A new body of European data protection authorities could have the power to adopt legally binding decisions in cross-border disputes over a company's misuse of personal data, according to a draft document seen by Reuters.
Under a mechanism originally proposed in reforms of Europe’s data protection laws, businesses operating across the 28-nation European Union would have to deal only with the data protection authority in the country where they are headquartered - even if alleged mishandling of data affects citizens in another country.