GDPR Complaint-Process Map
The General Data Protection Regulation is set to replace the Data Protection Directive effective May 25, 2018. The GDPR is directly applicable in each Member State and will lead to a greater degree of data protection harmonization across EU nations. The GDPR empowers data subjects to seek judicial relief for damages and file administrative complaints with supervisory authorities. The GDPR’s consistency mechanisms – encouraging supervisory authorities to cooperate and agree on infringement decisions, empowering the European Data Protection Board for dispute resolution, making final decisions binding – will ease burdens on controllers and processors doing business across Member States by offering more efficient enforcement solutions. This map consolidates the GDPR’s enforcement provisions into a visual tool, illustrating how supervisory authorities may pursue complaints administratively. The final installment of the IAPP’s Top 10 operational impacts of the GDPR series discusses the consequences for GDPR violations in more depth.
To view this chart on mobile screens please use landscape view or please download this pdf.
To use the map, click any process step for more information.