The Hungarian Parliament amended the Hungarian Data Protection Act in June 2018 in order to ensure the consistency of the Hungarian legislation with the provisions of the GDPR.
According to the Working Party 29 (WP29), i.e. the group uniting the European data protection authorities, the practice of harvesting personal data from social media for economic or political reasons has become much wider spread recently.
Attila Péterfalvi, the president of the Hungarian Data Protection Authority, on 19 April 2018 made some relevant comments regarding the GDPR during an interview with a Hungarian online newspaper “Jogifórum”. He highlighted that one of the main novelties of the GDPR is the principle of accountability. The data controllers must be able to demonstrate their GDPR compliance in a documented way. This does not mean, however, that the burden of proof is on them in case of a NAIH procedure.
The Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection Regulation, „GDPR”) will be directly applicable as of 25 May 2018 in all organizations controlling personal data. The Hungarian National Authority for Data Protection and Freedom of Information (“NAIH” / “Hungarian Authority”) receives thousands of questions on the applicability of the GDPR. For this reason, the NAIH has published answers to some of these questions.