One common criticism of the GDPR is that its enforcement process is not sufficiently effective. Critics argue that routing cross-border decisions through a controller’s “main establishment” has led to delays and created an enforcement gap.
But what’s the alternative? Aren’t most cross-border decisions actually resolved effectively? This panel will explore the history of the GDPR’s one-stop-shop mechanism and consider how it might be improved.