The French government over the past few months has debated a bill that would create new data protection obligations and establish General Data Protection Regulation-like requirements before the GDPR comes into effect. The French National Assembly adopted it and passed it to the Senate, which made a number of amendments. Myriam Gufflet, CIPM, writes for Privacy Tracker about one such amendment that would require personal data to be stored in the European Union and prohibit the transfer of personal data to a non-EU third country. “The Senate’s provision as it stands does not align with the GDPR,” writes Gufflet, “and it would greatly restrict transfers of personal data subject to French law out of the EU to cases where France or the EU signed international undertakings.” (IAPP member login required.)
If you want to comment on this post, you need to login.