European Data Protection Supervisor
Today and tomorrow Wojciech and I are attending the Annual Conference of European Data Protection Authorities, what insiders call the ‘Spring Conference’, which this year is hosted in Budapest by the Hungarian National Authority for Data Protection and Freedom of Information.
As you know, the General Data Protection Regulation was finally adopted two weeks ago after lengthy negotiations - a victory for the protection of fundamental rights in Europe. The Regulation requires public authorities - and, in some cases, private companies - to appoint a data protection officer, DPO. The DPO's job will be to watch over in an independent manner how data is stored, used and shared and to advise their organisation on data protection issues.
So a bit of history was made yesterday. The adoption by the European Parliament of the General Data Protection Regulation, following the decision by the Council last week, is quite simply a landmark in human rights law. It is the biggest attempt so far by a legislator to grapple with the realities of global, ubiquitous data in the internet era.
The General Data Protection Regulation (or GDPR) is going to raise the bar for data protection laws around the world. Like other data protection authorities, we were closely involved in the policy discussions, though not in the negotiations. Political agreement was reached in December 2015, and the text is expected to become law before the summer.