CNBC reports on the challenges consumers, regulators and companies have faced in the first year of the EU General Data Protection Regulation. BakerHostetler Partner Laura Jehl, CIPP/US, said the GDPR’s notice-and-consent model has offloaded “too much responsibility to the individual” who has to comprehend changes made to privacy policies. “I think there’s still some lack of clarity from consumers on exactly what they need to do,” O'Melveny & Myers Special Counsel Scott Pink said. Jehl said the “informal grace period” for companies and regulators has come to an end, which means enforcement penalties are likely on the horizon. Jehl added the GDPR’s data breach notification rules have also overwhelmed regulators in the European Union.
If you want to comment on this post, you need to login.