Privacy-proof: are you ready for the GDPR?
What is this about?
On 25 May 2018, the new privacy regulation (the General Data Protection Regulation, also abbreviated as ‘GDPR’) will take effect.
The GDPR requirements will apply to all EU-based organisations that process personal data. Companies outside the EU offering products in the EU or monitoring the behaviour of European citizens, for example for the purpose of targeted advertising, will also be subject to the Regulation.
The rules are stricter for those who are engaged in the large-scale processing of personal data, as is the case for online marketing, for example. The rules are also stricter where sensitive data are being processed (such as medical data or personal data of minors) or where use is made of profiling, for instance to create customer profiles based on online behaviour.
The principles of privacy law will remain unchanged, but a number of obligations will be expanded or modified compared to the current legislation. Digital-era developments are a point of focus, as that is where privacy is the most relevant. A summary of the main changes is provided below:
The GDPR takes effect on 25 May 2018. This means that the GDPR will replace existing national legislation (such as the Personal Data Protection Act in the Netherlands) and the GDPR will have direct effect in the Netherlands as from that date.
In the autumn of 2017, we will schedule a workshop for clients to discuss the ins and outs of the new privacy rules and share some specific tips.
Are you interested? Please send an email to one of our privacy specialists or give them a call:
Berber Brouwer (firstname.lastname@example.org)
Astrid Sixma (email@example.com)
Esther Schnepper (firstname.lastname@example.org)
T: + 31 20 620 22 88 – Bergh Stoop & Sanders Advocaten.