Overview
The General Data Protection Regulation (hereafter ‘the GDPR’) is the result of eight years of preparation, drafting and inter-institutional negotiations, and entered into application on 25 May 2018 following a two-year transition period (May 2016 – May 2018). Article 97 of the GDPR requires the Commission to report on the evaluation and review of the Regulation, starting with a first report after two years of application and every four years thereafter.
The evaluation is also part of multi-faceted approach that the Commission already followed before the GDPR entered into application and has continued to actively pursue since then.
As part of this approach, the Commission engaged into on-going bilateral dialogues with Member States on the compliance of national legislation with the GDPR, actively contributed to the work of the European Data Protection Board (hereafter ‘the Board’) by providing its experience and expertise, supported data protection authorities and maintained close contacts with a wide range of stakeholders on the practical application of the Regulation.