The European Data Protection Board (EDPB) published an opinion (Opinion) on the interplay between the ePrivacy Directive (Directive 2002/58/EC) and the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679). The Opinion responds to questions submitted by the Belgian data protection authority, specifically:

  1. whether data protection authorities (DPAs) are competent to regulate processing that triggers both GDPR and the ePrivacy Directive;
  2. whether DPAs should take the ePrivacy Directive (and/or its national implementing legislation) into account when exercising their powers under GDPR;
  3. whether the cooperation and consistency mechanisms should apply to processing that triggers both GDPR and the ePrivacy Directive; and
  4. the extent to which processing can be governed by provisions of both the ePrivacy Directive and GDPR.

The EDPB also provided more general guidance on the interplay between the ePrivacy Directive and GDPR. This blog sets out key takeaways of the Opinion.Continue Reading e-Privacy meets GDPR – the European Data Protection Board shines some light

In April, we reported that the European Commission had opened a public consultation seeking the views of various stakeholders on the current wording of, and possible changes to, the Privacy and Electronic Communications Directive (2002/58/EC as amended) (“ePrivacy Directive”). The retrospective evaluation was necessary to ensure the ePrivacy Directive is fit for the digital age,

This post was written by Cynthia O’Donoghue.

Neelie Kroes, Vice President of the European Commission, has signalled her concern over the progress of the adoption of the Do-Not-Track (DNT) standard, which is being developed by the World Wide Web Consortium (W3C) as a universal mechanism to communicate relevant consent or lack of consent