The European Commission’s Digital Omnibus proposal, unveiled in late 2025, trims safeguards in the GDPR and the AI Act. Big Tech firms—Google, Microsoft, Meta—pushed the changes, backed by the Trump administration and European far‑right groups. The draft promises a more competitive EU but loosens data protection.

A key shift targets the definition of personal data. The Commission would exempt pseudonymised records if a company claims it cannot re‑identify individuals, a stance mirrored by DigitalEurope and Microsoft Germany. This subjective rule lets firms sidestep GDPR when data can be sold or reused for tracking.

The proposal also trims the right to data access. If a request is deemed ‘manifestly unfounded’ or ‘excessive’, companies could charge fees or refuse service. NOYB reports that 90 % of access requests go unanswered, and Uber drivers have fought years to obtain their own records.

These changes signal a shift toward deregulation that favors large US tech giants, undermining the EU’s role as a global privacy standard. Industry watchers will monitor how Brussels reacts to backlash from civil‑society groups and whether Washington’s influence persists. The outcome will shape data‑driven innovation across Europe.