The European Commission found the Dutch data protection authority, Autoriteit Persoonsgegevens, misread the EU General Data Protection Regulation leading to a “strict interpretation,” NRC reports. The commission said the AP’s interpretation “constitutes a serious obstacle for companies to process personal data based on a commercial interest, because they should receive permission from every data subject” and called on the authority to change its opinion. In response, AP Chairman Aleid Wolfsen refused, writing “I am strongly convinced that this cannot be the case.”
European Commission calls Dutch DPA’s interpretation of GDPR too 'strict'
Related stories
Home sweet home or location, location, location: The best place for your company's privacy office
Transparency, good data and documentation: How HR can navigate the EU AI Act
Mind matters: Shaping the future of privacy in the age of neurotechnology
A view from DC: The FTC's next priorities
Notes from the IAPP Canada: CPS25 highlights privacy, AI, cybersecurity evolution
