Presentation is loading. Please wait.

Presentation is loading. Please wait.

©2012 Morrison & Foerster (UK) LLP | All Rights Reserved | mofo.com Data Protection Masterclass: The New Draft EU Data Protection Regulation 19 September.

Published byScot Harrison Modified over 9 years ago

Similar presentations

Presentation on theme: "©2012 Morrison & Foerster (UK) LLP | All Rights Reserved | mofo.com Data Protection Masterclass: The New Draft EU Data Protection Regulation 19 September."— Presentation transcript:

1 ©2012 Morrison & Foerster (UK) LLP | All Rights Reserved | mofo.com Data Protection Masterclass: The New Draft EU Data Protection Regulation 19 September 2012

2 ©2012 Morrison & Foerster (UK) LLP | All Rights Reserved | mofo.com Data Protection Masterclass London, September 19, 2012 Ann Bevitt & Karin Retzer EU Data Protection Proposals: Where we are with the Draft Regulation

3 This is MoFo. 3 How did we get here? Current framework governed by 1995 EU Data Protection Directive Amendments required to address challenges resulting from globalization and technical advances Need for greater harmonization across Member States January 25, 2012 the Commission proposed two new draft laws Draft Regulation on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation) Draft Directive on the protection of individuals with regard to processing of personal data for the purpose of crime prevention and investigation

4 This is MoFo. 4 The Key Players The European Commission (Commission) Composed of 27 Commissioners and administrative staff Proposes draft laws The Council of the European Union (Council) Composed of ministerial-level representatives from each EU Member State Adopts laws, sometimes alone and sometimes jointly with the European Parliament The European Parliament (EP) Composed of directly elected members Adopts EU laws together with the Council

5 This is MoFo. 5 How does it work? How is the Draft Regulation going to be adopted? Commission published Draft Regulation and sent it to the EP and the Council The EP and the Council may propose amendments and work on their own versions of the text Institutions have regular exchanges to align their position; Commission assists the process To be adopted Regulation must be jointly approved by the Council and the EP – both must agree on the same text Will there be any changes to the Draft Regulation before it is adopted? Changes are very likely because the EP and the Council must achieve compromise

6 This is MoFo. 6 Council’s Position Formal note from July 2012 includes comments from 20 Member States Preference for Directive over Regulation – Member States want more for flexibility in their law-making Call for more clarification on application to organizations established outside the EU and on the place of main establishment Call for clearer definitions Criticism of high administrative burdens and unrealistic obligations, in particular breach notification obligations, documentation of processing, mandatory DPOs Call for revision of mandatory imposition of sanctions

7 This is MoFo. 7 Council’s next steps Experts from Member States are discussing the Draft Regulation in a dedicated working group First exchange between ministers due December 6-7, 2012 Ministers to discuss outstanding issues where the working group cannot reach a common position Several Member States demand more discussions; adoption of the Regulation (or a Directive) may be a long way off

8 This is MoFo. 8 Parliament’s Position LIBE Responsible Committee Jan Philipp Albrecht MEP responsible for leading discussions in the EP and preparing EP’s position Supports Regulation as legislative instrument Calls for strong rules on DPOs, impact assessments, general data breach notification, DPA powers, and severe sanctions for breaches Calls for clarification of rules on discovery requests from foreign authorities, profiling of individuals, and technology-neutral rules for data protection by design and by default Calls for adoption of Draft Regulation and Draft Directive on data protection in criminal investigations in parallel

9 This is MoFo. 9 Parliament’s next steps DateAgenda September 19, 2012Second exchange of views October 2012Publication of Rapporteur’s working document October 9-10, 2012Meetings with national parliaments November/December 2012Publication of draft Report January/February 2013Discussion and amendment of text February 2013Discussion with other committees March/April 2013LIBE votes on text During the course of 2013Discussion with the Council Unclear – but likely to be before summer 2014 EP’s final vote

10 This is MoFo. 10 Entry into Force When is the Draft Regulation going to enter into force? Once adopted, Regulation will not require implementation and will be directly applicable Regulation provides for transition period of 2 years following publication

11 This is MoFo. 11 Reading Materials Commission’s proposal for a Regulation http://ec.europa.eu/justice/data- protection/document/review2012/com_2012_11_en.pdfhttp://ec.europa.eu/justice/data- protection/document/review2012/com_2012_11_en.pdf Commission’s proposal for a Directive http://eur- lex.europa.eu/LexUriServ/LexUriServ.do?uri=CELEX:52012PC0010:en:NOThttp://eur- lex.europa.eu/LexUriServ/LexUriServ.do?uri=CELEX:52012PC0010:en:NOT Albrecht’s Working Document http://www.europarl.europa.eu/sides/getDoc.do?type=COMPARL&reference=PE- 491.322&format=PDF&language=EN&secondRef=01http://www.europarl.europa.eu/sides/getDoc.do?type=COMPARL&reference=PE- 491.322&format=PDF&language=EN&secondRef=01 Formal Note from the Council July 18, 2012 http://www.statewatch.org/news/2012/jul/eu-council-dp-reg-ms-positions-9897- rev2-12.pdfhttp://www.statewatch.org/news/2012/jul/eu-council-dp-reg-ms-positions-9897- rev2-12.pdf Parliament’s procedure file http://www.europarl.europa.eu/oeil/popups/ficheprocedure.do?lang=en&reference =2012/0011(COD)http://www.europarl.europa.eu/oeil/popups/ficheprocedure.do?lang=en&reference =2012/0011(COD)

12 ©2012 Morrison & Foerster (UK) LLP | All Rights Reserved | mofo.com Data Protection Masterclass London, September 19, 2012 Ann Bevitt & Karin Retzer EU Data Protection Proposals: The Business Perspective LN/207999

13 This is MoFo. 13 The global dimension How will the new Draft Regulation affect companies based outside the EU? Will cross border transfers be easier? Will BCRs replace the Model Clauses? Will the Regulation have positive implications for cloud computing? What about compliance with foreign law obligations, like SOX or FCPA? What about the foreign discovery process?

14 This is MoFo. 14 Improvements for companies How might the Regulation improve things for companies? What about the concept of main establishment? How does it work, and will it apply to non-EU companies? Will the legal interpretations be more consistent across Member States?

15 This is MoFo. 15 Challenges for companies So, what challenges and problematic issues does the Regulation raise? What about the cost of compliance? Will companies have to allocate more resources? Will companies have to appoint DPOs? How would the Regulation affect data processors?

16 This is MoFo. 16 Challenges for companies (2) How about handling HR data? Will it be easier for employers? Will there be any specific implications for certain sectors? What does data protection “by design” and “by default” mean in practice? Will all data security breaches need to be notified? What about breaches by non-EU companies?

17 This is MoFo. 17 Contacts Ann Bevitt Partner, London 44 20 7920 4041 abevitt@mofo.com Karin Retzer Partner, Brussels 32 2 340 7364 kretzer@mofo.com

Download ppt "©2012 Morrison & Foerster (UK) LLP | All Rights Reserved | mofo.com Data Protection Masterclass: The New Draft EU Data Protection Regulation 19 September."

Similar presentations

Rule-Making Book II EU Administrative Procedures – The ReNEUAL Draft Model Rules 2014 Brussels, May 19-20 th 2014 1 Herwig C.H. Hofmann University of Luxembourg.

Rule-Making Book II EU Administrative Procedures – The ReNEUAL Draft Model Rules 2014 Brussels, May th Herwig C.H. Hofmann University of Luxembourg.
The European Data Protection Regulation and research Graham Love Chief Executive Health Research Board 1.

The European Data Protection Regulation and research Graham Love Chief Executive Health Research Board 1.
1 Reform of the EU regulatory framework for electronic communications What it means for Access to Emergency Services Reform of the EU regulatory framework.

1 Reform of the EU regulatory framework for electronic communications What it means for Access to Emergency Services Reform of the EU regulatory framework.
The New Rules: Flexibility, Legality, Accountability Reform of the European Public Procurement Rules Legal and Practical Implications 15 May 2014 Bucharest.

The New Rules: Flexibility, Legality, Accountability Reform of the European Public Procurement Rules Legal and Practical Implications 15 May 2014 Bucharest.
Overview of the EU and its institutions Stephanie Newman, IEEP 20 February 2013 Fisheries Secretariat Workshop: Fisheries Policy in.

Overview of the EU and its institutions Stephanie Newman, IEEP 20 February 2013 Fisheries Secretariat Workshop: Fisheries Policy in.
The European Parliament. Create a check-list of the essential features of a liberal representative democracy. Before we begin.

The European Parliament. Create a check-list of the essential features of a liberal representative democracy. Before we begin.
From European to international standards on data protection (1/2)

From European to international standards on data protection (1/2)
TAMARA ĆAPETA JEAN MONNET PROFESSOR OF EU LAW UNIVERSITY OF ZAGREB, FACULTY OF LAW 2014 New systematization of EU legal instruments in the Lisbon Treaty.

TAMARA ĆAPETA JEAN MONNET PROFESSOR OF EU LAW UNIVERSITY OF ZAGREB, FACULTY OF LAW 2014 New systematization of EU legal instruments in the Lisbon Treaty.
An introduction to the EU and its legislation. Member States currently 15 –Austria- Ireland –Belgium- Luxembourg –Denmark- Netherlands –Finland- Portugal.

An introduction to the EU and its legislation. Member States currently 15 –Austria- Ireland –Belgium- Luxembourg –Denmark- Netherlands –Finland- Portugal.
EU Criminal Law Introduction, Lisbon Treaty. EU criminal legislation EU cannot adopt a general EU criminal code EU cannot adopt a general EU criminal.

EU Criminal Law Introduction, Lisbon Treaty. EU criminal legislation EU cannot adopt a general EU criminal code EU cannot adopt a general EU criminal.
WORLD MEETING OF CUSTOMS LAW BRUSSELS 2013 4, 5 - 6 September “ Studies on Harmonization of Customs Law and Contributions of the Academy for updating and.

WORLD MEETING OF CUSTOMS LAW BRUSSELS , September “ Studies on Harmonization of Customs Law and Contributions of the Academy for updating and.
Draft EU Privacy Regulation Corporate Privacy Forum January 26, 2012.

Draft EU Privacy Regulation Corporate Privacy Forum January 26, 2012.
Delegated Acts and Implementing Acts in Food Law

Delegated Acts and Implementing Acts in Food Law
EUROPEAN COMMISSION - DG Internal Market 1 Reviewing the Review: The European Commission's Third Review of the Product Liability Directive

EUROPEAN COMMISSION - DG Internal Market 1 "Reviewing the Review: The European Commission's Third Review of the Product Liability Directive"
Support for the Modernisation of the Mongolian Standardisation system – EuropeAid/134305/C/SER/MN Training on standardisation Support to the Modernisation.

Support for the Modernisation of the Mongolian Standardisation system – EuropeAid/134305/C/SER/MN Training on standardisation Support to the Modernisation.
Second expert group meeting on Draft fiche on delegated act on the European code of conduct on partnership (ECCP) Cohesion Policy 21.06.2013 1.

Second expert group meeting on Draft fiche on delegated act on the European code of conduct on partnership (ECCP) Cohesion Policy
European Commission, Technical Assistance Information Exchange Unit (TAIEX), DG Enlargement in co-operation with The Bulgarian Chamber of Commerce and.

European Commission, Technical Assistance Information Exchange Unit (TAIEX), DG Enlargement in co-operation with The Bulgarian Chamber of Commerce and.
Planning and Community Development Department 2014-2021 Housing Element City Council February 03, 2014.

Planning and Community Development Department Housing Element City Council February 03, 2014.
Ministry of Enterprise, Energy and Communications Sweden Small Business Act – Think Small First in Sweden Håkan Hillefors Division for Entrepreneurship.

Ministry of Enterprise, Energy and Communications Sweden Small Business Act – Think Small First in Sweden Håkan Hillefors Division for Entrepreneurship.
Data Protection and the Internet – New Challenges The reform of the data protection legal framework – current developments Roberto Lattanzi Italian Data.

Data Protection and the Internet – New Challenges The reform of the data protection legal framework – current developments Roberto Lattanzi Italian Data.

Similar presentations

Ads by Google