fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " European Commission "

EU-US Privacy Shield passes third Commission ‘health check’

The European Commission published its report on the third annual review of the EU-US Privacy Shield. This despite the EU parliament calling last year for the mechanism to be suspended.

Report outlines that the US continues to ensure an adequate level of protection for personal data transferred from the EU to the 5,000 participating US companies under the Privacy Shield, the improvements made since the second annual review, and the appointments of key oversight and redress bodies, such as the Privacy Shield Ombudsperson.

Moreover, the Report highlights that an increasing number of EU individuals are making use of their rights under the Privacy Shield and that the relevant redress mechanisms are functioning well.

Source: EU-US Privacy Shield passes third Commission ‘health check’ — but litigation looms | TechCrunch

Commission urges member states to allocate resources to DPAs

In July, the European Commission urged European countries to allocate sufficient human, financial and technical resources to national data protection authorities.

That’s because the introduction of the EU General Data Protection Regulation has placed an increased burden on already-stretched authorities.

Full article: Commission urges member states to allocate resources to DPAs

European Commission refers Greece and Spain to Court

The European Commission decided to refer Greece and Spain to the Court of Justice of the EU for failing to transpose the EU rules on personal data protection (the Data Protection Law Enforcement Directive, Directive (EU) 2016/680).

In April 2016, the Council and the European Parliament agreed the Directive had to be transposed into national law by 6 May 2018.

Source: Data protection: Commission refers Greece and Spain to Court

EDPB and the EDPS consider the European Commission to be a processor of patient data in the eHealth Digital Service Infrastructure

On July 12, 2019, the European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) issued a joint opinion on the processing of patient data and the role of the European Commission within the eHealth Digital Service Infrastructure (eHDSI).

The eHDSI system was established in the context of the eHealth Network and allows for the exchange of electronic health data of patients between Member States. Opinion confirms that Member States act as “joint controllers” and the European Commission acts as a processor in processing of patient data within the eHDSI .

Full article: The European Data Protection Board and the European Data Protection Supervisor consider the European Commission to be a processor of patient data in the eHealth Digital Service Infrastructure

Amazon Faces EU Inquiry Over Data From Independent Sellers

European antitrust regulators have opened an investigation into the data that Amazon uses from third-party sellers who rely on the tech company’s site.

The European Union’s top antitrust regulator said on Wednesday that it had opened a formal antitrust investigation into whether Amazon was using the third-party data to promote its own products at the expense of other retailers.

Regulators said they were examining whether Amazon was hurting competition by abusing its dual role as a retailer that sells its own goods and a marketplace where other merchants sell products.

Source: Amazon Faces E.U. Inquiry Over Data From Independent Sellers – The New York Times

European Commission Releases Factsheet on Artificial Intelligence

On July 4, 2019, the European Commission published a factsheet on artificial intelligence for Europe.

In the Factsheet, the European Commission underlines the importance of AI and its role in improving people’s lives and bringing major benefits to the society and economy.

Full article: European Commission Releases Factsheet on Artificial Intelligence

EU Commission publishes report on GDPR application issues

The European Commission has published Multistakeholder Expert Group’s report on eperience of application of the General Data Protection Regulation’s (GDPR).

Report highlights the main issues and concerns that organisations face in complying with the GDPR, as well as GDPR’s impact on the exercise of data subjects’ rights.

Read Multistakeholder Expert Group’s report.

Pilot promised for new EU ethical guidelines for AI

Businesses in Europe exploring the use of artificial intelligence (AI) will be given a chance this summer to pilot the use of new ethical guidelines for AI, the European Commission has said.

Companies, public administrations and organisations can participate by signing up to the European AI Alliance.

Source: Pilot promised for new EU ethical guidelines for AI

European Commission Issues Updated Q&A on Interplay between the GDPR and the Clinical Trials Regulation

On April 10, 2019, European Commission Directorate-General for Health and Food Safety issued a revised Q&A analyzing the interplay between the EU Clinical Trials Regulation (“CTR”) and the EU General Data Protection Regulation (“GDPR”).

The revised Q&A takes into account the opinion of the European Data Protection Board (“EDPB”) issued on January 23, 2019, on the same topic.

Full article: European Commission Issues Updated Q&A on Interplay between the GDPR and the Clinical Trials Regulation

European Commission Releases Study on GDPR Data Protection Certification Mechanisms

European Commission has published a final report “Data Protection Certification Mechanisms: Study on Articles 42 and 43 of the Regulation
(EU) 2016/679”.

The overall aim of the study is to support the establishment of data protection certification mechanisms and of data protection seals and marks pursuant to Articles 42 and 43 GDPR.

More specific the purpose of the assignment is to: i) accompany the establishment of data protection certification mechanisms and of data protection seals and marks pursuant to Art. 42 and 43 GDPR and ii) collect all relevant information for the Commission in view of the possible implementation of Art. 43(8) GDPR on the requirements for the data protection certification mechanisms and of Article 43(9) GDPR on the technical standards for certification mechanisms and data protection seals and marks, and for mechanisms to promote and recognise those certification mechanisms, seals and marks.

Read report: Data Protection Certification Mechanisms: Study on Articles 42 and 43 of the Regulation (EU) 2016/679

1 2 3 8
>