Home

Some companies that have chosen us

Privacy Officer and Privacy Consultant
CDP Scheme according to ISO/IEC 17024:2012
European Privacy Auditor
ISDP©10003 Certification Scheme according to ISO/IEC 17065:2012
Auditor
According to standard UNI 11697:2017
Lead Auditor ISO/IEC 27001:2022
According to standard ISO/IEC 17024:2012
Data Protection Officer
According to standard ISO/IEC 17024:2012
Anti-Bribery Lead Auditor Expert
According to standard ISO/IEC 17024:2012
ICT Security Manager
According to standard UNI 11506:2017
IT Service Management (ITSM)
According to the ITIL Foundation
Ethical Hacker (CEH)
According to the EC-Council
Network Defender (CND)
According to the EC-Council
Computer Hacking Forensics Investigator (CHFI)
According to the EC-Council
Penetration Testing Professional (CPENT)
According to the EC-Council

Professional qualifications

Stay up-to-date with world news!

Select your topics of interest:

News

Home / News
/
ICELANDIC SUPERVISORY AUTHORITY: The European Data Protection Authority concludes that the EU Commission’s use of Microsoft 365 violates privacy

ICELANDIC SUPERVISORY AUTHORITY: The European Data Protection Authority concludes that the EU Commission’s use of Microsoft 365 violates privacy

The European Data Protection Authority (EDPS) has concluded that the European Commission’s use of Microsoft 365 violated several key provisions of the Union’s regulation dealing with the processing of personal data by its institutions. These include, among other things, provisions on the transfer of personal information to unsafe third countries and the specification of categories of personal information and the purpose of processing in the processing agreement. The provisions are similar to the provisions of the European Personal Protection Regulation and the Icelandic Personal Protection Act.

The EDPS has proposed to the Commission to stop all information flows resulting from its use of Microsoft 365 to Microsoft, its business partners and sub-processors, located outside the European Economic Area and for which an equivalence decision has not been taken, from 9 December 2024. The EDPS has also proposed to the Commission to bring processing operations in connection with the use of Microsoft 365 in other respects in accordance with the regulation in question.

The EDPS press release can be read here.

https://www.personuvernd.is/personuvernd/frettir/evropska-personuverndarstofnunin-kemst-ad-nidurstodu-um-ad-notkun-framkvaemdastjornar-esb-a-microsoft-365-brjoti-a

Recommended to you

Advanced Research