Extremely short-sighted and irresponsible. I'm disappointed Schrems continues to give credence to the idea. You absolutely can take all the teeth out of the GDPR while still complying with the Charter. And good luck stricking down amendments through the CJEU. www.politico.eu/article/eu-g... - ThreadSky

gateklons.bsky.social • 78 days ago

Extremely short-sighted and irresponsible. I'm disappointed Schrems continues to give credence to the idea. You absolutely can take all the teeth out of the GDPR while still complying with the Charter. And good luck stricking down amendments through the CJEU.

https://www.politico.eu/article/eu-gdpr-privacy-law-europe-president-ursula-von-der-leyen/

Comments

gateklons.bsky.social•78 days ago

"Adjustments could include limiting requirements to keep records of data processing activities, or reforming how businesses provide data protection impact statements — two rules seen as overly cumbersome to smaller firms."

In other words, documentation you would have to produce anyway if you were

gateklons.bsky.social•78 days ago

actually intent on complying. Controllers will just be able to hide non-compliance better.

That's not to say that nothing can be stricken from the GDPR but that stuff is comparatively minor.

If EC actually wanted to lessen the burden on SMEs they'd move some of the responsibility upstream such as

gateklons.bsky.social•78 days ago

to software vendors, standards orgs etc. that should help their users comply. Perhaps this can partly be achieved with a broad interpretation of controllership but statutory clarity would still be welcome.

Larger processors should also be under an obligation to make sure their data processing

gateklons.bsky.social•78 days ago

agreements are actually sound. Smaller controllers have no room to negotiate here.

Lastly, let's not forget about GDPR's weirdness at the outskirts of its scope that covers regular individuals (e.g. when posting on social media) and sole traders.

They should not be excluded from the scope and most

gateklons.bsky.social•78 days ago

obligations but other actors around them (e.g. OS vendors) should make it as easy for them to comply as possible.

Alas, EC primarily wants a bonfire. Thanks but no thanks, Draghi.

gateklons.bsky.social•78 days ago

What we really need are DSA style audits and more powerful DPOs inside large controllers but that is not coming unfortunately.

And SMEs and small controllers often aren't fined anyway 🤷‍♂️

robertjbateman.bsky.social•78 days ago

Unfortunately the battle against big tech sometimes seems to take priority against meaningful data protection.

Those of us working in the field know that the GDPR is (mostly) flexible and scalable by nature.

These proposals seem unlikely to help anybody, least of all data subjects.

gateklons.bsky.social•78 days ago

I don't think this has much to do with battles with Big Tech (not that EC is currently really interested in them anyway), just a general deregulatory agenda and promoting "competitiveness" (which this won't help one bit).

Agreed data subjects will be hurt. Non-existent exemptions (like pretending

iamdtrust.bsky.social•77 days ago

Trust in Government, Public Sector organisations and Private Sector organisations, and increasingly, digital trust, is the cornerstone of societal well-being.

#trustmatters
#dataprotectionmatters
#privacymatters
#datasubjectsmatter
#humanrightsmatter #digitaltrustmatters

https://whoisdtrust.me

#iamdtrust

gateklons.bsky.social•78 days ago

you don't have to provide data responsive to a DSAR where that's too difficult for you) are already routinely abused.

Does the EC really want a lobbying onslaught? Because that's what they're gonna get, including potential US interference and attempts at softening the law for AI-related processing

robertjbateman.bsky.social•78 days ago

The flexibility, of course, relates to the scope and risk of data processing activities rather than some arbitrary threshold involving the number of employees.

That's the right way to apply principles-based human rights protections.

Comments

Posting Rules

Reply