A month after the enforcement date of the General Data Protection Regulation – a law that businesses had two years to prepare for – many websites are still locking out users in the European Union as a method of compliance.
[...] Another retailer that failed to get its house in order is posh homeware store Pottery Barn, whose notice says that "due to technical challenges caused by new regulations in Europe" it can't accept orders from the EU.
"The pace of global regulations is hard to predict," the shop complains about the legislation, which was adopted on 14 April 2016. "But we have the ultimate goal of being able to offer our products everywhere."
(Score: 2) by quietus on Tuesday June 26 2018, @06:56PM
The Commission merely draws up proposals for EU legislation. The Council of Ministers (the Council of the European Union) as well as the European Parliament have to vote on those proposals before they can come into 'law'. Both bodies consist of elected representatives.
In practice it's a bit more complicated. The initiative for EU legislation typically originates in the Council of the European Union, which gives the order to the Commission to (a) provide technical expertise and/or (b) translate their initiative into legislative proposal. The Parliament then typically modifies this legislative proposal through amendments, in negotiation with the Commission.
The Commission itself can (and does) provide proposals of her own -- the recent GDPR legislation [iapp.org] is a case in point, for instance -- but these still have to go through the same back-and-forth with both the Council and the Parliament (which, again, consists of directly elected representatives).
The linky gives you a bit of an impression of this negotiating process (start at 25 January 2012).