According to the new proposed rules and regulation they can be penalised by the fines of up to €100 million (around £85 million) or 5 percent of their turnover, whichever is the larger figure.
“This evening’s vote is a breakthrough for data protection rules in Europe, ensuring that they are up to the challenges of the digital age. This legislation introduces overarching EU rules on data protection, replacing the current patchwork of national laws.”In between the users and the firm contacts, if third party (e.g. other firm, Government, or organisation) ask to disclosed the personal information that are processed in EU, then the firm have to get the authorisation from the National Data protection Authority before transferring the data. Additionally, firm would also have to inform the person of the such request.