AFEP notes that data protection authorities are not implementing the risk-based approach on which the GDPR is based.
AFEP member companies are therefore calling for a return to the origins of the GDPR, which requires the protection of personal data to be weighed against all other fundamental rights, in particular the freedom of enterprise, in application of the principle of proportionality.
Refocusing the assessment of data protection authorities on a risk-based approach is a priority to free up businesses and encourage the development of new technologies in Europe.
Lastly, AFEP member companies expect greater transparency and the implementation of an in-depth dialogue with data protection authorities to achieve a protection regime that is in harmony with everyday business life and companies’ economic models.