- Created: 05 February 2018
The European Union’s 28 countries’ sluggish adoption of laws implementing the bloc’s new privacy regime could hobble regulators’ enforcement powers.
The EU General Data Protection Regulation, which takes effect May 25, grants privacy regulators the power to levy fines of up to the higher of 20 million euros or 4 percent of a company’s global revenues for the most serious privacy breaches.
But before they can act, countries may need to validate or upgrade laws establishing their privacy regulators. Without new laws, companies may be uncertain about the compliance and enforcement risks they face in individual EU countries, privacy attorneys told Bloomberg Law.“We still have countries that haven’t even published a draft,” Julia Kaufmann, a technology and data privacy partner with Baker McKenzie in Munich, told Bloomberg Law.
By Stephen Gardner. Read the article in full at Bloomberg Law.