Saturday

28th May 2022

  1. News
  2. Rule of Law

26 EU states not ready for data law

By

The vast majority of EU states appear unprepared for new EU-wide data protection and privacy rules set for launch end of May.

Only Austria and Germany have so far implemented national laws that lay the ground work for the EU general data protection regulation (GDPR), a wide-reaching overhaul of a two-decade old directive.

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

Choose your plan

... or subscribe as a group

Don't miss out on

Our exclusive news stories and investigations. Influential. Investigative. Independent.

Lisbeth Kirk

Why join?

Watch our founder Lisbeth Kirk explain the reasons in this 30-second video.

"If some member states lag behind and do not amend their legislation on time it might cause some problems for the overall functioning of the GDPR across Europe," EU justice commissioner Vera Jourova told reporters on Wednesday (24 January).

While the regulation is automatically binding as of 25 May, national procedural rules are needed, among other things, to equip data protection authorities with means to ensure people's privacy is protected.

States will also have to repeal and amend some existing laws and set up national data protection authorities. Jourova said this also entails making sure that data protection authorities are independent and financed enough to carry out their duties.

"I can tell you that all 26 [member states] are in a big rush now," she said.

Karolina Majzesowicz, a data protection expert at the European Commission, told this website that such missing national rules "could slow down the take-off of the harmonious application and the coherent application of the data protection rules throughout the EU."

The regulation offers a single set of rules that are required to be applied throughout all EU states and by any company, no matter where it is based, that processes the data of EU citizens and residents.

Breaking the law could incur fines up to €20 million or 4 percent of a company's worldwide annual turnover.

Some of the EU's 24,000 smaller businesses will be exempt from the rules but concerns are mounting that many others are simply ill-prepared to meet all the conditions. Those that process people's data will be required to hire a data protection officer, for instance.

Meanwhile, some governments are more advanced than others when it comes to meeting their 25 May deadline.

An EU commission document from early December says Denmark, Estonia, France, Hungary, Malta, Ireland, Lithuania, Luxembourg, Latvia, Poland, Sweden, Slovenia, and the United Kingdom have either submitted or will soon submit draft laws to their respective parliaments.

EU states and companies have been given two years to make sure that regulation goes off without a hitch following its 2016 adoption.

German Green MEP Jan Philip Albrecht, who steered the bill through the European parliament, warned the regulation would be applied not matter what and will be enforced.

"Allowing business to prepare compliance for two years after the GDPR came into force was quite nice of the EU. There were also suggestions to make it six months," he said at the CPDP international data protection conference in Brussels on Wednesday.

Not everyone is convinced of the regulation's impact on shoring up data protection standards, however.

Christian Gemmin from the University Kassel in Germany said some of the opening clauses in the regulation run the risk of lowering the level of data protection.

Speaking at a panel at the CPDP, he noted that options in the regulation "may lead to a complex and intransparent situation."

Site Section

  1. Rule of Law

Related stories

  1. UK to 'align' with EU on data protection
  2. Austria accused of undermining new EU data law
  3. Data privacy chiefs wary of lagging EU states
  4. Eight countries to miss EU data protection deadline
  5. Are EU data watchdogs staffed for GDPR?
Austria accused of undermining new EU data law

Most EU states have yet to pass the national laws needed to equip authorities with the resources to enforce the upcoming EU general data protection regulation. Austria, previously deemed a leader for high data standards, appears increasingly wary.

Data privacy chiefs wary of lagging EU states

EU data protection chiefs are worried member states won't be ready when a new wide-sweeping general data protection regulation goes live on 25 May. National laws still need to be passed to ensure data authorities can enforce the regulation EU-wide.

Eight countries to miss EU data protection deadline

The EU starts enforcing its general data protection regulation on 25 May - but Belgium, Bulgaria, Cyprus, Czech Republic, Greece, Hungary, Lithuania and Slovenia won't be ready. The delay will cause legal uncertainty.

Are EU data watchdogs staffed for GDPR?

The success of the new general data protection regulation (GDPR) will depend on whether data protection authorities enforce the new rules - which, in turn, will be at least partly determined by how many people they employ.

Orbán's new state of emergency under fire

Hungary's premier Viktor Orbán declared a state of emergency due to the war in neighbouring Ukraine hours after pushing a constitutional amendment through parliament, where two-thirds of MPs are controlled by his Fidesz party, allowing his government special powers.

News in Brief

  1. Dutch journalists sue EU over banned Russia TV channels
  2. EU holding €23bn of Russian bank reserves
  3. Russia speeds up passport process in occupied Ukraine
  4. Palestinian civil society denounce Metsola's Israel visit
  5. Johnson refuses to resign after Downing Street parties report
  6. EU border police has over 2,000 agents deployed
  7. Dutch tax authorities to admit to institutional racism
  8. Rutte calls for EU pension and labour reforms

Stakeholders' Highlights

  1. Nordic Council of MinistersNordic delegation visits Nordic Bridges in Canada
  2. Nordic Council of MinistersClear to proceed - green shipping corridors in the Nordic Region
  3. Nordic Council of MinistersNordic ministers agree on international climate commitments
  4. UNESDA - SOFT DRINKS EUROPEEfficient waste collection schemes, closed-loop recycling and access to recycled content are crucial to transition to a circular economy in Europe
  5. UiPathNo digital future for the EU without Intelligent Automation? Online briefing Link

Latest News

  1. EU summit will be 'unwavering' on arms for Ukraine
  2. Orbán's new state of emergency under fire
  3. EU parliament prevaricates on barring Russian lobbyists
  4. Ukraine lawyer enlists EU watchdog against Russian oil
  5. Right of Reply: Hungarian government
  6. When Reagan met Gorbachev — a history lesson for Putin
  7. Orbán oil veto to deface EU summit on Ukraine
  8. France aims for EU minimum-tax deal in June

Join EUobserver

Support quality EU news

Join us