In response to recent revelations about mass, state operated surveillance programs, and changing internet usage patterns, the EU has pushed through revisions of current data protection laws. MEPs have taken the action to increase the protection of data belonging to individuals and non-EU countries. The law will now protect an individual’s right to be requested for consent to collect and store data, and the right to erasure, replacing the right to be forgotten rule.
The EU Parliament’s civil liberties committee revised EU data protection laws for the first time since 1995. The revision comes after several technological advancements have been made in the collection and storage of data in the last two decades. The new proposed laws will require companies in control of data to erase an individual’s information if he or she requests it. Under the new regulations, the rules will stipulate that explicit consent should be given by an individual for a company to collect and store data. This consent can also be withdrawn at any time.
According to Jan Philipp Albrecht of the Greens/EFA, DE, it’s a great result. “The vote is a breakthrough for data protection rules in Europe, ensuring that they are up to the challenges of the digital age.’’ After the vote, MEPs said that the Commission proposed to fine companies two percent of worldwide annual turnover, or €1m, however this was rejected. Under the new plans, any organisation in breach of the new laws will be subject to a fine of either five percent of annual worldwide turnover or to €100m, whichever amount is greater.
There are two draft laws that the EU Parliament aims to negotiate with EU governments before the EU elections in May 2014. The first is a general regulation for the processing of personal and public data which was adopted by 51 votes to one, with three abstentions. The second is a law enforcement directive, required to investigate and prosecute companies in breach of the proposed. The civil liberties committee adopted this by 47 votes to four, with one ‘no-vote’.
Albrecht added that ’’Parliament now has a clear mandate to start negotiations with EU governments. The ball is now in the court of member state governments to agree a position and start negotiations, so we can respond to citizens’ interests and deliver an urgently-needed update of EU data protection rules without delay.’’