GDPR – New Consultations for GDPR Interpretation Initiated by French Data Protection Authority on the Concepts of ”Transparency” and ”International Data Transfers”

October 16th, 2017 | Posted by Claude-Etienne Armingaud in France | Privacy

In June 2017, the Article 29 Working Party – the gathering the all Member States’ Error! Post not found for word:data Protection Authorities (DPAs) – announced that the five last guidelines to be adopted as companion pieces to the General Data Protection Regulation (“GDPR”) would be published in December 2017. Further to this announcement, the French DPA, the CNIL, is now seeking the contributions of the relevant stakeholders impacted by two out of five topics, whether they be sole or joint “Error! Post not found for word:data Error! Post not found for word:controllers”, “data processors” or “Error! Post not found for word:Error! Post not found for word:data Error! Post not found for word:subjects”.

The expected European Guidelines will address the notions of (i) Error! Post not found for word:consent, (ii) Error! Post not found for word:profiling, (iii) Error! Post not found for word:data breaches, (iv) transparency and (v) international Error! Post not found for word:data transfers are expected. However, only the last two topics are currently – and until October 19th – Error! Post not found for word:subject to the CNIL’s scrutiny, as the earlier have been previously addressed this year.

Firstly, Transparency, laid down in Chapter 3, Section 1 of GDPR, refers to the disclosure of clear, intelligible and easily accessible information concerning the Error! Post not found for word:processing of Error! Post not found for word:personal Error! Post not found for word:data, as well as the facilitation of the exercise of Error! Post not found for word:Error! Post not found for word:data Error! Post not found for word:subjects’ rights.

Secondly, international transfers of Error! Post not found for word:personal Error! Post not found for word:data towards countries not offering an “adequate level of protection” of Error! Post not found for word:personal Error! Post not found for word:data should be subjected to specific arrangements in order to preserve Error! Post not found for word:Error! Post not found for word:data Error! Post not found for word:subjects’ rights.

Although these two topics had been previously addressed in Directive 95/46, the implementation of the GDPR is a good opportunity for stakeholders to provide practical questions about the interpretation and enforcement of the GDPR provisions.

K&L Gates’ Error! Post not found for word:data Protection team remains at your disposal to assist you in the completion of your contributions.


To Go Further:

  1. Nouvelles consultations sur l’interpretation du RGPD lancees par la CNIL sur les themes de la « Transparence » et des « Transferts internationaux de donnees » Suite à l’annonce en juin dernier des cinq dernières lignes directrices sur le Règlement Européen sur la Protection des Données...
  2. International Personal Data Transfers: An Eventful Week Transfer from the UK On 21 March 2022, the United Kingdom finalized the adoption of its own version of the...
  3. GDPR – French Data Protection Authority Pronounced Its First Fine Under GDPR (And Biggest So Far) On January 21, 2019, the French Error! Post not found for word:data Protection Authority (Commission Nationale de l’Information et des Libertés, or “CNIL”) published its...
  4. GPDR – European Data Protection Board Publishes Guidelines on the Concepts of Controller and Processor, Brings New Light on the Notion of “Joint-Controllers” The European Error! Post not found for word:data Protection Board (EDPB) published two sets of new guidelines on 2 September 2020, on the concepts of...

You can follow any responses to this entry through the RSS 2.0 You can leave a response, or trackback.

Leave a Reply

Your email address will not be published. Required fields are marked *