NOTAS: | "Following lengthy negotiations, the new General Data Protection Regulation (GDPR) initially proposed by the European Commission back in 2012 is now a done deal, although the rules will only come into force in 2018.
Those rules mainly strengthen users' rights, having in mind the technological evolution and the flourishing of online activities that have prompted the update of the framework. As a result, online companies are likely to find them more burdensome than the current rules that are about to expire; however, the new rules should not come as a surprise to them, and businesses should get ready and enhance data protection standards in advance. Doing so will put them in a stronger position in front of end users, who are increasingly aware of the value of personal data. The most cumbersome disruptions for businesses are likely to come from the stronger safeguards needed to transfer data outside the EU, and particularly to the US, which is a key aspect of the operation of the world's biggest tech companies." |