Europe’s enforcement paralysis
This report uncovers a paralysis at the heart of the GDPR. Data protection authorities (DPAs) are unable to act against Big Tech in major GDPR cases. The recent WhatsApp decision notwithstanding, the Irish Data Protection Commission (DPC) has failed to send draft decisions to its European colleagues on a very large number of major EU-wide cases.
This makes it impossible to police how Google, Facebook, Apple, and Microsoft, use people’s data across Europe. Ireland is the GDPR’s worst bottleneck. But there are other problems, too.