Short Reads

General Data Protection Regulation comes into effect

General Data Protection Regulation comes into effect

General Data Protection Regulation comes into effect

07.08.2018 NL law

On 25 May 2018, the European Union's General Data Protection Regulation (GDPR) came into effect. The GDPR replaces the EU's prior directive governing the processing and transfer of personal data, which was in place since 1995. As a regulation, the GDPR is directly applicable in all 28 EU member states and thus removes the need for national implementing legislation. However, the GDPR allows member states discretion in certain areas, as a result of which national legislation may still be implemented. In the Netherlands, the GDPR Implementation Act came into effect on 25 May 2018.

The GDPR intends to harmonise rules regarding the protection of personal data and the promotion of free movement of such personal data within the EU. It provides a set of standardised data protection laws across all EU member states. The GDPR affects both natural persons and companies. As regards natural persons, their existing privacy rights have been strengthened and new and improved rights have been introduced. In addition, natural persons have been given greater control over their own personal data.

As regards companies, the GDPR applies to both EU companies and non-EU companies that (i) process personal data in relation to the offering of goods or services to EU data subjects or (ii) monitor the behaviour of data subjects occurring within the EU. Even if a company only processes data on behalf of somebody else, it is still subject to the GDPR. The GDPR expressly addresses the role and responsibility of data processors, in other words those entities that process personal data on behalf of another entity that controls the data and the purpose for which the data are being processed (i.e. data controllers). For example, a hosting provider is a data processor for the company owning the website and a payroll service provider is a data processor for the employer outsourcing payroll services.

For companies, new and stricter requirements have been introduced. The GDPR places a number of onerous obligations on companies to have them demonstrate compliance with the GDPR. Companies need to, among other things, put procedures and systems in place so there is a structure for certain topics like risk assessment and decision-making. They are also required to keep a register of all processing activities and, in some cases, designate a data protection officer.

Failing to comply with the GDPR could have a huge impact on companies as the maximum fines for non-compliance are significantly higher than before. For example, companies could now face fines of (i) 4% of total annual worldwide turnover or (ii) EUR 20 million, whichever is higher, depending on the type and severity of the non-compliance in the individual case. In addition, the supervising authorities can issue a warning or impose a temporary or definitive ban on processing personal data.

For more information, please visit the GDPR page on our MyStibbe portal.

Team

Related news

17.01.2020 LU law
Stibbe boosts service offering in Luxembourg with new partners and counsel for asset management/funds and corporate & finance

Inside Stibbe - Luxembourg, 17 January 2020 – Stibbe reinforces its corporate & finance and asset management/funds practices in Luxembourg with the hire of Bernard Beerens (corporate partner), Audrey Jarreton (banking and finance counsel), Edouard d’Anterroches (investment funds partner), Victorien Hémery (investment funds partner), and Dayana Bert (investment funds counsel). Their arrival comes after the recent hire of tax partner Johan Léonard. All of these new additions demonstrate the firm’s commitment to expanding Stibbe’s service offering in Luxembourg.

Read more

17.01.2020 LU law
Stibbe Luxembourg étend son offre de services par la venue de nouveaux associés et counsels au sein des pratiques spécialisées en gestion d’actifs/fonds d’investissement, en droit des sociétés ainsi qu’en droit financier

Inside Stibbe - Luxembourg, le 17 janvier 2020 – Stibbe renforce ses pratiques spécialisées en droit des sociétés, en droit financier ainsi qu’en gestion d’actifs/fonds d’investissement par la venue de Bernard Beerens (associé, droit des sociétés), Audrey Jarreton (counsel, droit bancaire et financier), Edouard d’Anterroches (associé, fonds d’investissement), Victorien Hémery (associé, fonds d’investissement) et Dayana Bert (counsel, fonds d’investissement).

Read more

20.01.2020 BE law
Most commonly used unregulated real estate investment vehicles in Belgium

Articles - On 1 January 2020, the mandatory provisions of the Code for Companies and Associations or "BCAC" entered into force. This article provides an overview of the main characteristics of the most commonly used unregulated real estate vehicles in Belgium (the regulated real estate vehicles are part of a separate publication that will be published shortly). It does not intend to provide a complete overview of all unregulated investment vehicles available, but it does give insight into the main characteristics of the most commonly used investment vehicles in Belgium.

Read more

15.01.2020 NL law
The Dutch scheme - a summary of the upcoming new restructuring tool

Short Reads - As mentioned in our earlier blog, the Dutch legislator has prepared a bill – the Act on confirmation of private restructuring plans (Wet homologatie onderhands akkoord) – introducing a framework that allows debtors to restructure their debts outside formal insolvency proceedings (the “Dutch Scheme“). We expect this highly-anticipated bill to enter into force by this summer. The Dutch Scheme combines features from the UK Scheme of Arrangement and the US Chapter 11 proceedings. Below, we summarize certain key aspects of the Dutch Scheme.

Read more

Our website uses functional cookies for the functioning of the website and analytic cookies that enable us to generate aggregated visitor data. We also use other cookies, such as third party tracking cookies - please indicate whether you agree to the use of these other cookies:

Privacy – en cookieverklaring