European Data Protection Supervisor meaning

This record has been archived and is no longer being updated. This Timeline sets out the principal milestones linked to Directive (EU) 2019/1937 (OJ L 305, 26.11.2019, p. 17) (the Whistleblowing Directive). Member States had to implement the Whistleblowing Directive’s provisions in domestic law by 17 December 2021. As the Whistleblowing Directive was not carried across into EU retained law after IP completion day (31 December 2020), it does not apply in the UK. 2021 29 June 2021 — Council of the EU — Opinion of the European Data Protection Supervisor on the Proposal for a Regulation on Markets in Crypto-assets, and amending Directive (EU) 2019/1937 The Council of the EU released the EDPS’s opinion, dated 24 June 2021, on the European Commission’s proposal for a regulation on markets in cryptoassets and for amendments to the EU Whistleblowing Directive; the EDPS expressed support for the proposal and also outlined several suggested revisions...

In this issue: New technologies Internet Data protection Media Advertising, marketing and sponsorship Reputation management Telecommunications LexTalk®TMT: a Lexis®Nexis community Daily and weekly news alerts New and updated content Dates for your diary Trackers Useful information New technologies DSIT releases report and impact assessment on copyright and artificial intelligence DSIT, the Department for Culture, Media and Sport (DCMS) and the Intellectual Property Office have jointly issued a report and an impact assessment exploring the use of works protected by copyright in the training and development of AI systems. These have been published pursuant to sections 135 and 136 of the Data (Use and Access) Act 2025. See: LNB News 18/03/2026 44. EDPS unveils Compass on supervision and enforcement under the EU AI Act The European Data Protection Supervisor (EDPS) has released its Compass setting out its expanded role under the EU AI Act as a market surveillance authority...

In this issue: Beyond Brexit UK, EU and international regulators and bodies Authorisation, approval and supervision Prudential requirements Operational resilience Complaints, compensation and claims management Financial crime and sanctions Consumer credit, mortgage and home finance Conduct requirements Investigations, enforcement and discipline Regulation of capital markets Regulation of derivatives Sustainable finance and ESG Banks and mutuals Investment funds and asset management UK MiFID II EU MiFID II Regulation of insurance Payment services and systems Fintech and cryptoassets LexTalk®Financial Services: a Lexis®Nexis community Dates for your diary Financial Services Enforcement Database Daily and weekly news alerts Intraday news alerts Beyond Brexit FCA updates guidance on the financial services contracts regime, temporary permissions regime and leaving SRO or CRO The Financial Conduct Authority (FCA) has refreshed its guidance covering the temporary permissions regime, the financial services contracts regime, and how firms...

In this issue: Cybersecurity Reputation Management Data protection LexTalk® Information Law: a Lexis®Nexis community Daily and weekly news alerts New and updated content Latest Q&As Cybersecurity NCSC shares advice for those at heightened risk to secure websites and customer email domains. The National Cyber Security Centre (NCSC) has issued guidance for high‑risk individuals who already operate their own website or custom email domain, or who are looking to set one up. See: LNB News 31/05/2024 34. Reputation Management SRA revises its SLAPPs warning. The Solicitors Regulatory Authority (SRA) has refreshed its strategic lawsuits against public participation (SLAPPs) notice to solicitors. The updated alert adds clarity on what constitutes a SLAPP, sets out scenarios where regulatory action may follow, and offers more detailed direction. See: LNB News 31/05/2024 26. Data protection EDPS issues Orientations for EUIs on using generative AI with personal data. The European Data Protection Supervisor (EDPS) has published Orientations giving practical...

One of the principal aims of the EU’s General Data Protection Regulation, Regulation (EU) 2016/679 (the EU GDPR), is to bring about consistent implementation and enforcement of data protection across the EU and EEA in practice. Under the EU GDPR, every Member State may designate one or more independent public bodies to oversee application of the EU GDPR, ie a ‘supervisory authority’, as appropriate. This Practice Note: sets out the European Data Protection Board (EDPB) outlines the European Data Protection Supervisor (EDPS) compiles a consolidated list of supervisory authorities in the EU and EEA For guidance on sanctions and enforcement under the EU GDPR, see Practice Note: EU GDPR—sanctions and enforcement. The EDPB The EDPB sits at the heart of the EU GDPR framework and its guidance and opinions carry considerable weight. It is made up of the head of each EU national supervisory authority, together with the EDPS. The EDPB succeeded the Article 29 Working Party (Working Party),...

This Practice Note provides an introduction to the data protection implications of establishing a global corporate whistleblowing scheme. To deliver effective corporate governance, companies need dependable ways to spot and remedy unlawful or unethical behaviour within their organisations. One means of meeting this aim is to set up internal whistleblowing arrangements, giving staff a trusted, confidential route to raise concerns about misconduct. Worldwide, more national laws are obliging businesses to put in place internal financial control procedures—often realised through whistleblowing frameworks. The US sets the pace with rigorous expectations for internal reporting and investigation of suspected wrongdoing under the Sarbanes-Oxley Act 2002 (SOX). For a US‑regulated multinational, designing a uniform corporate whistleblowing programme across every territory in which it trades can be challenging. In Europe, organisations must also reconcile their governance goals with protecting the privacy rights of individuals named through the operation of a whistleblowing scheme, especially where reports are submitted anonymously. A company active in EU jurisdictions...

The EU’s unique institutional framework As a supranational polity, the EU is neither a country nor a federation like the United States, nor an organisation for co-operation between governments such as the United Nations. It is, in truth, one of a kind. Its arrangement fits no standard legal classification and its achievements stem from the distinctive way it operates. The EU’s Member States remain sovereign and independent, yet they pool elements of their sovereignty to secure strength and global influence they could not attain individually. For details, see Practice Note: List of EU Member States and official languages. The EU’s institutional system is designed to uphold its values, objectives and interests, along with those of its citizens and its Member States. It also promotes the coherence, effectiveness and continuity of EU policies and actions. The core framework comprises seven institutions representing varied interests, entrusted with executive, legislative, judicial and other powers: European Parliament Council of the European Union European Commission European Council...