2015, the year of seismic shifts in the privacy landscape.
Let’s take a look back on 2015, here are some of the highlights:
- Hello to the General Data Protection Regulation (GDPR): the trilogue ended just before Christmas and we now have final agreement on the text of the GDPR which will replace the EU Directive.
- Goodbye to safe harbor: in October the Schremms case inflicted a mortal blow to a system that had been facing increasing scrutiny in Europe as to its efficacy with the Court of Justice of the European Union swiftly following up with the knock-out punch in November.
- Shop local: in September Russia closed down its privacy borders with the implementation of the Russian Data Localisation laws.
- Congratulations! It’s a BCR!: in January the Information Commissioner in the UK authorized the first Binding Corporate Rules (BCR) for a data processor in the UK, only the third member state to take this step (after France and the Netherlands).
And what can we look forward to in 2016?
- By the end of January we should have confirmation of safe harbor v2.
- The release of the text of the GDPR and the formal adoption by the European Council and Parliament of the text: this is likely going to be a rubber stamping exercise taking place in early 2016 after which we will be on the final countdown to the effective date (sometime in 2018).
We all anticipate much debate and analysis on these topics and watch this space for more HireRight blogs in 2016!