ECJ rules national DPAs have powers for cross-border data processing

15/06/2021 | Bloomberg

Today, the Court of Justice of the European Union has ruled in a case between Facebook and the Belgian Privacy Commission that gives regulators increased powers to fine companies in their own courts. The case involves the one-stop-shop mechanism under the EU General Data Protection Regulation, as the Belgian DPA sought to stop Facebook from tracking citizens. Under the one-stop-shop mechanism, the Irish Data Protection Commission serves as the lead regulator for issues involving Facebook. Following the ECJ ruling, under certain conditions, a national data protection authority may exercise its power "to bring any alleged infringement" of EU data protection law to court anywhere in the European Union, "even though that authority is not the lead supervisory authority with regard to that processing."  

Read the Court of Justice of the European Union: PRESS RELEASE No 103/21 re Judgment in Case C-645/19.

Read Full Story
EU Court, CJEU, law, legal scales

What is this page?

You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.

The Privacy Newsfeed monitors over 300 global publications, of which more than 5,750 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.

Freevacy has been shortlisted in the Best Educator category.
The PICCASO Privacy Awards recognise the people making an outstanding contribution to this dynamic and fast-growing sector.