After four long years, European policy makers reached an agreement on the European data protection reform and the terms of the upcoming General Data Protection regulation (GDPR) – formally known as the “Regulation of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data”.
The GDPR will finally be adopted in the next few days and will take effect early 2018. As such, the GDPR will be replacing the European Data Protection Directive of 1995.
The Information Commissioner’s Office (the ICO) has served an enforcement notice on Google Inc requiring it to delist nine specific search engine results within 35 days. This is the first formal enforcement notice served by the UK regulator on the US online giant in relation to a ‘right to be forgotten’ request, a right which is likely to become enshrined in the new data protection regulation currently under discussion.