Does GDPR already need to be updated to cope with new technologies? It is plausible that there have been some significant developments since GDPR was initially designed that challenge the boundaries of what is expected from data controllers and processors. However the fundamental principles should be pretty enduring, and therefore my view is that, rather than having an overhaul so early in its life, it would be better for both regulators and businesses subject to GDPR to have a thorough COVID re-think of the practical implications for compliance of (for example) the greater use of videoconferencing, remote working, cryptocurrencies, etc.
| less than a minute read
Too early for GDPR II?
Europe’s flagship data protection laws are already out of date and must be heavily revised for a post-pandemic world, said a member of the European parliament who spent years drafting the measures.
Axel Voss, one of the fathers of the General Data Protection Regulation, told the Financial Times that it needs “some type of surgery” less than three years after it came into force, and ahead of a vote by the parliament to celebrate it as a “gold standard for the world”.
Voss said GDPR needed to be revised to take into account not only the widespread move to homeworking, but also the emergence of a host of new technologies.
Businesses have long had to cope with the impact of business cycles. Now they must address not just cycles but cyclones. In our findings...