As Europe rethinks GDPR, Israeli tech companies double down on trust

Whether it’s a biometric scan shared without consent or a retailer’s app accessing contact lists, the need for data protection frameworks, like GDPR, is essential. 

However, while real-world information misuse underscores why data protection laws exist, Brussels is starting to debate whether their legislation is too restrictive, constraining innovation, burdening SMBs and restraining the EU from keeping pace with the U.S. and China. 

At the same time, Israel is preparing to tighten its own Privacy Protection Law (IPPL) to match the EU GDPR standard.

On the surface, this divergence may look like a regulatory contradiction, but in banking and fintech, where consumer trust is fragile and global compliance is non-negotiable, Israel’s decisiveness may offer a strategic edge. 

I spoke to Yaacov Martin, CEO of global fintech company Jifiti, who explained how when the rules are in flux, the companies that already play by the highest standards don’t just keep up; they surge ahead. 

Since Israel is tightening its IPPL to align with the EU’s GDPR—while the EU is considering relaxing its own—how do you think these changes might affect Israel’s approach to data protection?

Although the IPPL amendments aren’t due to come into practice until August 2025, Israeli fintechs have actually been living by the GDPR rules for years. Israel’s tech ecosystem exports software, infrastructure, and fintech platforms far more than it serves its domestic market. This is underscored by the fact that 10% of the Israeli workforce is employed in the tech sector, which contributes 18% of the country’s GDP. 

Therefore, Israeli fintechs working with global banks across Europe and the U.S. have always needed to comply with international privacy standards, operating in line with GDPR and similar frameworks long before Israel’s regional policies followed suit. While Israeli fintech companies have focused on meeting global privacy standards abroad, providing innovative technologies to financial institutions in other markets, domestically, the banking sector has maintained a cautious approach, being slow to adopt new technologies. For instance, APIs came later as local banks were cautious about consumer data sharing and hesitant to leap into open banking. While that conservatism may frustrate some innovators, it’s also earned the trust of a skeptical public.

This cautious trust is especially critical given evolving consumer expectations: the Qualtrics 2025 Global Consumer Trends Report found 61% of consumers said their first priority when interacting with companies was trustworthy information protection, stating it’s more important than convenience and speed. And in a post-Cambridge Analytica, AI-infused world, you can’t blame them.

What do you see as the strategic advantage of Israel committing to tighter IPPL standards now? Could this regulatory divergence actually become a competitive edge?

As Brussels debates whether GDPR has overreached, Israel is about to sign on in full. The IPPL hasn’t been updated significantly since 1996 and one of the new updates redefines ‘personal information’ to include biometric data, genetic data, location and traffic data, and criminal records. Although Israel’s decision to adopt GDPR-like standards while Europe reconsiders parts of its own might look like a mistake on paper, this regulatory mismatch could become a strategic differentiator.

While the EU considers loosening elements of GDPR to promote growth, it’s also entering politically volatile territory. Ellen O’Regan of Politico reports that “The danger in the EU’s revising the law is that it could start a lobbying war between Big Tech companies and privacy advocates, two of the strongest public affairs forces in Brussels.” And should this be the case, there could be years of potential uncertainty, fragmentation, and legal limbo.

In an era when trust and clarity are as valuable as speed and scale, Israel’s decisiveness could prove savvy. While the EU revisits the scope and enforcement of GDPR, it continues to lead in regulatory standardization through frameworks like MiCA and DORA – demonstrating the value of alignment across borders. A growing global consensus is emerging around the need for consistent data privacy legislation, and consumers are making it clear: fragmented regulatory frameworks are no longer acceptable. Cisco’s 2024 Consumer Privacy Survey found that 77% of consumers worldwide support the idea of unified privacy laws across countries and regions.

Israel’s move to adopt GDPR-style standards at a moment when the EU is re-evaluating its own framework signals a commitment to regulatory clarity. In an increasingly borderless digital economy, Israel’s alignment with foundational data principles doesn’t just reduce friction for international business; it signals that Israel is serious about compliance frameworks and protecting data, offering confidence and continuity.

In a world where compliance is being “simplified,” what core data protection principles must Israeli fintechs double down on to preserve consumer trust long-term?

As fintechs continue to disrupt legacy banking models, their success increasingly hinges not only on innovation but also on their ability to instill long-term confidence in their customers.

For instance, one global leader, Wise, has shown how long-term confidence is built: transparent fee structure, real-time transaction visibility, industry-standard encryption, and responsive customer support. Its high Trustpilot score of 4.3 is a direct reflection of these confidence-building practices.

In Israel, where forthcoming privacy laws will further raise the bar on consumer data protection, trust will no longer simply satisfy legal and ethical baselines; it will become a critical market differentiator.

Additionally, when compliance rules are shifting in other countries and economies, doubling down on trust becomes a smart edge. While banks have a long-established reputation as stewards of personal data – built over decades or even centuries – fintechs are challenged to not only innovate but also earn and sustain that critical credibility with consumers.

Strengthening trust through transparent practices, proactive breach notifications, and user-friendly data privacy controls is a smart move for any company racing to keep up with shifting rules. When everyone ticks the same compliance boxes, the fintech that demonstrates genuine, ongoing commitment to customer data protection and security will be the first choice.

Furthermore, Israel’s commitment to stringent data protection is particularly significant in the current climate. The 2024 Israeli Democracy Index revealed record lows in confidence toward key state institutions. In this environment, fintech companies have the opportunity to differentiate themselves by embedding robust data governance and transparency into their DNA. When customers are wary of opaque platforms and a government is strengthening its stance on privacy, coming to market with ‘trust in every layer’ could become a fintech’s most potent competitive edge. 

As the EU reconsiders the very framework it helped pioneer, Israel is reinforcing its commitment to transparency, stability, and consumer confidence. Rather than being caught in a tug-of-war between innovation and oversight, Israel is choosing both – strengthening its global competitiveness by offering what consumers increasingly demand: clarity, compliance, and trust.