24 Apr

The Belgian DPA participates in the EDPB coordinated action on the DPO

The EDPB has launched its second coordinated enforcement action (CEF) which this year will focus on the designation and position of the data protection officer (DPO).  The BE DPA, for which the DPO is a 2023 priority, participates in this action. This is the second annual coordinated action of the EDPB, the first one was on the use of the cloud by the public sector.  

24 Jan

Cloud services in the public sector: EDPB report and observations by the BE DPA

The EDPB published a report on the findings of its first coordinated enforcement action, which focused on the use of cloud-based services by the public sector. The report includes a set of recommendations for data controllers using cloud services. In the annex, the Belgian Data Protection Authority (BE DPA) provides its observations at national level.

07 Sep

IAB Europe case: The Market Court refers preliminary questions to the Court of Justice of the EU

The Market Court decided today to refer preliminary questions to the Court of Justice of the European Union in the appeal that IAB Europe had filed against decision 21/2022 of the Belgian Data Protection Authority (BE DPA).

08 Mar

A new draft law threatens the independence and functioning of the BE DPA

The Belgian data protection authority is concerned about developments that could threaten its independence. These include a preliminary draft law to amend the current BE DPA law, and the lack of resources allocated to it. The DPA has expressed its concerns in an opinion published today, that she also forwarded to the Court of Audit, the Council of State, as well as to the European Commission and the other European supervisors assembled in the European Data Protection Board (EDPB). The BE DPA is of course ready to contribute constructively to the adaptation of the preliminary draft law.

02 Feb

The BE DPA to restore order to the online advertising industry: IAB Europe held responsible for a mechanism that infringes the GDPR

The Belgian DPA has found that the Transparency and Consent Framework (TCF), developed by IAB Europe, fails to comply with a number of provisions of the GDPR. The TCF is a widespread mechanism that facilitates the management of users’ preferences for online personalised advertising, and that plays a pivotal role in the so called Real Time Bidding (RTB). The BE DPA imposed a €250.000 fine to the company, and gives IAB Europe two months to present an action plan to bring its activities into compliance.