Skip to main content

Data Protection Laws

Return to GDPR page

Current European Union Data Protection Legislation

  • GDPR
    Regulation (EU) 2016/679 of the European Parliament and of the council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
  • ePrivacy
    Directive Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on Privacy and Electronic Communications)
  • Directive on the Processing of Personal Data by Competent Authorities
    Directive (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA
  • Passenger Name Record Directive
    Directive (EU) 2016/681 of the European Parliament and of the Council of 27 April 2016 on the use of passenger name record (PNR) data for the prevention, detection, investigation and prosecution of terrorist offences and serious crime

Current Local Data Protection Legislation

Proposed European Union Data Protection Legislation


ePrivacy Regulation (European Parliament proposal) *

Published on 4th May 2018
Proposal for a Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal data in electronic communications and repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications)

*Although these draft texts have been published, they do not form part of the European Union Acquis Communautaire yet since they are still subject to amendments.

Stay updated with our latest insights

Explore Insights
DSA Update: Maltese Implementing Law, Including New Registration Obligations, Now in Effect
Telecoms, Media & Technology

DSA Update: Maltese Implementing Law, Including New Registration Obligations, Now in Effect

The EU Digital Services Act (Regulation (EU) 2022/2065) (the “DSA”) has been implemented into Maltese law by virtue of the Digital Services (Designation and Enforcement) Order, Subsidiary Legislation 418.05, (the “Order”) which came into force on 12th March 2024. The Order designates the Malta Communications Authority (“MCA”) as the Digital Services Coordinator for Malta. This role, created by the DSA, tasks the MCA with ensuring that intermediary service providers established in Malta comply with their obligations under the DSA. This entails handling any complaints received by users and acting as the point of contact between service providers and users. Furthermore,…
Telecoms, Media & Technology

Full Implementation of Digital Services Act Imminent

The EU Digital Services Act (‘DSA’), formally titled as the ‘Regulation (EU) 2022/2065 of the European Parliament and of the Council of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC’ is intended to overhaul the outdated framework that previously regulated online intermediaries such as auction sites, social networks, ISPs and platforms which allow for the sharing of content over the Internet. The DSA contains sets of obligations which increase in severity in proportion to the size, role and impact of the online intermediary. Therefore, so-called ‘very large online platforms’ (‘VLOPs’) and ‘very large online…
Mamo TCV Advocates: New Data Protection Law Relating to Third Party rights
Data Protection and Privacy

New Law enables Third Parties to a Contract to benefit from Data Protection Rights

A recently published Legal Notice (204 of 2023) has created the “Enforcement of the Rights of Data Subjects in relation to Transfers of Personal Data to a Third Country or an International Organisation Regulations” (Subsidiary Legislation 586.12). This marks the first time that an entirely new subsidiary law has been enacted under the auspices of the Data Protection Act (Chapter 586 of the laws of Malta), since June 2018, shortly after the coming into force of the GDPR. S.L. 586.12 resolves a long-standing lacuna in the field of Maltese data protection law. The scope and purpose of this new law…
The European Data Protection Board has issued its Opinion on the European Commission’s Draft Adequacy Decision which constitutes a new framework for transatlantic transfers of personal data.
Data Protection and Privacy
The EDPB Issues Opinion on the New EU-U.S. Data Privacy Framework
Digital Services Act Deadline: By 17 February 2023, Online Platform Providers were Required to Publish Average Monthly Active Recipients
Telecoms, Media & Technology
Digital Services Act Deadline for Online Platform Providers
U.S. President Joe Biden has recently signed an Executive Order implementing the commitments made by the U.S. in the agreement reached with the EU concerning a new EU-U.S. data privacy framework.
Data Protection and Privacy
The New EU-US Personal Data Transfer Framework

Join our mailing list

Get in touch by sending us a message or by contacting us directly.


How can we help you?

Contact us