The European Parliament approved, on 14 April 2016, a legislative package (Regulation and Directive) which will be a fundamental tool for creating the digital single market and ensuring delivery of EU agenda on security.
The new Regulation defines, among other matters, the consent of individuals concerned, the right to erase personal data ("right to be forgotten"), the right to portability, the right to be informed of violations of personal data, the transfer of data to non-EU countries, and penalties applicable to companies.
The Directive includes rules on data processing in the scope of crime prevention, in order to harmonise applicable rules and to facilitate the exchange of information between the police and law enforcement authorities of Member States.
The new legislative package, which repeals Directive 95/46/EC of 24 October 1995, had already been approved by the Council on 8 April. While the Regulation will enter into force after its publication in the EU Official Journal, Member states will have two years to transpose the provisions of the directive into national law.
Further information:
- General Data Protection Regulation http://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CONSIL:ST_5419_2016_INIT&from=EN
- Directive on the protection data http://data.consilium.europa.eu/doc/document/ST-5418-2016-INIT/en/pdf
- Joint Statement on the final adoption of the new EU rules for personal data protection http://europa.eu/rapid/press-release_STATEMENT-16-1403_en.htm
- Data protection reform - Parliament approves new rules fit for the digital era http://www.europarl.europa.eu/news/en/news-room/20160407IPR21776/Data-protection-reform-Parliament-approves-new-rules-fit-for-the-digital-era
- Data protection reform: Council adopts position at first reading http://www.consilium.europa.eu/pt/press/press-releases/2016/04/08-data-protection-reform-first-reading/