Tuesday

29th Nov 2022

Data privacy chiefs wary of lagging EU states

  • The vast majority of EU states still remain behind schedule on laws needed to ensure data protection authorities can enforce a new regulation. (Photo: Pixabay)

EU-wide authorities may not able to properly enforce a new data protection regulation after May given lagging member state legislation.

The general data protection regulation is a massive overhaul of a two-decades old EU law with far-reaching implications for people's personal data and how it is processed by firms around the world.

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

... or subscribe as a group

"It is why there is a high operational and political pressure to have these laws voted before May," French privacy chief Isabelle Falque-Pierrotin told reporters in Brussels on Wednesday (7 February).

The European Commission in late January said 26 EU states, aside from Germany and Austria, have yet to pass all the laws needed to ensure that data protection authorities are both well resourced and independent.

This data overhaul includes a so-called 'consistency mechanism' intended to streamline cooperation between the data protection authorities on issues with implications for all of Europe.

It means a decision taken by a lead data protection authority in a case is then applied across every member state.

"If there is one authority that is not in a capacity to take part to the consistency mechanism once facing a transborder case, it means the whole system is stopped," warned Falque-Pierrotin.

Firms that break the new data rules face up to a €20 million fine or four percent of their annual turnover. Companies will, for instance, be required to rapidly inform people of any data hacks.

Hacking has hit media headlines, including a massive data breach cover-up by car-hailing app, Uber. The US giant is under investigation after details of some 57 million accounts went public in 2016.

Uber is not alone. UpGuard, a California-based cyber risk company, earlier this week revealed another breach. It said Octoly, a Paris-based brand marketing company, left an Amazon Web Services S3 cloud storage bucket configured for public access.

Working Party 29

Falque-Pierrotin on Wednesday also stepped down from her role as chair of the chair of the body representing national data protection supervisors, also known as the Working Party 29 (WP29).

She is being replaced by Austria's data protection authority Andrea Jelinek who told this website that the European commission and the WP29 will maintain pressure on the capitals.

"I hope they get in line and I think it is important that the Commission has an eye on it and that we have an eye on it," she said.

As the new chair, Jelinek is poised to also take the lead on the European data protection board. The board will replace the working party and will enforce the general data protection regulation once it goes live on 25 May.

26 EU states not ready for data law

The European Commission on Wednesday said only Austria and Germany have passed the relevant draft laws needed to ensure the launch of the EU's general data protection regulation on 25 May:

Facebook promises more privacy ahead of new EU rules

Speaking in Brussels, Sheryl Sandberg, Facebook's chief operating officer, says the social media giant has "not done enough to stop the abuse of our technology." Her admission comes with new plans to wrestle with "bad content".

Austrian privacy case against Facebook hits legal snag

Austrian privacy campaigner Max Schrems may sue Facebook Ireland in an Austrian court but won't be able to pursue a class action suit in Austria, according to a non-binding opinion by a top EU court advisor.

EU to probe UK 'election-rigging' firm

MEPs are to investigate whether UK firm Cambridge Analytica and Facebook misused private data to sway votes amid increasingly lurid revelations.

EU Commission to keep Hungary's EU funds in limbo

The EU executive, on the other hand, is expected to approve Hungary's recovery plan, worth €5.8bn, but only would disburse actual money if Hungary delivers on some 27 key reforms.

Opinion

A missed opportunity in Kazakhstan

Tokayev received congratulations on his election victory from presidents Xi, Putin, Erdogan, and Lukashenko. However, the phone in the Akorda, Kazakhstan's presidential palace, did not ring with congratulatory calls from Berlin, Paris, London, or Washington.

Stakeholders' Highlights

  1. Nordic Council of MinistersCOP27: Food systems transformation for climate action
  2. Nordic Council of MinistersThe Nordic Region and the African Union urge the COP27 to talk about gender equality
  3. International Sustainable Finance CentreJoin CEE Sustainable Finance Summit, 15 – 19 May 2023, high-level event for finance & business
  4. Friedrich Naumann Foundation European DialogueGender x Geopolitics: Shaping an Inclusive Foreign Security Policy for Europe
  5. Obama FoundationThe Obama Foundation Opens Applications for its Leaders Program in Europe
  6. EFBWW – EFBH – FETBBA lot more needs to be done to better protect construction workers from asbestos

Latest News

  1. EU lawmakers under pressure to act on 90,000 asbestos deaths
  2. Post-COP27 optimism — non-Western voices are growing
  3. Legal scholars: Prosecuting Putin 'legally problematic'
  4. A missed opportunity in Kazakhstan
  5. EU's Hungary funds, China, energy, and Frontex This WEEK
  6. Sweden says 'no' to EU asylum relocation pledges
  7. The 'proof' problem with EU sanctions — and how to fix it
  8. The EU gas cap: will the bottle ever be 'uncorked'?

Join EUobserver

Support quality EU news

Join us