Policy & Law
01.09.2018

100 Days of the GDPR and Many Open Questions

  • Supervisory authorities in Germany and Europe are holding back about their expectations and requirements for audits
  • Digital European single market needs uniform implementation of the GDPR

On 1st September, it will be 100 days since the European GDPR (General Data Protection Regulation) came into force and the email inboxes were full to bursting with data protection updates and requests for consent. This was how most companies in Germany made themselves fit for the GDPR. “The majority of companies today are acting in legal compliance with the new European data protection regulations,” says Alexander Rabe, CEO of eco –Association of the Internet Industry.

However, while companies may have done their homework, there is still much left for supervisory authorities and courts to do. The uniform implementation in Germany that industry is repeatedly looking for is not yet on the right track. “When it comes to some open questions in the interpretation of the GDPR, the courts are certainly going to have to decide. But this should not prevent the supervisory authorities from presenting their expectations and requirements for audits,” states Alexander Rabe.

Is Europe serious about uniform data protection?

It is particularly important to arrive at uniform regulations throughout Europe. “It is important – both at European level, and at national level in the individual Member States – to strive for the most uniform implementation of the GDPR possible. Everything else would conflict with the spirit of a digital European single market aimed at strengthening the industry as a whole,” comments Rabe. A swift and coherent arrangement for third countries is also important.

Ongoing discussions, for example about the EU-US Privacy Shield, are contributing to the uncertainty. The ePrivacy Regulation is another piece of legislation being deliberated upon in Brussels that may impose far-reaching changes to data protection and data protection requirements on digital businesses and business models, and which may even significantly reduce the quality of services. “The Council’s negotiations and the subsequent trilogue negotiations will show whether Europe is serious about uniform data protection. However, the drafts submitted so far for the ePrivacy regulation give us reason to doubt this,” says Alexander Rabe.

100 Days of the GDPR and Many Open Questions
CC0 Creative Commons / pixabay

You might also be interested in

Alexander Rabe
Policy & Law
press release

eco: The Digital Ministers’ Conference of the Federal States Must See Itself as the Speedboat for Digitalisation in Germany

At the meeting of the D16 – the digital ministers of the German federal states – the digital policy cooperation of the federal states was newly institutionalised.
18.04.2024
Digitalisation: eco Association Formulates Top 5 Digital Policy Tasks for the next German Federal Government
Policy & Law
press release

Possible Agreement on the German Quick Freeze Procedure: eco Calls for Consistent Repeal of Data Retention

The German traffic light coalition parties have claimed to reach a compromise on investigative measures on the Internet. While politicians have kept citizens and companies waiting for more than a decade since the introduction of illegal data retention, the ‘Quick Freeze’ procedure could now finally establish a legal framework that complies with civil rights.
10.04.2024
Digitalisation: eco Association Formulates Top 5 Digital Policy Tasks for the next German Federal Government
Policy & Law
press release

Passage of the Digital Services Act (DDG): eco Association emphasises significance for companies and consumers, but criticises the blocking of Internet content

The German Bundestag passed the German Digital Services Act (DDG) on 21 March 2024. The eco Aassociation takes a critical view of the fact that legislators are sticking to the blocking of Internet content provided for in the German Telemedia Act (TMG).
22.03.2024