Slashdot Mirror

← Back to Stories (view on slashdot.org)

New EU Legal Privacy Framework: We're Not Kidding

Posted by Unknown on from the yes-you-can-have-a-pony dept.

An anonymous reader writes "Viviane Reding, Vice-President of the European Commission announced today a new regulation for data privacy in Europe (PDF) in replacement of a 1995 Directive. Recently, privacy laws have been under a lot of criticism for their practical inability to ensure a high level of protection to EU citizens. The new data privacy framework will bring a lot of changes: 24 hours security breach notifications, mandatory security assessments, end of notifications to local data privacy agencies, mandatory data protection officers and huge administrative fines: up to 2% of the annual worldwide turnover (that would have meant $1.2 Billion for Microsoft in 2008). Indeed that's 'the necessary "teeth" so the rules can be enforced.'"

15 of 243 comments (clear)

  1. Re:Doubt it will go anywhere by superglaze · · Score: 5, Informative

    No it can't just be ignored. If these laws pass, every EU country will be forced to implement them. The European Commission has very sharp teeth indeed on stuff like this, and does not take kindly to companies trying to ignore its rules.

  2. This is only proposed set of rules by jggimi · · Score: 3, Informative

    The article could be misinterpreted to mean this is a done deal as is.

    1. Re:This is only proposed set of rules by Teun · · Score: 3, Informative
      This applies to companies with more than 250 employees, I wouldn't call them small.
      A quick scan does not seem to forbid the outsourcing of this function meaning specialist companies will be available to manage oversee your privacy compliance.

      Important is the rule this Privacy Officer needs to be totally independent of the management.

      The easiest and for me obvious way for any company to lower the amount of effort controlling this privacy sensitive data is to only keep the absolute minimum of it.

      --
      "The likes of Facebook and WhatsApp are free to those whose privacy is of zero value."
  3. Re:data location? by Anonymous+Brave+Guy · · Score: 4, Informative

    Transferring personal data from inside the EEA to places outside like the US, where there are not such strong data protection rules, requires either the subject's consent or certain specific guarantees under a safe harbour agreement. Otherwise taking the data out is already illegal.

    --
    If you disagree, post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like.
  4. Re:keeping it regional? by SomeKDEUser · · Score: 3, Informative

    It is completely within their remit. The part of the company paying is EU-based, but the fine is calculated based on worldwide activities.

  5. You Can't Vote by Anonymous Coward · · Score: 0, Informative

    The EU structure is designed explicitly to prevent those pesky citizens from having a voice in how they are to be lead. The EU is designed for EU bureaucratic elites to govern what were formerly nations in ways that best benefit EU bureaucratic elites and their financial backers.

    This is why the Euro debt crises is unfolding in its current forms. The entire purpose of pouring ever larger rescue funds into keeping the Euro solvent is so that losses can be transferred from banks to taxpayers.

    Your input is neither required, nor desired, nor, in fact, even possible.

    1. Re:You Can't Vote by Angostura · · Score: 3, Informative

      Apart from - you know - the fact that two of the more important EU institutions are the Council of Ministers and the Parliament - both of which contain people you voted for.

    2. Re:You Can't Vote by TheRaven64 · · Score: 4, Informative

      The Council of Ministers doesn't contain anyone I voted for. It contains people selected by the leader of the political party that won the national election. Neither the candidate MP I voted for nor the one who was elected to represent me is a member of this party, so my MP does not have any say in their selection. MPs are not supposed to respond to comments or questions from people in other constituencies, so the people who 'represent' me in the CoM are not actually supposed to communicate with me at all, and I have no influence on their reelection.

      I am much better represented in the Parliament. I have 5 MEPs, one of whom does a very good job (although when the Welsh Nationalist is the sane one, you start to worry about the system), but at least there is one MEP who represents my views and is accountable to me there.

      Unfortunately, every time we try to push more power to the Parliament, the Eurosceptics manage to get it overturned...

      --
      I am TheRaven on Soylent News
    3. Re:You Can't Vote by TheRaven64 · · Score: 3, Informative

      Did you read my post? It's not that I didn't vote for the person who won - the person in my constituency who does represent me (even though I didn't vote for me, he is accountable to me and the other people in my constituency) has no say in selecting the people who go to the Council of Ministers. They are selected by the government (a coalition at this point, more commonly a single party with a majority) from the pool of their MPs.

      These ministers are not allowed to communicate directly with other the constituents of other MPs. This means that the people who is supposedly representing me at the CoM are not allowed to communicate with me. I am not supposed to write letters to them, and they are not supposed to reply. In contrast, I have 5 MEPs who represent me and even though I only voted for two of them (I think - one definitely, I can't remember about the others) they are all supposed to be available for direct communication with me.

      --
      I am TheRaven on Soylent News
  6. Re:data location? by SomeKDEUser · · Score: 4, Informative

    In most of Europe, we don't vote for judges. They are appointed and are quite immune to lobbyists. Also, most of Europe has a civil law system, and under that system, the laws do not get "interpreted" by the judges...

    It is a bug of the American system that judges are affected by lobbyists and get to decide what laws mean. This doesn't mean our system is better. This is just a bug we don't have.

  7. Re:So... by mrvan · · Score: 3, Informative

    In the Netherlands, there is a "knowledge worker" rule that says that if you can find a job that requires a degree and pays X% better than minimum (or modal?) wage, it's easy to get a working permit, plus you get a huge tax break (although I think there are cutting down on the latter). Any decent sized company will have someone in the HRM department who knows these rules and can help with the paper work.

    If you are here 5 years and pass a test you can apply for citizenship but that might require renouncing your US citizenship.

  8. Re:Doubt it will go anywhere by Zwerg_Sense · · Score: 4, Informative

    to be precise: The important part is a regulation, hence it does not need to be transposed into national law! It is mandatory for the member states to comply. It is down to the European Parliament to adopt it, which of course has representatives from every member state.

  9. Re:So... by Karl+Cocknozzle · · Score: 3, Informative

    Vote yes for more expansive government authority to protect you from something that would be no danger if you could just keep your mouth shut. Governments shouldn't be about protecting you from yourself.

    How would "keeping their mouth shut" prevent consumer data disclosures? Companies that aren't doing business "online" still hold a treasure trove of data about you, much of which I'd imagine you'd prefer was kept private. ...if they were under any obligation to disclose to you that they were holding information about you, that is.

    --
    Who did what now?
  10. Re:So... by Anonymous Coward · · Score: 2, Informative

    In the Netherlands,

    The Dutch-American Friendship Treaty allows Americans to come to the Netherlands and start a business or be self-employed. All you need is a moderately coherent business plan, health insurance, and about 5000 Euros in your bank account.

    An average American techie that actually wants to move can do it, settle in, and then worry about finding a more permanent job with a more permanent visa status. It is so ridiculously easy for US citizens that when someone asks about it as the GP did, you have to wonder if they are actually serious or just expressing their frustrations.

  11. Re:So... by MysteriousPreacher · · Score: 3, Informative

    What you describe is possible, yet probitively difficult. Transferring assets with this intent, particularly if the old company becomes insolvent, is a criminal offence (at least in the UK). There is a whole raft of laws that make this process more complicated than slipping on a fresh pair of underpants. Granted though, fly-by-night operations could try such a thing, yet by your logic, pretty much all laws can be rendered useless.

    --
    -- Using the preview button since 2005