Overview
This report is the first one on the evaluation and review of the General Data Protection Regulation (hereafter ‘GDPR’), in particular on the application and functioning of the rules on the transfer of personal data to third countries and international organisations and of the rules on cooperation and consistency, pursuant to Article 97 GDPR.
The GDPR, which applies since 25 May 2018, is at the heart of the EU framework guaranteeing the fundamental right to data protection, as enshrined in the Charter of Fundamental Rights of the European Union (Article 8) and in the Treaties (Article 16 of the Treaty on the Functioning of the European Union, ‘TFEU’).
The GDPR strengthened data protection safeguards, provides individuals with additional and stronger rights, increased transparency, and ensures that all those that handle personal data under its scope of application are more accountable and responsible.
It equips the independent data protection authorities with stronger and harmonised enforcement powers and sets up a new governance system.
It also creates a level playing field for all companies operating in the EU market, regardless of where they are established, and it ensures the free flow of data within the EU, thereby strengthening the internal market.
