GDPR Must Be Defended Yet Assessed Honestly, Brussels Privacy Panelists Say
The general data protection regulation must be defended but also needs honest evaluation, a Wednesday Computers, Privacy & Data Protection conference heard, livestreamed from Brussels. GDPR has been in effect for eight months, and the European Commission is monitoring what…
Sign up for a free preview to unlock the rest of this article
If your job depends on informed compliance, you need International Trade Today. Delivered every business day and available any time online, only International Trade Today helps you stay current on the increasingly complex international trade regulatory environment.
countries are doing and how well people understand their rights, said Justice, Consumers and Gender Equality Commissioner Vera Jourova. "We have to start differentiating between consumers and citizens" to ensure personal data isn't used in the political process for targeting people and spreading fake news, she said. The EC plans a conference in June to assess GDPR costs and benefits. There have been improvements in awareness and data processing, but more cooperation is needed among data protection authorities, said Marit Hansen, data protection commissioner of Land Schleswig-Holstein in Germany. The regulation is "slowly developing its potential" and its "teething problems" will be solved sooner rather than later, she said. GDPR faces two big threats -- avoidance and denial -- but it must be defended because of its link with democracy, said Gloria Gonzalez Fuster, of Vrije Universiteit Brussel. Six EU governments haven't implemented it, and some like Poland lack money and resources to do so, said Member of the European Parliament Michal Boni, of the European People's Party and Poland. European Digital Rights is concerned about rule "flexibilities," said Anna Fielder, senior policy adviser with the Transatlantic Consumer Dialogue, speaking for EDRi. This includes language that lets political parties process personal data without explicit consent, which is happening in the U.K., Spain and Romania, she said. The EC is creating a European culture of privacy out of different national rules and processes, said Renate Nikolay, Jourova's head of cabinet. Europe is the "first mover" in privacy and will lead the global standard if it can make the law work uniformly, she said. Some aspects have worked, said Google Public Policy Manager Lanah Kammourieh Donnelly: It has led many businesses to boost processes and products, with Google having 500-plus people, many in Europe, working on privacy. But the harmonization the regulation aimed for hasn't happened, and more work is needed on standards, she said.