Skip to Content
Skip to Table of Contents
Ana Maria Correa
- The GDPR came to harmonise data protection in the EU and enforce privacy rights. Businesses recognise its importance in our current data driven economy, but there is still some legal uncertainty around it. A standard interpretation of the GDPR should be suitable for companies’ activities. More guidance is also required from data protection authorities.
- The GDPR involves multiple stakeholders and should take into consideration vulnerable groups, such as university and school students, patients, and refugees. Even if the GDPR represents a global standard on privacy, it is not enough to address the excessive collection of data. Citizens should be offered minimum training at schools, universities, and hospitals to understand the impact of the collection of personal data.
- In terms of impact, the GDPR makes people more aware of privacy rights. There is a major compliance effort with more than 500 000 data protection officers in Europe that aim to guarantee privacy. However, more transparency about its application and remedies is required. Codes of conduct could be a solution for clarifying the purposes and application of the regulation.