Thank you for this summary of the press release. I just want to re-iterate what I wrote in my previous email, we are going to need to thoroughly review the Directive and the Regulation (forgive me if the terminology is wrong, I have only lightly skimread both links). Both of these documents are going to inform our work as we move forward. We are looking at reviewing 400 pages of dense material — this is probably not a task for just one person. I can't put my hand up to help this weekend, but I do intend on reading these documents at some stage over the next month.

On Fri, Apr 15, 2016 9:49 AM, Richard Padilla via gnso-rds-pdp-data gnso-rds-pdp-data@icann.org wrote:

Dear All,

Being a little proactive Benny sent a link of the actual new rules that were pushed through yesterday at EEC here a quick summary:

Agreed 14/4 - http://www.europarl.europa.eu/news/en/news-room/20160407IPR21776/Data-protection-reform-Parliament-approves-new-rules-fit-for-the-digital-era

New EU data protection rules which aim to give citizens back control of their personal data and create a high, uniform level of data protection across the EU fit for the digital era.
“The regulation will also create clarity for businesses by establishing a single law across the EU. The new law creates confidence, legal certainty and fairer competition”.
The new rules include provisions on:
a right to be forgotten,
“clear and affirmative consent” to the processing of private data by the person concerned,
a right to transfer your data to another service provider,
the right to know when your data has been hacked,
ensuring that privacy policies are explained in clear and understandable language, and
stronger enforcement and fines up to 4% of firms' total worldwide annual turnover, as a deterrent to breaking the rules.
Therefore a need to re-evaluate how data is being protected regardless of a personal data due to EU MEPs passing this to law wonder how this will be seen in the rest of world.

Regards

R
--
Richard Padilla MSc