Skip to main content

Europe’s new data protection rules



Europe wants to conquer the world all over again.
Only this time, its killer app isn’t steel or gunpowder. It’s an EU legal juggernaut aimed at imposing ever tougher privacy rules on governments and companies from San Francisco to Seoul.
When the region’s regulators roll out the changes — known as the General Data Protection Regulation, or GDPR — on May 25, it will represent the biggest overhaul of the world’s privacy rules in more than 20 years.
The new regulations offer EU citizens sweeping new powers over how their data can be collected, used and stored, presenting global leaders outside the 28-country block with a stark choice: bring their domestic laws in line with the EU’s new rules, or risk being shut out of a market of 500 million well-heeled consumers.
“Data protection is a good example of Europe trying to extend its influence over other countries,” said Christopher Kuner, co-chair of the Brussels Privacy Hub at the Vrije Universiteit Brussel. “Call it the ‘Brussels Effect.’”
For many countries, the choice is a no-brainer. Breaking commercial ties with the world’s largest trading bloc is unthinkable, and failing to comply brings the risk of hefty fines — up to €20 million or 4 percent of global revenue, whichever is higher — for any company with European customers that mishandles data.
In response, legislators worldwide are scrambling to update their domestic legislation to bend to Europe’s privacy rules. The data revamp will allow EU consumers to pull their data from a company at any time, force businesses to alert customers within three days if their data is hacked and let people move information to rival services at a drop of a hat.


The “Brussels effect” is mostly manageable for advanced economies like Japan, which last year set up an independent agency to handle privacy complaints to conform with Europe’s privacy standards during negotiations for a new Japan-EU trade deal.
But for emerging countries, the cost and administrative burden of applying the EU privacy standards can be daunting. In countries like South Africa, whose domestic legislation is primarily based on Europe’s rules, the upcoming data protection changes risks being viewed as yet another diktat handed down by former colonial powers in a form of “data imperialism.”
“Any country that’s not working toward these standards is left out in the cold,” said John Giles, managing attorney at Michalsons, a law firm in South Africa. “GDPR has long tentacles.” 
Labels:

Comments

Post a Comment

Most Popular

Certificates of Analysis (CoA) World’s future of business is in outsourcing and globalisation EU GMP Guide Part I (Chapter 4 and Chapter 6) - these chapters contains detailed information about safety and quality, Laboratory documentation should follow the principles given in Chapter 4. EU GMP Guide Part II - Section 11.4 – §         Authentic Certificates of Analysis should be issued for each batch of intermediate or API on request. §         Information on the name of the intermediate or API including where appropriate its grade, the batch number, and the date of release should be provided on the Certificate of Analysis. For intermediates or APIs with an expiry date, the expiry date should be provided on the label and Certificate of Analysis. For intermediates or APIs with a retest date, the retest date should be indicated on the label and/or Certificate of Analysis. §         The Certificate should list each test performed in accordance with
1 comment
Read more

What is Regulatory Intelligence (RI)?

If we will search for  RI  anywhere we will be getting many results and definitions. The act of gathering and analysing publicly available regulatory information. This includes communicating the Implications of that information, and monitoring the current regulatory environment for opportunities to shape future  regulations , guidance, policy and legislation. Regulatory Information collectively comprises of three main segments which are followed while performing Regulatory Information activities: •  Gather Data : RI professionals perform research about regulatory norms as per a particular product in a particular geography. As far as collecting relevant regulatory information is concerned, there are a lot of sources that RI professionals leverage to consolidate their research material. •  Analyse Information : This gathered data needs to be filtered out to obtain relevant information as per the purpose. The data filtered is then rearranged having relevant info
2 comments
Read more