On 27 Could 2021, the European Information Safety Supervisor (the “EDPS”) introduced that it had opened two investigations regarding (1) using cloud providers offered by Amazon Internet Companies and Microsoft underneath Cloud II contracts by a part of establishments, our bodies of the European Union and companies; and (2) the European Fee’s use of Microsoft Workplace 365.
These investigations are a part of the technique of the EU establishments to adjust to the Schrems II judgment of the Court docket of Justice of the European Union.
On account of the Schrems II judgment, controllers who depend on a switch mechanism underneath Article 46 of the EU Common Information Safety Regulation (“GDPR”) to switch private information exterior the European Financial Space (“EEA”) ) (“information exporters”) should confirm, on a case-by-case foundation and in cooperation with information importers, as applicable, whether or not the regulation of the importer’s nation ensures a considerably equal stage of safety of private information to the EEA protections. If not, information exporters want to contemplate whether or not they can implement extra measures to assist make sure the required stage of safety.
In response to Wojciech Wiewiórowski, the EDPS, the EU establishments should “lead by instance relating to privateness and information safety”.
Learn the EDPS press launch.
Supply : www.huntonprivacyblog.com