Go back to the Europarl portal

Choisissez la langue de votre document :

  • bg - български
  • es - español
  • cs - čeština
  • da - dansk
  • de - Deutsch
  • et - eesti keel
  • el - ελληνικά
  • en - English (Selected)
  • fr - français
  • ga - Gaeilge
  • hr - hrvatski
  • it - italiano
  • lv - latviešu valoda
  • lt - lietuvių kalba
  • hu - magyar
  • mt - Malti
  • nl - Nederlands
  • pl - polski
  • pt - português
  • ro - română
  • sk - slovenčina
  • sl - slovenščina
  • fi - suomi
  • sv - svenska
Parliamentary questions
PDF 25kWORD 21k
17 September 2019
Answer given by Ms Jourová on behalf of the European Commission
Question reference: P-002323/2019

The General Data Protection Regulation (GDPR)(1) strengthens control of individuals over the processing of personal data concerning them. The GDPR reinforces transparency requirements requiring data subjects to be informed about, for example, what data are collected, by whom and for which purpose. The information must be provided in a concise, transparent, intelligible and easily accessible form, using clear and plain language.

The GDPR sets specific rules to ensure that the protection of personal data is not undermined when it leaves the EU. In particular, the GDPR provides for a number of conditions and mechanisms to enable the lawful transfers of personal data to third countries. The GDPR also directly applies to companies established outside of the EU, when they target individuals in the Union. In this case, these companies have the additional obligation to appoint a representative in the Union.

Furthermore, under the new rules introduced by the directive on better enforcement and modernisation of EU consumer protection rules(2) that the Commission had proposed as part of a New Deal for Consumers(3), the right to receive pre-contractual information, including on the main characteristics of the service, and the 14-day right of withdrawal will be applicable also to ‘free’ digital service contracts, meaning contracts where the consumer provides personal data to the trader.

(1)Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
(2)Directive of the European Parliament and of the Council amending Council Directive 93/13/EEC of 5 April 1993, Directive 98/6/EC of the European Parliament and of the Council, Directive 2005/29/EC of the European Parliament and of the Council and Directive 2011/83/EU of the European Parliament and of the Council as regards better enforcement and modernisation of EU consumer protection; the text of the directive as provisionally agreed in April 2019 between the European Parliament and the Council is available here: http://www.europarl.europa.eu/doceo/document/TA-8-2019-0399_EN.html?redirect. Formal adoption is planned to take place in autumn 2019.

Last updated: 18 September 2019Legal notice