EU justice ministers agreed to new data protection laws at the start of this week, and they are now on track to be signed off within the next six to nine months.
The new laws include numerous changes, many of which will fundamentally alter how businesses have to operate in the region.
V3 has put together a list of the 10 biggest changes to help firms gain a clear understanding of what will happen when the law arrives, which could be before the end of the year.
10. Right to be forgotten extended
The right to be forgotten already exists in a form, allowing people to ask search providers such as Google and Microsoft to have certain search terms and their results expunged from the database.
However, the new data protection laws will take this further by making it far easier for people to have data on themselves removed from the databases of major companies.
“If an individual no longer wants his or her personal data to be processed or stored by a data controller, and if there is no legitimate reason for keeping it, the data should be removed from their system,” the EC said.
However, the EC noted that there will be some cases where this is not applicable.
“There are cases where there is a legitimate reason to keep data in a database. The archives of a newspaper are a good example. It is clear that the right to be forgotten cannot amount to a right to rewrite or erase history.”
Nevertheless, the right for consumers to request all data on a firm’s systems to be deleted will create yet another problem for businesses.
A new RSA report urges coders to sign a 'Hippocratic Oath' before embarking on AI programmes.
IT security vendor believes APT33 is working for the Iranian government
Darktrace pushes machine learning to take some of the pressure off of IT and security teams
Google also gets its hands on HTC's IP in a non-exclusive deal