CPC (Cloud Privacy Check) network, the largest European information platform explaining data protection laws, has published two new reports on GDPR: (i) the Data Breach Report; and (ii) the Joint Controllership Report. These reports present key findings and recommendations concerning data breach-related obligations and the joint controllership concept within the EU/EEA and results from comparative surveys conducted by the CPC members.
“I am honoured that Wolf Theiss has been an active part of this European project which is extremely important for the general awareness and education in relation to data protection laws. The CPC platform is a step forward, since it is accessible to non-specialists who may need basic guidance in the area of data protection before seeking the specialised advice of a lawyer”, stated Adelina Iftime-Blăgean, Counsel Wolf Theiss and contributor for Romania for the CPC platform.
Wolf Theiss has been a CPC contributor since the establishment of the platform by EuroCloud Europe in 2015. The Firm will continue to contribute to the future activities of the CPC community, including as it continues its analysis of the practical aspects of the concepts covered in these two new reports. The CPC will also develop two European data bases covering these topics.
One of these data bases will include case-studies describing sector-specific joint controllership relations as well as controller-processor and processor-processor relations.
The second European data base will include data-breach-related DPA decisions and court judgments. The CPC Network intends to gather information on the volume, type and business sectors where data breaches occur, as well as assembling the regulatory responses to data breach notifications. Based on this information the CPC will draft a report of its findings.
ABOUT CPC (CLOUD PRIVACY CHECK)
CPC was founded by EuroCloud Europe in 2015 and is a not-for-profit international network of qualified legal professionals from more than 30 European countries. CPC’s mission is to provide authoritative views, information and practical solutions concerning data protection matters to two principal stakeholders: industry professionals and public authorities. This is done through collective know-how, research and market analysis gained from pan-European industry activity, collaboration and experience.
Read the full text