European Commission shares GDPR review report
members
–
1 min read
Only sharing the news now; more to come later. Grab your PDF with a TOC here!
Your OSS for the EU-US DPF
public
–
3 min read
💬 Joint press release: Commissioner Reynders and US Secretary of Commerce Raimondo on the first periodic review of the DPF + EDPB publishes FAQs for European individuals and businesses. Find all docs and other background info here!
AI (Act) resources
members
–
3 min read
Last update: New 🇳🇱 DPA AI report, AI Act published in the Official Journal, pick up a PDF with hyperlinked references between Articles and recitals + to external mentions + iapp Next Steps for Implementation infographic.
Right of access topic page
members
–
2 min read
Latest update 19 July: 🥳 The EDPB Guidelines 1-pagers is finally done! Earlier: examples page, Art. 15 elements table and flowchart, CJEU rulings.
EDPB Guidelines 1/2022 Right of access
members
–
3 min read
A snapshot of the EDPB Guidelines dealing with DSARs: Brief overview, key points, and some advice for data protection pros.
Welcome! Start here 👇
members
–
3 min read
Find your way around the DPO Hub: Manage your subscription, choose your favorite view (grid or list) and theme (from four different ones!) and save posts in your personal library!
Examples: DSARs - access requests
members
–
40 min read
Right of access examples from the EDPB and ICO.
EDPB press release: DPAs AI Act role, EU-US DPF FAQs, new European Data Protection Seal
members
–
1 min read
EDPB opines that DPAs should be designated AI Act MSAs, adopted 🇪🇺-🇺🇸 DPF FAQs for individuals and businesses, and an opinion approving the EuroPriSe Criteria Catalogue for certifying processors' processing activities, resulting in a European Data Protection Seal.
Events 2024
members
–
2 min read
Latest update: Free (!) registration now open for ENISA Annual Privacy Forum 4-5 Sep (Karlstad) - who else is going?
EDPB meeting agendas and minutes 2024
members
–
1 min read
Agenda 16 July: DPAs role in the AI Act framework, Guidelines on DMS-GDPR interplay, Europrise certification criteria for processors' processing, 🇪🇺 Commission's 11 adequacy decisions report and possible EDPB "reaction".
EDPS: the European Commission's use of MS365 is non-compliant
members
–
10 min read
[15 July: Both parties seek annulment] After the EDPS' second investigation into the European Commission's use of Microsoft 365, they found (again) several serious EUDPR violations, notably related to purpose limitation and transfers, which are still ongoing.
Denmark Google Workspace for Education Chromebook case (Helsingørgate)
members
–
9 min read
[15 July: Municipalities complies with Jan order + 🚨 DPA asks for EDPB opinion on the scope of a controller's documentation obligations regarding a processor's use of sub-processors] The Danish DPA's landmark decision of 2022 to ban certain use of Google products and US transfers, is still ongoing.