Tag Archives for " EDPB "

‘Legitimate interest’ may permit processing of ‘silent party data’ under PSD2

Businesses in the payment services market do not necessarily need the consent of ‘silent parties’ to process their personal data when providing payment initiation or account information services to their customers, the European Data Protection Board (EDPB) has said.

Source: ‘Legitimate interest’ may permit processing of ‘silent party data’ under PSD2

European Data Protection Board issues update after second plenary meeting

Newly minted European Data Protection Board provided an update after it held its second plenary meeting July 4 and 5 about a slate of pressing data protection topics. Top of mind for the EDPB is the state of play of its consistency and cooperation mechanisms now that the General Data Protection Regulation (GDPR) is in effect. EDPB discussed their experiences so far with the one-stop-shop mechanism, the performance of the Internal Market Information System (an IT platform that facilitates exchanges on cross-border issues) as well as compliance questions the EDPB has received since the GDPR’s enactment.

Source: European Data Protection Board issues update after second plenary meeting

DPAs: Full steam ahead at the European Data Protection Board

The GDPR’s cooperation and consistency mechanism will now be put to a test at the European Data Protection Board (EDPB) which is already dealing with more than 20 cross-border cases. DPAs will try to reach the goal of consistent application of the GDPR by issuing opinions and by dispute resolution.

EDOB will issue binding decisions on cases brought to it but it can also proactively examine issues. While it can take decisions by a two-thirds majority, a procedure needs to be found for situations when a national authority prefers not to accept EDPB’s decision.

Source: DPAs: Full steam ahead at the European Data Protection Board – Privacy Laws & Business

GDPR certifications come into focus with EDPB guidance

Last week, on GDPR Day, as the law finally came into force, the newly minted European Data Protection Board shed some light on these questions and more with newly released guidance on certifying and identifying certification criteria in accordance with Articles 42 and 43 (there are also “codes of conduct” mentioned in the GDPR alongside certifications, but they aren’t addressed in this guidance).

Source: GDPR certifications come into focus with EDPB guidance

GDPR Guidance – European Data Protection Board Adopts Art. 29 Working Papers

Data protection authorities set out guidelines for the application of the new EU General Data Protection Regulation The European Data Protection Board (EDPB) is the joint coordination body of the EU data protection authorities. The EDPB provides guidance on the application of the EU Data Protection Regulation (GDPR).

Source: GDPR Guidance – European Data Protection Board Adopts Art. 29 Working Papers

EDPB outlines how businesses should approach data transfers

New European Data Protection Board (EDPB) published new guidance intended to help businesses comply with the General Data Protection Regulation (GDPR) when planning to transfer personal data outside of the European Economic Area (EEA).

Although the guidance concerns derogations that apply to the GDPR’s main rules on data transfers, the document provides a useful framework for businesses to follow when considering what they need to have in place for any data transfers they wish to make.

Source: EDPB outlines how businesses should approach data transfers

EDPB Published Guidelines on Certification and Derogations under the GDPR

On May 30, 2018, the European Data Protection Board (“EDPB”), replacing the Article 29 Working Party , published the final version of Guidelines 2/2018 on derogations in the context of international data transfers and draft Guidelines 1/2018 on certification under the EU General Data Protection Regulation (“GDPR”).

Source: EDPB Published Guidelines on Certification and Derogations under the GDPR

>