GDPR: New Challenges for Corporations

Abstract

The implementation of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27th April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (which is well-known as “GDPR”) represented intensive management, personal and organizational effort in corporations connected with lot of emotions and misunderstandings. Since the beginning, but even more in weeks prior to 25th May 2018, media and many law firms and other consultancy firms looking for new business opportunities together created panic atmosphere which resulted for many managers into the feeling that GDPR represents a major revolution in personal data privacy protection and that companies and individuals would have to completely change their approach, internal processes and operational practise. However, through explanatory process it was (step by step) more and more clear that GDPR represents rather harmonization and evolutionary consequence of increasing need for rather more effective and enforceable protection of personal data privacy which is required mainly by increasing level of collection of more and more various types of personal data from various sources which nobody expected few year ago when old legislation came into place, and, last but not least, by using (and misusing) these data for various good and bad purposes and also by very often insufficient knowledge of people about their rights in respect to the use of their personal data.