EDPB clarifies rules for data sharing with third country authorities and approves EU Data Protection Seal certification
During its latest plenary, the European Data Protection Board (EDPB) published guidelines on Art.48 GDPR about data transfers to third country authorities and approved a new European Data Protection Seal.
When a European organisation receives a request for a transfer of data from a ‘third country’ (i.e. non-European countries) authority, it must comply with the General Data Protection Regulation (GDPR). In its guidelines, the EDPB zooms in on Art. 48 GDPR and clarifies how organisations can best assess under which conditions they can lawfully respond to such requests.
The Board also adopted an opinion approving the Brand Compliance certification criteria concerning processing activities by controllers or processors.
