As of 1 January 2016, the Dutch Data Protection Act (‘the Act’) has changed considerably. Most importantly, the revised Act contains a security breach notification obligation, expands the power of the Dutch data protection authority (‘the Dutch DPA’) to impose fines for violation of the Act, and renames the Authority. This report gives some background on the changes and sets out the new provisions in more detail.
|Journal||European Data Protection Law Review|
|Publication status||Published - 2016|