FEDMA_LogoFinal-01FEDMA_LogoFinal-01FEDMA_LogoFinal-01FEDMA_LogoFinal-01
  • Home
  • About us
    • Our Principles
    • National Association Members
    • Corporate Members
    • Governance & team
  • Latest News
  • Policy Area
    • Position Papers
    • Consumer Protection
    • Data Transfers
    • Digital Economy
    • Privacy & Data Protection
  • Projects
    • Education – PEEAC
    • Educational Hub
    • Sustainability Best Practices Guide
    • Legal Fact pack
    • Code of Practice for the Use of Personal Data
  • Contact
Subscribe
✕

European Data Protection Board met on the 25th and 26th September

11 October 2018

25-26th September was the latest plenary of the EDPB.  The EDPB reached an agreement and adopted the 22 opinions establishing common criteria for Data Protection Impact Assessment (DPIA) lists. These lists constitute an important tool for ensuring the consistent application of the GDPR across the EU. DPIA is a process aimed at helping to identify and mitigate data protection risks that could affect the rights and freedoms of individuals. To help clarify the types of processing which could require a DPIA, the GDPR calls for the national supervisory authorities to create and publish lists of types of operations that are likely to result in a high risk. The Board received 22 national lists with an overall of 260 different types of processing. The EDPB Chair, Andrea Jelinek said: “It has been an enormous task for the members of the Board as well as the EDPB Secretariat to examine all of these lists and to establish common criteria on what triggers a DPIA and what not. It was an excellent opportunity for the EDPB to test the possibilities and challenges of consistency in practice. The GDPR does not require full harmonisation or an ‘EU list’, but does require more consistency, which we have achieved in these 22 opinions by agreeing on a common view.” The 22 opinions on the DPIA lists result from art 35.4 and art. 35.6 GDPR and are in line with earlier guidance established by the Article 29 Working Party.

The EDPB adopted new draft guidelines, which will help provide a common interpretation of the territorial scope of the GDPR and a further clarification on the application of the GDPR in various situations; in particular, where the data controller or processor is established outside of the EU, including on the designation of a representative. The guidelines will be subject to a public consultation (public consultation not open yet, please check EDPB website for more information).

On international transfers, the EDPB Members discussed last week the EU-Japan draft adequacy decision which they received from Commissioner Věra Jourová, and have been asked to provide an opinion on. The Board will now thoroughly review the draft decision. The Board is determined to take into account the wide-ranging impact of the draft adequacy decision, as well as the need to protect personal data in the EU.

Share

RECENT NEWS

  • Navigating AI in data-driven marketing – challenges and opportunities26 November 2024
  • FEDMA’s Response to EDPB’s Guidelines on Legitimate Interest: Striking a Balance for Innovation and Privacy25 November 2024
  • Unlocking AI Growth: a pragmatic approach to GDPR interpretation4 November 2024
  • FEDMA @ 2024 IAPP Data Protection Congress with a focus on AdTech, Privacy, DSA & Political Advertising23 October 2024

© Fedma 2024

Made with ❤️ by MFM Digital

Contact us

rue de la Loi, 155
BE-1040 Brussels, Belgium

+32 2 779 4268

info@fedma.org

Follow us

Support

Privacy Policy

Terms and Conditions

Intranet

Subscribe
Subscribe Become a member Intranet

Follow us

Support

Terms and conditionsPrivacy PolicyIntranet –

Become a member now

To discuss FEDMA Membership, please contact rdewouters@fedma.org or book an introductory call via Microsoft Bookings.

SEND EMAIL INTRODUCTORY CALL

Never see this message again.

DO NOT MISS OUR NEWS

Subscribe to our Newsletter

 

First Name :
Last Name :
E-mail :