Office of the Information and Data Protection Commissioner

Welcome to Data Protection


What's New              

Related Documents and Articles  

Quick Tips and Links                                       

Safe Harbour

Following the decision issued by the Court of Justice of the European Union (CJEU) in the case Schrems vs Data Protection Commissioner (Ireland), the Commission Decision 2000/520EC dated 26 July 2000, on the adequacy of the protection provided by the Safe Harbour privacy principles, was declared invalid by the CJEU Advocate General. The Court judgement requires
that any adequacy decision implies a broad analysis of the third country domestic laws and international commitments.

A statement from the EU Commission on this decision may be found on the following link: http://europa.eu/rapid/press-release_STATEMENT-15-5782_en.htm

The US Safe Harbour is therefore no longer considered as an automatic assurance for the privacy of citizens when their personal data is transferred to the US.

Following such ruling, the EU data protection authorities assembled in the Article 29 Working Party have discussed the consequences of such decision a press statement, available on this link: http://ec.europa.eu/justice/data-protection/article-29/press-material/press-release/art29_press_material/2015/20151016_wp29_
statement_on_schrems_judgement.pdf


Data controllers previously transferring personal data under the Safe Harbour scheme are required to use alternative mechanisms as provided for under national law in order to guarantee an adequate level of data protection for similar transfers to the US.

19.10.15


The Article 29 WP adopted Opinion WP 203 on purpose limitation.

02.04.13



The Article 29 Working Party adopted Opinion WP 199 providing further input on the data protection reform discussions.

05.10.12



The Article 29 Working Party adopted Opinion WP 196 on Cloud Computing.

01.07.12



The Article 29 Working Party adopted Opinion WP 194 on Cookie Consent Exemption.

07.06.12


The Article 29 Working Party adopted providing further input on the data protection reform discussions.The Article 29 Working Party adopted on Cloud Computing.The Article 29 Working Party adopted on Cookie Consent Exemption.

 

 

 

 
The use of biometric devices at the workplace.


Processing of personal data by means of a CCTV camera.



The sending of unsolicited communications for the purpose of direct marketing.
 

The right to information


Can I request access to my personal information? Click here for this reply and any other frequently asked questions


The use of personal data for research and statistics purposes



The taking of photographs in schools