1. ▹ Antivirus
  2. ▹ Assets
  3. ▹ Authentication
  4. ▹ Availability
  5. ▹ Basic criteria for risk analysis
  6. ▹ Computer Hacks
  7. ▹ Confidentiality
  8. ▹ Control
  9. ▹ Cryptography
  10. ▹ Cybercrime
  11. ▹ Cybercriminals
  12. ▹ DRP – Disaster Recovery Plan
  13. ▹ Data backups
  14. ▹ Data loss
  15. ▹ Defacement
  16. ▹ Disinfect machine with a live CD
  17. ▹ Disposal
  18. ▹ Email
  19. ▹ Firewall
  20. ▹ Human error
  21. ▹ IDS/IPS
  22. ▹ Image rights
  23. ▹ Impact
  24. ▹ Integrity
  25. ▹ Internet and copyright
  26. ▹ Legal Aspects
  27. ▹ LuxTrust
  28. ▹ Malicious Codes
  29. ▹ Malicious websites
  30. ▹ Network segmentation
  31. ▹ Password
  32. ▹ Patches
  33. ▹ Phishing
  34. ▹ Physical faults
  35. ▹ Securing a fixed workstation
  36. ▹ Physical theft
  37. ▹ Recommendations for securing a file server
  38. ▹ Recommendations to secure a server connected to Internet
  39. ▹ Recommendations to secure a Web server
  40. ▹ Removable devices
  41. ▹ Risk processing
  42. ▹ Spam – unwanted emails
  43. ▹ SSL/TLS – encryption technologies on the web
  44. ▹ Update softwares with Secunia PSI
  45. ▹ Security Charter
  46. ▹ Social engineering
  47. ▹ Threat
  48. ▹ Virtual Private Networks (VPNs)
  49. ▹ Vulnerabilities
  50. ▹ Web of Trust - WOT
  51. ▹ Web filter – Proxy
  52. ▹ Why is it important to protect your computer?

Image rights

In brief

A simple rule in this regard is that authorising the taking of a photo does not include the right to disseminate it.

Protection of privacy

The right to privacy, a basic principle in terms of image rights, is enshrined in a number of legal texts, including:

  1. Article 8 of the European Convention on Human Rights;
  2. Article 14 (1) of the Law of 8 June 2004 on the Freedom of Expression in the Media, as amended, which provides that everyone has the right to respect for privacy;  
  3. the Law of 11 August 1982 on the protection of privacy, which prohibits any deliberate violation of the privacy of others, “by holding or commissioning the holding, by any device, of images of a person in a location not accessible to the public without the consent of that individual”. This law also prohibits the publication of such images.

It follows from these texts that everyone has the right to object to their image both being taken and published: agreeing to being photographed does not grant authorisation to disseminate photographs in any circumstances.

Images taken in public places

For practical reasons, it is often impossible to obtain the agreement of all persons appearing in photographs taken in public places.

It is therefore generally accepted that a person may be considered to have given their implicit permission to be photographed simply because they were in a public place. However, the law emphasises that being in a public place, even if it may imply permission to be photographed, does not necessarily constitute consent to the publication of this image. To proceed with such publication, the consent of the person concerned should be obtained.

The right to the image of individuals may be in conflict with the generally recognised public right to information.

Luxembourg case law takes the position that “if it is accepted that the human right to one’s private image is total and that everyone can object to the unauthorised publication of their features, there must be an exception when the published image concerns a person involved in a news event of which he or she is the key actor “[Court of Appeal, 6 January 2005].

Online dissemination

As stated, authorising the taking of an image – explicitly (in writing) or implicitly (e.g. by pausing before a lens) – does not entail authorisation to disseminate. This is even more important today, with the wide use of social media.

In general, the use of online services such as Facebook® is subject to the acceptance of a set of conditions of use, stating that the user is responsible for the content provided.

However, often these sites offer dedicated alert services to report offensive or unauthorised content.

These services can be used to assert image rights.


In light of the above, it is strongly recommended that the consent of an individual be obtained before their picture is taken and (especially) photographs of them are published. For minors, in addition to the subject, the consent of their parents or legal representatives must be obtained.

An alternative solution is to blur the images so that their subjects cannot be identified.

If the provisions protecting privacy are violated, criminal and/or civil penalties will apply. For example, in criminal cases, violation of the provisions of the Law of 11 August 1982 on the protection of privacy is punishable by imprisonment from eight days to one year and/or a fine of 251 to 5,000 euros.

In civil cases, a violation of respect for privacy or image rights result in an order to pay damages and interest. Finally, even where the consent of the person involved (or their legal representatives) has been obtained, it should be noted that:

  1. the publication of the photographs must be limited to articles directly related to the event during which they were taken;
  2. consent must be “specific” (i.e. given for a specific purpose, for example, for a particular event) and cannot be used for other disclosures not originally planned.

Example of authorisation


I, ________, the father/mother/other legal representative (delete where appropriate) of ________ (name and surname of the child), agree that the child can be photographed during the event _________ (name of the event) as of _________ and that these photographs can be published in the press or for any other non-commercial purpose directly related to the event in question and note that publication does not give right to remuneration.

Signatures – Child: _________ – Father / mother / other legal representative: _________

Table of Contents