The European Data Protection Supervisor – EDPS
members
–
2 min read
Overview page for all things EDPS.
EDPS audit of the Commission's MS365 use
members
–
11 min read
28 July: EDPS closes its investigation into the European Commission’s use of Microsoft 365, now deeming it compliant after previously finding serious EUDPR violations, notably on purpose limitation and international transfers.
CJEU GC EUDPR T‑354/22 Bindl v Commission 8 Jan 2025
members
–
2 min read
Latest: The case has been appealed! The CJEU's General Court orders the European Commission to pay €400 in non-material damages for US transfers made in March 2022, when no adequacy decision or alternative safeguard was in place.
The Coordinated Supervision Committee (CSC)
members
–
2 min read
New Activities report (likely irrelevant for most). The CSC brings together DPAs and the EDPS to coordinate supervision of large-scale IT systems (e.g. IMI, Europol, SIS, Eurojust) and EU bodies under the EUDPR or relevant EU laws.
CJEU C-413/23 P EDPS v Single Resolution Board 6 Feb 2025 AG Opinion
members
–
1 min read
A much-anticipated case on the concept of personal data, but the AG only advices the CJEU to set aside the General Court’s ruling and send the case back to decide on the second plea (breach of good administration and fair procedure). We're still in the dark on several aspects.
CJEU C-479/22 P OC v Commission 7 Mar 2024
members
–
3 min read
The CJEU returned a case to the General Court as they disagreed on the latter's interpretation of the concept of personal data, which is to be interpreted broadly, such as a press release with several data points that could identify someone.