|
|
|
|
|
|
by mandelbulb
2962 days ago
|
|
|
Overall I'm content with the GDPR as it is a long needed corrective action for the path we've been treading in the West as a whole. One requirement, imho, is quite ridiculous, however. That is the need for entities which need to abide by the GDPR but do not have a presence in the EU to assign a representative in the EU. This part definitely needs some relaxation. Just complying with the regulation ought to be enough as the first step, especially for start-ups. |
|
|
It is enough; most start-ups won't need a representative.
That requirement only applies to large-scale processing of special categories ( i.e. sensitive ) of data or that relating to criminal convictions and offences.
Article 27 applies: http://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELE...
It's basically to prevent big data processors from claiming 'we don't have an EU presence so you can't fine us'.