cross-posted from: https://lemmy.zip/post/52834195
“If adopted, these amendments would not simplify compliance but hollow out the GDPR’s and ePrivacy’s core guarantees: purpose limitation, accountability, and independent oversight,” Itxaso Dominguez de Olazabal, from the European Digital Rights group, told EUobserver.
The draft includes adjustments to what is considered “personal data,” a key component of the GDPR and protected by Article 8 of the Charter of Fundamental Rights of the European Union.
Compliance does need to be considered. The company I work for is trying extremely hard to comply, but because of complexities and ambiguities in the law, it is difficult to find out how to comply. I don’t know all the details, but I know legal, compliance, and the data engineering teams spend a lot of time figuring out how to be compliant and there aren’t always clear answers.
That said, the solution is not to roll back protections but to be very explicit about how to comply.