Status of non-EU processors under Article 3(2) GDPR

by

16 June 2020

17:23

Leave a comment on Status of non-EU processors under Article 3(2) GDPR

Uncategorized

, , , ,

A thorough analysis of clear things and grey zones of the EDPB Guidelines 3/2018 on territorial scope.

My attention was, in particular, drawn by a friendly reminder that a status of a non-EU processor is dual as per Article 3(2):

  • it is indirectly influenced by the GDPR if carries out processing on behalf of a EU controller (through the data processing agreement under Article 28 and Chapter V obligations);
  • It is directly caught by the GDPR if the respective processing activities carrying out on behalf of a controller meet the ‘targeting criterion’ in a sense of Articles 3(2)(a) and 3(2)(b).

More to read – see below.

https://www.globalprivacyblog.com/gdpr/edpb-guidelines-what-is-the-territorial-reach-of-the-gdpr/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+GlobalPrivacyAndSecurityComplianceLawBlog+%28Global+Privacy+and+Security+Compliance+Law+Blog%29#page=1

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.