Skip to main content

Data Protection Laws

Return to GDPR page

Current European Union Data Protection Legislation

  • GDPR
    Regulation (EU) 2016/679 of the European Parliament and of the council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
  • ePrivacy
    Directive Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on Privacy and Electronic Communications)
  • Directive on the Processing of Personal Data by Competent Authorities
    Directive (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA
  • Passenger Name Record Directive
    Directive (EU) 2016/681 of the European Parliament and of the Council of 27 April 2016 on the use of passenger name record (PNR) data for the prevention, detection, investigation and prosecution of terrorist offences and serious crime

Proposed European Union Data Protection Legislation


ePrivacy Regulation (European Parliament proposal) *

Published on 4th May 2018
Proposal for a Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal data in electronic communications and repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications)

*Although these draft texts have been published, they do not form part of the European Union Acquis Communautaire yet since they are still subject to amendments.

Stay updated with our latest insights

Digital Inclusion
Telecoms, Media & Technology

Digital Inclusion: The European Accessibility Act and the Web Accessibility Directive

As the digital economy continues to expand, businesses must ensure that their products and services are accessible to everyone — including persons with disabilities. Two key EU laws are shaping accessibility obligations in Malta: the European Accessibility Act and the Web Accessibility Directive. These legal frameworks place important compliance responsibilities on entities with an online presence, particularly those operating in retail, e-commerce, consumer electronics, financial services, and other industries that rely heavily on websites and mobile applications to serve customers. What is the European Accessibility Act? The European Accessibility Act (Directive (EU) 2019/882) will come into force in Malta on…
Chain
Telecoms, Media & Technology

Malta’s Transposition of the NIS 2 Directive: S.L. 460.41

Following Malta’s Draft Order transposing the EU NIS 2 Directive, which closed for public consultation on 7 October 2024, as an EU Member State, Malta was obliged to transpose EU Directive 2022/2555 (‘NIS 2’) by 17 October 2024. The transposition was finally implemented on 8 April 2025 through Legal Notice 71 of 2025 which creates the Measures for a High Common Level of Cybersecurity across the European Union (Malta) Order, 2025 as Subsidiary Legislation 460.41 (S.L. 460.41). It should however be noted that at time of writing, S.L. 460.41 is not yet in force, though it is expected to come…
European Blockchain Sandbox
Telecoms, Media & Technology

European Blockchain Sandbox 3rd Cohort & Best Practices Webinar

The selection process for the third and final cohort of the European Blockchain Sandbox has been completed and the final twenty selected use cases have now been announced. Moreover, the European Blockchain Sandbox will soon be publishing the second cohort’s Best Practices Report which shall contain an overview of the regulatory best practices identified. The Report will be launched during a public webinar to be held on the 29th April 2025 at 14:00 CET, wherein the public is invited to ask any questions they may have regarding the Report. In conjunction, the award for the Most Innovative Regulator for the…
Rejected!
DORA
European Commission Rejects Draft Regulatory Technical Standards on ICT Subcontracting
EU AI Act
Telecoms, Media & Technology
EU AI Act: Banned AI Practices from 2 February 2025
Triangular Patterns
DORA
MFSA Issues Two Circulars on ICT Risk

Join our mailing list

Get in touch by sending us a message or by contacting us directly.


How can we help you?