The UK Government revealed plans to bring in new data protection legislation in the Queen's Speech but the details were patchy at best, while the UK Information Commissioner's Office has been accused of being slow in publishing its own GDPR guidance.
In Germany, however, it appears there is no such confusion. The new Federal Data Protection Act (FDPA) clarifies the circumstances in which businesses will be obliged to appoint a data protection officer (DPO), as well as conditions for processing employee data.
In addition, the FDPA addresses rules on the processing of personal data for research and statistical purposes, and the rights of citizens.
It will also introduce a new criminal offence of knowingly transferring to a third party, or making publically available, personal data for business purposes about a large number of people that is not already publically available.
The main provisions of the FDPA, which was passed in May and was published in law in Germany this month, will apply from May 25 2018, the same date that the GDPR will apply from.