Latest News

  1. European Data Protection Board

    1 year GDPR – taking stock

    Just a few days short of the GDPR’s first anniversary, the European Data Protection Board surveyed the Supervisory Authorities (SAs) of the EEA and takes stock of the Board’s achievements.

  2. The EDPB adopted its opinion on the clinical trials Q&A

    Following a request from the European Commission (DG SANTE), the European Data Protection Board has adopted an opinion on the clinical trials Q&A. The opinion addresses in particular the aspects related to the adequate legal bases in the context of clinical trials, and the secondary uses of clinical trial data for scientific purposes. The opinion will now be transmitted to the European Commission.

  3. Warning: attempted fraud - CNPD investigations

    Several organisations informed the CNPD that they had been contacted by private companies offering data protection consulting and audit services, stating that these services were allegedly executed under the mandate or on behalf of the CNPD. The CNPD hereby clarifies

  4. Attention: Phishing attempt by requesting access

    • National
    Several organisations have contacted the CNPD following the receipt of a request for access that seemed dubious. The CNPD immediately contacted the GovCert to check whether it is a legitimate email or a phishing attempt. It has indeed been confirmed that the demand that has come from the domain "electronicprivacy.eu" is classified as phishing.
  5. CNPD Course: 23 October 2018

    Data Protection Basics

    On 23 October 2018, the CNPD organizes new courses on the basics of data protection. These courses are aimed at “beginners”, who wish to learn basic elements of data protection law.
  6. CNPD Course: 4 September 2018

    Data Protection Basics

    On 4 September 2018, the CNPD organizes new courses on the basics of data protection. These courses are aimed at “beginners”, who wish to learn basic elements of data protection law.
  7. First plenary meeting of the EDPB

    Europe’s new data protection rules and the EDPB: giving individuals greater control

    Today the European Data Protection Board (EDPB) held its first plenary meeting. This new, independent EU decision-making-body with legal personality is created by the General Data Protection Regulation (GDPR), which enters into application as of today. The EDPB succeeds the Article 29 Working Party.
  8. Cambridge Analytica/Facebook

    WP29 establishes a Social Media Working Group

    The Working Party 29 (WP29), the group uniting European data protection authorities, announces its full support for the ongoing investigations by national privacy authorities into the collection and use of personal data by and through social media. In addition, the WP 29 will create a Social Media Working Group to develop a long-term strategy on the issue.
  9. Cambridge Analytica/Facebook

    Cambridge Analytica: reaction of the Article 29 Working Party

    “As a rule personal data cannot be used without full transparency on how it is used and with whom it is shared. This is therefore a very serious allegation with far-reaching consequences. ICO is conducting the investigation into this matter. As Chair of the Article 29 Working Party, I fully suport their investigation. The Members of the Article 29 Working Party will work together in this process."

Brexit Guidance

This guidance is provided in order to help companies, public bodies and Luxembourg associations that are transferring personal data to the United Kingdom, and which will continue such transfers after 31 October 2019. 

Contact

Commission nationale pour la protection des données

1, avenue du Rock’n’Roll
L-4361 Esch-sur-Alzette

Tel.: (+352) 26 10 60-1

Submit a complaint

Newsletter

Would you like to be kept up to date on the CNPD? 

General Data Protection Regulation

Agenda / Key dates

Recent opinions

Article 29 Working Party

Introduction to data protection