Dutch Parliament adopts data breach notification obligation and increases fines

The Dutch Senate passed a new law adding a new provision article 34.a to the Dutch data protection law Wet Bescherming Persoonsgegevens, which introduces an obligation to notify the Dutch DPA ‘without delay’ in case of a data breach and the related data subjects, broadens the powers of the Dutch DPA with significantly higher fines for a wide range of privacy violations, sets out the exemption conditions for data breach duty on taking active measures to make the such data incomprehensible and inaccessible, and changes the name of Dutch DPA to Autoriteit Persoonsgegevens (Personal Data Authority).

Country: Netherlands

Domains: Privacy

Stakeholder: Government

Tags: fines, notification, new law, Dutch Data Protection Authority, data breach, data protection, privacy, Netherlands

Posted on Tuesday 26 May 2015

Previous item: « Ongoing debate on governmental plans for new data retention law Next item: CNIL monitoring program 2015 »