The European Union data protection regulations, a benchmark two years on

It has been two years, during which the legislation has evolved and the supervisory authorities and the European Data Protection Board (hereafter EDPB) have issued guidelines and criteria to determine the application of many provisions that were left undefined in the regulations, which have required continuous revision and adaptation from the Group’s companies in line with these new provisions.

We are all aware of the increasing impact of privacy on our lives, and this is precisely what the regulator is echoing, making its level of activity and monitoring ever greater.

In addition, over the past two years, we have seen GDPR practically becoming an international standard, and many national laws are being adopted on the basis of this regulation, even though they are not directly subject to it. In countries as diverse as Chile and Japan, Brazil and South Korea, Argentina and Kenya, we are seeing new privacy laws emerging, based on strong guarantees, enforceable individual rights, and independent supervisory authorities.

For MAPFRE, ensuring the privacy and protection of data has always been, and continues to be, a priority. This is not only as a legal obligation; it is first and foremost an ethical issue and a fair exchange for the trust placed in us by our clients, providers, collaborators, employees, and other groups when they give us their data. This is only possible with the collaboration of everyone in the Organization, since privacy and data protection are everybody’s responsibility.