News

39th Plenary Session of the EDPB

The Board adopted Guidelines on the concepts of controller and processor in the GDPR and Guidelines on the targeting of social media users.

38th Plenary Session of the EDPB

The Luxembourg Data Protection Authority (CNPD) welcomes the judgement from the Court of Justice of the European Union (CJEU) in the case Data Protection Commissioner v Facebook Ireland and Maximillian Schrems (Schrems II), rendered on July 16, 2020.

The EDPB has published a new register containing decisions taken by national supervisory authorities following the One-Stop-Shop cooperation procedure (Art. 60 GDPR) on its website.

Today, just over two years after its entry into application, the European Commission published an evaluation report on the General Data Protection Regulation (GDPR).

Actuellement, l’UE connaît une crise sanitaire exceptionnelle liée au coronavirus. Dans ce contexte, la CNPD donne des recommandations en matière de collecte de données aux acteurs privés et publics qui sont confrontés à des défis de plus en plus complexes dans leur fonctionnement quotidien.

From Monday, 8 June 2020, the offices of the National Commission for Data Protection (CNPD) are transferred to the Naos building in Belval.

During its 23rd plenary session, the EDPB adopted guidelines on the processing of health data for research purposes in the context of the COVID-19 outbreak and guidelines on geolocation and other tracing tools in the context of the COVID-19 outbreak.

Wednesday, 15 April, 2020 - Following a request for consultation from the European Commission, the European Data Protection Board adopted a letter concerning the European Commission's draft Guidance on apps supporting the fight against the COVID-19 pandemic.

Alessandra Pierucci, Chair of the Committee of Convention 108 and Jean-Philippe Walter, Data Protection Commissioner of the Council of Europe insist on the need for personal data to be protected even in the current situation and in the various areas where the measures taken to fight the pandemic and maintain business and education activities can put them at risk.

On March 19th, the European Data Protection Board adopted a formal statement on the processing of personal data in the context of the COVID-19 outbreak via written procedure.

Nineteenth Plenary Session of the EDPB

The Executive Committee of the Global Privacy Assembly (GPA) recognises the unprecedented challenges being faced to address the spread of Coronavirus (COVID-19).

Governments, public and private organisations throughout Europe are taking measures to contain and mitigate COVID-19. This can involve the processing of different types of personal data.

Evaluation of the GDPR; Guidelines on Art 46.2 (a) and 46.3 (b) GDPR for transfers personal data between EEA and non-EEA public authorities a bodies; Statement on privacy implications of mergers

On 28 January 2020, the CNPD participated in the Data Privacy Day, which is an annual event organized by the Restena Foundation and the University of Luxembourg in the framework of the Data Protection Day.

Art. 64 Opinions on Accreditation Requirements for Codes of Conduct Monitoring Bodies (BE, ES, FR SA), Guidelines on Connected Vehicles, Guidelines on Processing of Personal Data through Video Devices, Art. 64 Opinions on Accreditation Requirements for Certification Bodies (LU, UK), Art. 64 Opinion on Fujikura Automotive Europe Group Controller BCRs, Letter on unfair algorithms.