The European Data Protection Board (EDPB) has adopted its opinion on the draft adequacy decision regarding the EU-US data privacy framework on data transfers under the GDPR.
The long-awaited EDPB guidelines on the calculation of GDPR fines have now been published, but the view from data protection authorities reveals some areas for improvement.
The EDPB took an arguable position on a few aspects regarding data transfers covered by its draft guidelines on the interplay between Article 3 and Chapter V of GDPR.
The final version of the EDPB recommendations on data transfers based on the Schrems II case urges companies to complete their transfer impact assessments.
The European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) have adopted joint opinions on two sets of new standard contractual clauses (SCCs) for transfers of personal data outside the European Economic Area (EEA).
The latest guidelines of CNIL on cookies and the draft of the ePrivacy Regulation amplified even further the current inconsistency around cookie rules, requiring a new approach to ensure their privacy compliance.
The EDPB guidelines on the concepts of data controller and processor are a valuable aid to the interpretation of fundamental aspects for the application of the GDPR.
The Fintech revolution relies on data flows enhanced by the PSD2, which requires certainty now aimed by the European Data Protection Board guidelines on the interplay between the PSD2 and the GDPR, which leave gray areas though.
The new guidelines on privacy consent of the European Data Protection Board challenged a practice on cookies validated by the Garante in Italy and adopted by most of the websites.
CCTV cameras and in general, video surveillance systems are exponentially becoming intrusive but generate substantial data protection law issues according to the EDPB.
