Insights European Data Protection Board adopts letters to UN and European Union Agency for Cybersecurity (ENISA).

During its plenary session on 18 November 2021, the EDPB adopted a letter in reply to the UN concerning transfers to international organisations. In the letter, the EDPB welcomes the UN’s continuous participation in the Task Force on transfers to international organisations established by the European Data Protection Supervisor. The EDPB also renews its commitment to engage further with the UN on the shared mission of protecting human rights, including the right to privacy.

The EDPB also adopted a letter to ENISA concerning the compatibility of the European Cybersecurity Certification Scheme for Cloud Services (EUCS) with the Schrems II ruling. In the letter, the EDPB reiterates its stance from its letter of 19 May 2021 that the final certification scheme should be consistent with the obligations laid down in the GDPR and should facilitate the compliance of cloud service providers and their clients with the GDPR, also taking into account the Schrems II ruling. To read the EDPB’s press release in full and for links to the letters, click here.