In order to help stakeholders apply the concepts of data protection law, which may sometimes be difficult to grasp, the European Data Protection Board (a European body composed of the representatives of the 27 national regulatory authorities) continued its work over the summer and in particular adopted two draft guidelines on 2 September:
- the first relates to “the concepts of controller and processor in the GDPR“; the EDPB acknowledges that these notions, as well as that of joint controller, play a crucial role in the application of the Regulation as they determine who will be required to comply with the various data protection obligations.
Provide your feedback : Guidelines 07/2020 on the concepts of controller and processor in the GDPR
- the second relates to the “targeting of social media users“, the EDPB having underlined the exponential development of such online media over the last decade and noted that “the combination and analysis of data originating from different sources, together with the potentially sensitive nature of personal data processed in the context of social media, creates risks to the fundamental rights and freedoms of individuals“.
Provide your feedback : Guidelines 08/2020 on the targeting of social media users
Careful to implicate stakeholders as much as possible in the adoption of a final version of these guidelines, the EDPB has opened them for feedback; comments must be submitted on 19 October 2020 at the latest. Contributing to this public consultation is the ideal occasion to influence the choices of interpretation made by the EDPB, by promoting a pragmatic approach valued by economic players.
- GDPR : two draft guidelines adopted by the EDPB open for feedback - September 14, 2020
- The European data protection board clarifies its position in a new set of guidelines - May 18, 2020
- Contact tracing application: “an individual choice pledge of collective responsibility” - April 25, 2020
- #COVID-19 : No state of emergency for data protection ! - March 26, 2020
- Brief n°2 – The controls of the French supervisory authority in 2019: enforcing the rights of the data subject - June 3, 2019
- CNIL investigations in 2019 : the sharing of responsibilities between controller and processor - May 3, 2019
- GDPR : two draft guidelines adopted by the EDPB open for feedback - September 14, 2020
- The European data protection board clarifies its position in a new set of guidelines - May 18, 2020
- Contact tracing application: “an individual choice pledge of collective responsibility” - April 25, 2020
- #COVID-19 : No state of emergency for data protection ! - March 26, 2020