Many organizations will have been relieved to find that the implementation of the update to existing European data privacy laws, the EU Data Protection Regulation, has been postponed. Adoption of the Regulation is now scheduled for 2015, which means it’ll be 2017 (possibly end of) before it’s actually applicable.
At least, that’s what it looks like. In typical fashion, the official document released after the European Council meeting in Brussels on Oct 25th is the result of much political horse-trading, and avoids specificity on any matters where agreement is lacking. As a result, one has to rely on a variety of third party sources in order to piece the story together. In a nutshell, a number of countries felt that the process for finalizing the EU Data Protection Regulation should be slowed down. The UK and Germany in particular argued that further consideration was required, albeit not for the same reasons: on the British side, concerns were more on the potential adverse impact on business of very stringent rules, whereas Germany wants to ensure that all required safeguards are in place.
Those who are rejoicing over the postponement shouldn’t pop the champagne corks yet, though. While the extra time is no doubt welcome, headlines such as “Victory for tech giants on EU data laws” are premature: nothing is finalized, and there is still the chance that the final version is rather more restrictive than many would hope.Read more