The European privacy supervisors as united in the Data Protection Board (EDPB) have published new guidelines on the concept of “controller” and “processor”. What’s new, what’s better and what’s missing? Vonne Laan and Eliëtte Vaal determined this in their opinion for the Dutch scientific journal on internet law (Tijdschrift voor Internetrecht).
The CJEU Schrems II judgement of July 16th, 2020 affects the legitimacy of data transfers outside the EU. But what does this mean in practice? What is allowed and what is not in relation to transferring data outside the EEA? What measures can now be taken to legitimise such transfers? Read more about this in our White paper.
Eliëtte Vaal and Vonne Laan both spoke at the yearly ePrivacy & Marketing Seminar of IIR.
Eliëtte Vaal and Vonne Laan wrote a blog about the changing position of the Dutch Data Protection Authority (DPA) during the COVID-19 outbreak towards measuring temperature of natural persons (Dutch only).
In view of the launch of The Data Lawyers, Eliëtte Vaal and Vonne Laan were requested to partake in an interview by Privacyweb. Why did they make this move? What do they wish to contribute to the privacy sector? What are their biggest annoyances in relation privacy law? Please read the interview for their answers to these and other questions.
Vonne Laan and Eliëtte Vaal wrote an overview article which can be used as easy point of reference in practice. It discusses two concepts under data protection law that have been endlessly debated: that of “controller” and “processor”. How workable are these concepts nowadays? What are the complications in practice and how can they be solved? Read more about this in our article “Back to the basics: Verwerkingsverantwoordelijke of verwerker onder de AVG?”.