The system would violate the basic principles of the GDPR
The proposal to create a centralised database of phone numbers and consents for marketing calls raises questions about GDPR compliance. The GDPR protects the personal data of individuals in the EU and sets strict rules for its processing, including limiting its purpose and minimising the data processed. However, this new database would contain the contact details of millions of individuals, without a clear definition of who will have access to them, how they will be secured and how long they will be stored.
Insufficient protection and regulation
The proposed system lacks transparent rules and boundaries for the use and protection of data. The proposal does not specify what measures will be put in place to protect data from misuse or unauthorised access. This poses a risk in particular for the individuals whose data will be in the database. In addition, the Chamber of Commerce, as the potential administrator of the database, would have a financial incentive to disseminate the data to companies, thus creating a potential conflict of interest.
Are you solving a similar problem?
Solutions Tailored for You
Our team of experienced attorneys will help you solve any legal issue. Within 24 hours we’ll evaluate your situation and suggest a step-by-step solution, including all costs. The price for this proposal is only CZK 690, and this is refunded to you when you order service from us.
I Need help
- When you order, you know what you will get and how much it will cost.
- We handle everything online or in person at one of our 5 offices.
- We handle 8 out of 10 requests within 2 working days.
- We have specialists for every field of law.
“The person conducting marketing is entitled to ask the Chamber of Commerce to verify for specific telephone numbers whether the list of marketing preferences for these numbers includes consent to be contacted for the purpose of marketing for a specific range of goods and services; the cost of this verification is to be paid by the person conducting marketing,” the proposal reads.
Entrepreneurs would be liable for the accuracy of the data
Under the proposal, businesses would presumably have to pay for entering and updating their customers’ consents, which represents an additional cost. In addition, they would be responsible for the accuracy of the data, which would impose an increased administrative and legal burden on them. The proposal also raises questions about whether this system is really necessary and efficient for businesses or whether it is more of a financial benefit for the Chamber of Commerce.
Is it really about simplification?
One of the reasons given by the authors of the proposal is the lack of a system where any individual could simply withdraw or change their consent to be contacted for marketing purposes. The question remains, however, whether this system would really be accessible to all citizens and whether it would really lead to an improvement in the situation. Experience has shown that the management of such consents is often complicated and without clear rules , a single system could become an additional administrative burden rather than a useful privacy tool.
From a legal point of view, therefore, the proposal appears inappropriate and runs counter to the basic principles of data protection. The Chamber of Commerce would become the controller of a sensitive database of personal data, a step which could lead to insufficient protection of citizens’ data and increase the risks of misuse of this data for marketing purposes. If approved, strict oversight of compliance with the GDPR and the establishment of clear rules for data handling would be necessary. Without these, the system may become an easy target for commercial misuse of personal data and breaches of the right to privacy.