The European Commission says the GDPR doesn't apply to them

We will use your email address only for sending you newsletters. Please see our Privacy Notice for details of your data protection rights.

Sign up fornow and never miss the top politics stories again.

This bombshell revelation follows an “embarrassing” leak of personal details of hundreds of citizens by the European Commission.

This leak would normally constitute a breach of the General Data Protection Regulation (GDPR) if other organisations had done it themselves.

However, a spokesman the commission said, based on “legal reasons”, European institutions are separate from the GDPR.

Instead, officials will follow a new law similar to the GDPR but this does not come into effect until autumn.