The GDPR enters into effect in the entire EU
The General Data Protection Regulation (Regulation (EU) 2016/679) (‚GDPR‘) entered into effect on 25 May 2018. Vĕra Jourová, Commissioner for Justice, Consumers and Gender Equality (‚the Commissioner‘), stated, „Personal data is the gold of the 21st century. And we leave our data basically at every step we take, especially in the digital world. When it comes to personal data today, people are naked in an aquarium. Data protection is a fundamental right in the EU. The new rules will put the Europeans back in control of their data. Now we have a choice and can decide what happens and who has what sort of data. You can ask and companies have to tell you. You can also recover your data if you leave or change service. The rules are based on a risk-based approach. Companies that have been making money from our data, have more responsibilities. They should also give something back to the consumers; at least the security of their data. Companies, which do not process data as their core business activity, have less obligations and mainly have to make sure that the data they process are secure and used legally. They will also be rules with teeth. Everyone, especially those companies that monetise our personal data, will have an interest to play by the rules.“
In addition, the European Data Protection Board (‚EDPB‘) announced, on 24 May 2018, that it would hold its first plenary meeting on 25 May 2018, whereby it would elect its Chair. The EDPB stated that the Chair will lead the authority for the coming five years.