Strict new EU data protection rules formally adopted by MEPs

Companies face 4 per cent global turnover hit if found in breach

Strict new rules forcing companies to pay four per cent of their global turnover in fines if they breach the European Union's data protection regulations have today been formally agreed.

The legislation will create a uniform set of rules across the EU "fit for the digital era," said the EU in a press release.

It said they should also improve legal certainty and boost trust in the digital single market for citizens and businesses.

"The new rules will give users back the right to decide on their own private data”, said Parliament's lead MEP on the regulation, Jan Philipp Albrecht.

"At the same time, the new rules will give businesses legal certainty and chances for competition. It will create one single common data protection standard across Europe. This implies less bureaucracy and creates a level playing field for all business on the European market", he added.

The new rules will also include: clearer rules on processing of private data; the “right to be forgotten” – for consumers to be erased from company databases – an end to 'small print' privacy policies; a requirement from companies to appoint a data protection officer if they are handling significant amounts of sensitive data; and the creation of national Data Protection Authorities (DPAs) where citizens can complain about data breaches.

The agreement was reached by the EU parliament and EU Council on Tuesday evening was backed by 48 votes to four, with four abstentions.

The new rules will replace the EU's current data protection laws which date from 1995. ®

Keep Reading admits it has not performed legally required data protection checks for COVID-19 tracing system

No evidence of data being used unlawfully, says health department

Privacy Shield binned after EU court rules transatlantic data protection arrangements 'inadequate'

The spice data must flow (and it will – just through SCCs)

British Airways and Marriott UK data protection fines deferred again as coronavirus shutdown hits business

May and June are new due dates and neither firm is going down quietly

BRICS bloc – home to 40 percent of humanity – wants to drive global e-commerce consumer protection rules

China has the giant e-tailers, India has the customers, Brazil, Russia and South Africa are aboard

Floating COVID incubation tank becomes data-leaking ransomware rustbucket: Carnival admits crims made off with personal data booty

Plus: Cali uni that paid $1.4m to crims had decent backup software, but they didn't use it on the affected systems

Data protection scofflaws failed to pay £2m in fines from UK watchdog – and 68% of penalties are still outstanding

We're trying, insists beleaguered Information Commissioner's Office

Morgan Stanley hit with $60m penalty for failing to properly decommission old kit hosting 'wealth management' data

Banking giant rapped over management of two US bit barns

Pop quiz: Who's responsible for data protection compliance in the cloudy era? If you said 'dunno', you're not alone

Survey is thinly veiled marketing from Microsoft, but the issue is real

Biting the hand that feeds IT © 1998–2021