Article 99 GDPR: Difference between revisions

From GDPRhub
mNo edit summary
 
(2 intermediate revisions by the same user not shown)
Line 196: Line 196:
== Commentary ==
== Commentary ==


Article 99(1) stipulates that the GDPR will enter into force on the 20th day after its publication in the Official Journal of the EU (following the basic rule provided for in Article 297(1) TFEU). As it was published in the Official Gazette on 4 May 2016, the Regulation entered into force on May 24, 2016. Article 99(2) states that the GDPR shall apply from 25 May 2018.25.5.2018. This time gap between the GDPR’s entry into force (24 May 2016) and its full applicability created a two-year transition period, during which both controllers and supervisory authorities had the opportunity to adapt to the new rules, and Member States had time to align their national laws to the new requirements.<ref>''Kühling, Raab'', in Kühling, Buchner, DS-GVO BDSG, Article 99 GDPR, margin number 4 (Beck 2020, 3rd edition).</ref> However, other more substantial effects occurred in the transition period. For churches and religious associations or communities, for example, rules issued up to this point could continue to apply, provided they were adapted to the requirements of the GDPR (See Article 91GDPR in this Commentary). In addition, the Commission was able to issue delegated acts in accordance with Article 92 GDPR during this period. Furthermore, the Regulation established itself as the benchmark for assessing international transfer agreements concluded after the 24 May 2016(Article 96 GDPR).
Article 99 GDPR sets out the dates of the Regulation's entry into force and application. The first paragraph of the provision notes that the GDPR will enter into force on the 20th day after its publication in the Official Journal of the EU (following the basic rule provided for in Article 297(1) Treaty on the Functioning of the European Union ("''TFEU''")). As it was published in the Official Gazette on 4 May 2016, the Regulation entered into force on 24&nbsp;May&nbsp;2016.
 
The second paragraph establishes that the Regulation shall apply from 25 May 2018. The Regulation's date of application was deliberately made to be later than its entry into force, for the purpose of creating a two-year transition period, which allowed for Member States to adapt their national laws to the new requirements, as well as allowing for other addressees of the Regulation (such as controllers and processors) to bring their operations into compliance with the GDPR.<ref>''Kühling, Raab'', in Kühling, Buchner, DS-GVO BDSG, Article 99 GDPR, margin number 4 (Beck 2020, 3rd edition).</ref>  
 
Notably though, for churches and religious associations or communities, rules issued up to 24&nbsp;May&nbsp;2016 could continue to apply, provided they were adapted to the requirements of the GDPR (for greater analysis on this point, see [https://gdprhub.eu/index.php?title=Article_91_GDPR Article 91 GDPR]). In addition, the Commission was able to issue delegated acts in accordance with Article 92 GDPR during this period.  


== Decisions ==
== Decisions ==

Latest revision as of 08:25, 19 October 2023

Article 99 - Entry into force and application
Gdpricon.png
Chapter 10: Delegated and implementing acts

Legal Text


Article 99 - Entry into force and application

1. This Regulation shall enter into force on the twentieth day following that of its publication in the Official Journal of the European Union.

2. It shall apply from 25 May 2018.

Relevant Recitals

There is no relevant recital for Article 99 GDPR.

Commentary

Article 99 GDPR sets out the dates of the Regulation's entry into force and application. The first paragraph of the provision notes that the GDPR will enter into force on the 20th day after its publication in the Official Journal of the EU (following the basic rule provided for in Article 297(1) Treaty on the Functioning of the European Union ("TFEU")). As it was published in the Official Gazette on 4 May 2016, the Regulation entered into force on 24 May 2016.

The second paragraph establishes that the Regulation shall apply from 25 May 2018. The Regulation's date of application was deliberately made to be later than its entry into force, for the purpose of creating a two-year transition period, which allowed for Member States to adapt their national laws to the new requirements, as well as allowing for other addressees of the Regulation (such as controllers and processors) to bring their operations into compliance with the GDPR.[1]

Notably though, for churches and religious associations or communities, rules issued up to 24 May 2016 could continue to apply, provided they were adapted to the requirements of the GDPR (for greater analysis on this point, see Article 91 GDPR). In addition, the Commission was able to issue delegated acts in accordance with Article 92 GDPR during this period.

Decisions

→ You can find all related decisions in Category:Article 99 GDPR

References

  1. Kühling, Raab, in Kühling, Buchner, DS-GVO BDSG, Article 99 GDPR, margin number 4 (Beck 2020, 3rd edition).