Isikuandmete kaitse üldmääruse ehk IKÜM-ga kehtestatakse ühtlustatud eeskirjad, mida kohaldatakse Euroopa Majanduspiirkonnas (EMP) asutatud organisatsioonide (avalik-õiguslikud või eraõiguslikud organisatsioonid, olenemata nende suurusest) mis tahes isikuandmete töötlemise suhtes või mis on suunatud üksikisikutele EL-is. IKÜM-i esmane eesmärk on tagada, et isikuandmete kaitse tase on kõikjal EMP-s sama kõrge, suurendades nii andmeid töötlevate üksikisikute kui ka organisatsioonide õiguskindlust ning pakkudes üksikisikutele kõrgetasemelist kaitset.
Määrus jõustus 24. mail 2016 ja seda kohaldatakse alates 25. maist 2018.
Is the guidance adopted by the Article 29 Working Party (WP29) still relevant today?
The EDPB endorsed WP29 documents are available here.
As regards the other existing WP29 documents, they may remain relevant and helpful insofar as the EDPB has not adopted new documents on the topic and/or they are compatible with the GDPR. This amounts to a case-by-case assessment.
How can I apply for the European Data Protection Seal?
Controllers should formally submit their EU-wide certification criteria to:
the competent data protection authority (DPA) in the EEA country where the scheme owners have their headquarters;
the competent data protection authority (DPA) in the EEA country where a certification body operating the certification mechanism have their headquarters, considering the member state in which the most certificates are likely to be issued.
My organisation would like to become a certification body, how can we become accredited?
Certification bodies are accredited by the national data protection authorities (DPA) or by the national accreditation body (named in accordance with Regulation 17065/2012). For further information regarding certification bodies, we recommend contacting the national DPA in your country. You can find an overview of all EEA DPAs here.
How can my processing operations or my organisation become GDPR certified?
Under the GDPR, certification is conducted by national certification bodies or by the competent national data protection authorities (Art. 42(5) GDPR).
For further information, we recommend contacting the relevant national DPA for your organisation. You can find a overview of all EEA DPAs here.
What happens after a public consultation is closed?
Once a public consultation is closed, all contributions to the public consultation are reviewed and, where necessary, the guidelines may be adapted. Once this process has been completed, the guidelines will be up for final adoption at a subsequent EDPB plenary.
I submitted feedback to a public consultation, but I cannot see my comments on the public consultation page. How do I know that my feedback was received by the EDPB?
All comments submitted are screened and reviewed manually before being displayed on our website. There should have been a visual confirmation after submitting your comments on our website.
In any case, please allow for some time before your comments are published.
Kuidas saan Euroopa Andmekaitsenõukogu tööga sammu pidada?
Euroopa Andmekaitsenõukogu avaldab korrapäraselt pressiteateid, uudiseid, blogisid ja muud sisu Euroopa Andmekaitsenõukogu veebisaidil ja enda sotsiaalmeediakanalites (X: @EU_EDPB; LinkedIn: Euroopa Andmekaitsenõukogu), et hoida andmekaitsekogukondi ja üldsust oma tööga kursis.
Euroopa Andmekaitsenõukogu veebisaidil on ka kaks RSS-kanalit, mida saate tellida Euroopa Andmekaitsenõukogu uudiste ja Euroopa Andmekaitsenõukogu viimaste väljaannete automaatseks teavituseks.