In a letter addressed to certain members of the European Parliament, European Commissioner for Justice Reynders refuted some of the criticism that has been raised against the Irish Data Protection Commissioner. This blog entry provides highlights on the Commissioner’s response.
Continue Reading European Commission Defends Irish Data Protection Commissioner
European Data Protection Board
The EDPB Issues Guidelines Clarifying What Constitutes an International Data Transfer Under the GDPR
Posted on
Posted in European Union, International
On November 19, 2021, the European Data Protection Board published its draft Guidelines 05/2021 on the interplay between the application of Article 3 of the GDPR, which sets forth the GDPR’s territorial scope, and the GDPR’s provisions on international data transfers.
Continue Reading The EDPB Issues Guidelines Clarifying What Constitutes an International Data Transfer Under the GDPR
EDPB Releases Statement on the Digital Services Package and Data Strategy; Calls for Ban on Targeted Ads
Posted on
On November 18, 2021, the European Data Protection Board released a statement on the Digital Services Package and Data Strategy. The Digital Services Package and Data Strategy is composed of several legislative proposals that aim to facilitate the further use and sharing of personal data between more public and private parties; support the use of specific technologies, such as Big Data and artificial intelligence; and regulate online platforms and gatekeepers.
Continue Reading EDPB Releases Statement on the Digital Services Package and Data Strategy; Calls for Ban on Targeted Ads
Belgian DPA Expected to Rule that IAB Europe’s Cookie Consent Framework Violates the GDPR
Posted on
On November 5, 2021, IAB Europe announced that, in the coming weeks, the Belgian Data Protection Authority plans to share with other data protection authorities a draft ruling on the IAB EU Transparency & Consent Framework. …
Continue Reading Belgian DPA Expected to Rule that IAB Europe’s Cookie Consent Framework Violates the GDPR
EDPB Adopts Guidelines on Restrictions on Data Subject Rights Under GDPR
Posted on
Posted in European Union, International
The European Data Protection Board recently adopted Guidelines 10/2020 on restrictions under Article 23 of the EU General Data Protection Regulation following public consultation. This blog entry provides highlights on the Guidelines. …
Continue Reading EDPB Adopts Guidelines on Restrictions on Data Subject Rights Under GDPR
CIPL Publishes White Paper on GDPR Enforcement Cooperation and the One-Stop-Shop
Posted on
On September 27, 2021, the Centre for Information Policy Leadership at Hunton Andrews Kurth published a white paper on the “GDPR Enforcement Cooperation and the One-Stop-Shop – Learning from the First Three Years.” …
Continue Reading CIPL Publishes White Paper on GDPR Enforcement Cooperation and the One-Stop-Shop
EDPB Creates Cookie Banner Taskforce
Posted on
On September 27, 2021, the European Data Protection Board announced that it established a taskforce to coordinate the response to complaints filed with several EU data protection authorities by the non-governmental organization None of Your Business in relation to cookie banners.
Continue Reading EDPB Creates Cookie Banner Taskforce
EDPB Adopts Opinion on Draft South Korea Adequacy Decision
Posted on
Posted in European Union, International
On September 27, 2021, the European Data Protection Board announced that it had adopted an Opinion on the European Commission’s draft adequacy decision for the Republic of Korea. In the Opinion, the EDPB concluded that there are key areas of alignment between the EU and Korean data protection frameworks.
Continue Reading EDPB Adopts Opinion on Draft South Korea Adequacy Decision
Belgian Council of State Considers Encryption a Sufficient Measure for U.S. Data Transfers
Posted on
Posted in European Union, International
The Belgian Council of State recently confirmed a decision of the regional Flemish Authorities to contract with an EU branch of a U.S. company using Amazon Web Services, stating that the use of U.S. cloud services in itself does not infringe on the GDPR.
Continue Reading Belgian Council of State Considers Encryption a Sufficient Measure for U.S. Data Transfers
Irish Commissioner Fines WhatsApp €225 Million For GDPR Violations
Posted on
On September 2, 2021, Ireland’s Data Protection Commission announced a fine of €225 million ($266 million) against WhatsApp Ireland Ltd for failure to meet the transparency requirements of Articles 12-14 of the EU General Data Protection Regulation.
Continue Reading Irish Commissioner Fines WhatsApp €225 Million For GDPR Violations