EDPB opines that DPAs should be designated AI Act MSAs, adopted 🇪🇺-🇺🇸 DPF FAQs for individuals and businesses, and an opinion approving the EuroPriSe Criteria Catalogue for certifying processors' processing activities, resulting in a European Data Protection Seal.
Agenda 16 July: DPAs role in the AI Act framework, Guidelines on DMS-GDPR interplay, Europrise certification criteria for processors' processing, 🇪🇺 Commission's 11 adequacy decisions report and possible EDPB "reaction".
EDPB SPE project: Article 60 One-Stop-Shop thematic case digest analysing Articles 17 and 21. Key takeaway: Create, document, implement and control policies and procedures, including complaints management. PS: The 'data subject journey' is your secret weapon!
What is it, what have they spent (and spend) time and resources on, is it justified based on the current results, and should you apply? (Likely not.) Should you even spend time reading this post?
Noteworthy points on both EUC and Microsoft appealing the EDPS decision, next steps for the Consent or Pay guidelines, and AI Act national competent authorities.
EDPB shares the output of their latest meeting: Opinion on facial recognition use in airports, ChatGPT Task Force report, and announces Generative AI Guidelines to come! Press release and files here. PS: 📧 Remember you can subscribe to all new CJEU/EDPB posts. Go to Account > Manage emails.
[UPDATED 24 May with Work Programme comparison]The EDPB has shared their 2024-2027 Strategy with 4 Pillars, each with 3 key actions. But what's missing? 🤔
A strange occurance in my RSS feed today as this order from November 2023 suddenly appeared, giving the EDPB the right to intervene in the infamous SRB v EDPS case. So, not sure this is news. 🤷🏻♀️