Data Protection: Legislative Procedure

De La Quadrature du Net
Aller à la navigationAller à la recherche

This page lists the EU Parliament committees' opinion regarding the General Data Protection Regulation proposed by the Commission.

IMCO

Profiling

Three amendments Erreur de référence : Balise <ref> incorrecte ; le nom ne peut être un entier simple. Utilisez un titre descriptif were aimed to prevent children from being subject to profiling, but they fell as the Compromised Amendment 9 Erreur de référence : Balise <ref> incorrecte ; le nom ne peut être un entier simple. Utilisez un titre descriptif was voted by the ALDE, EPP, ECR and EFD. This compromised amendment completely undermines Article 20, to the point that this article cannot prevent any form of profiling anymore, but merely prohibits unfair and discriminatory decisions based on automated process of personal data. It is such a change that  the article 20 even switches its title from ‘profiling’ to ‘automated process’ (290).



2: Compromised amendment based on amendments 290, 294 and 295 proposed by Harbour and Bielan (ECR) in IMCO draft opinion.

However, amendment 233 proposed by Engström (Greens) still sets a right to object to profiling, defined by

Data breach notification

Compromised amendment 10 (3)  limits controllers’ obligation to notify to the breaches of significant effect and dismisses their obligation to notify within a 24 hours delay.

3: Based on Amendment 358 proposed by Schwab and Trzaskowski (EPP) and Voted by ALDE, EPP, ECR and EFD.

Consent

One of the major features of the Commission's Proposal Regulation is to require from the data subject a consent which is specific, informed and explicit. Requiring an explicit consent appears to be the most effective way to safeguard privacy. But the only amendment IMCO voted about consent was to redefine it as having to be given 'as explicit as possible according to the context', giving processors countless ways not to seek data subject's explicit consent.

Right to be forgotten and to erasure

Compromised amendment 8 (4) provides that a controller doesn't have to take all reasonable steps to inform third parties that a data subject has requested them to erase the data they hold where this data subject gave his consent to this controller to make these data public.

4: voted by Greens, S&D, ALDE, EPP, ECR, EFD

Anonymity

Compromised amendment 5 (5) provides that anonymous data (which cannot be attributed to anyone) are set out the scope of the regulation.

5: voted by Greens, S&D, ALDE, EPP, ECR, EFD


JURI

EMPL

ITRE

LIBE