European Data Protection Board

EDPB response to the Association of Accidental Americans on intergovernmental agreements implementing the US Foreign Account Tax Compliance Act

25 November 2022

Letters

Recommendations 1/2022 on the Application for Approval and on the elements and principles to be found in Controller Binding Corporate Rules (Art. 47 GDPR)

17 November 2022 Recommendations 1/2022 on the Application for Approval and on the elements and principles to be found in Controller Binding Corporate Rules (Art. 47 GDPR)

Public Consultations

Dutch SA fines Transavia for poor personal data security

23 September 2021

Dutch SA fines Booking.com for delay in reporting data breach

10 December 2020

EDPB adopts Recommendations on the application for approval and on the elements and principles to be found in Controller Binding Corporate Rules

15 November 2022

EDPB

Safety of property can be a legitimate interest for GPS tracking, but the measure must be appropriate and necessary

4 October 2022

Slovenia

Approval of the Controller Binding Corporate Rules of Munich Re Reinsurance Group

Decision Type

SA

Germany

13 October 2022

International Transfers of Data

Decision approving Binding Corporate Rules of Munich Re Reinsurance Group 407KB

Opinion / Binding decision References

Opinion 26/2022 on the draft decision of the Data Protection Authority of Bavaria for the Private Sector regarding the Controller Binding Corporate Rules of the Munich Re Reinsurance Group

EDPB Adopted documents

October plenary - adopted documents

21 October 2022

EDPB

Guidelines 8/2022 on identifying a controller or processor’s lead supervisory authority

10 October 2022 Guidelines 8/2022 on identifying a controller or processor’s lead supervisory authority

Public Consultations

The French SA fines Clearview AI EUR 20 million

20 October 2022

France