 TRESSPASS project (n. 787120) (https://www.tresspass.eu/The-project) 2019

Member of the Task Force on Cyber Capacity Building, coordinated by the European Union Institute for Security Studies to advise EU Directorate General for Development and Cooperation on matters of cyber capacity building 2017

Invited member of the Scientific Committee of the Cyber and Data Security Lab, Vrije Universiteit Brussel 2020

Advisory Member for Data Protection of ERC Project DomEqual (PI: Sabrina Marchetti) 2017

Invited member of the Programme Committee of CPDP2021 - Computers, Privacy and Data Protection Conference 2021, Brussels October 2020

Invited member of the Programme Committee of CPDP2020 - Computers, Privacy and Data Protection Conference 2020, Brussels September 2019

Member of the Project Committee of the 16th IFIP Summer School on Privacy and Identity Management, university of Luxembourg

Awards and Honours

Trinity College Dublin Provost PhD Projects Award 29/01/2021

TRISS Academic Research Fellowship 16/06/2021

Trinity College Dublin AHSS Beneficiary Fund 27/01/2021

Enterprise Ireland European Research Council Awards 23/07/2020

AHSS ERC Teaching Buy-out scheme 29/04/2020

CLUSIT- Italian information security association, "Thesis Prize 2012" 2012

Freiburg University, FRIAS Junior Researcher Conference 2015-16 Grant 2015

Accademia Nazionale dei Lincei, Prize "Edoardo Ruffini 2011" 2011

Licenza del Collegio Superiore, University of Bologna 2009

Memberships

Women 4cyber Registry https://cybersecurity-atlas.ec.europa.eu/women-4-cyber 2020 – present

Europol Data Protection Experts Network 2016 – present

Society of Legal Scholars 2020 – present

BILETA via Law School (Trinity College Dublin) 2021 – present

Italian Association of Information Security (CLUSIT) 2013 – 2015

International Association of Privacy Professionals (IAPP) 2020 – 2021