The monthly law publication which covers all aspects of data protection and data privacy. Topics covered include data transfers and outsourcing, data localisation and retention, the EU General Data Protection Regulation (GDPR), the e-Privacy Directive, data security, marketing and behavioural advertising, consent, employee monitoring, privacy compliance, risk management, DPO responsibilities, accountability, Privacy by Design, acquisition and mergers, the Internet of Things, cloud computing and Big Data / read more
Compared to the General Data Protection Regulation (‘GDPR’), the proposed ePrivacy Regulation is an exercise in minimalism. With just 29 articles, it is somewhat dwarfed by the immensity of the forthcoming general EU data privacy framework. Yet its effect may be even greater than that of the GDPR itself. In some respects, such as being a pan-European regulation and the amount of the potential fines, it is as far reaching as its bigger sister. But it is the introduction of compulsory consent for many data gathering activities that will eventually make the new ePrivacy Regulation punch well above its weight. Sure, the proposal still needs to go through the full legislative process, but given the current state of affairs regarding technology and privacy, it is difficult not to see the current draft making it to the finish line pretty much unscathed.