The European Data Protection Board and the European Data Protection Supervisor have adopted joint opinions about the new draft of standard contractual clauses (SSC) of the European Commission, one on the agreements of processing among data processors and data controllers and the other on the personal data transfers to third countries.
In their joint opinion, the European Data Protection Board and the European Data Protection Supervisor underline in particular the need to have some clarifications and functionality of the new standard contractual clauses for processing contracts.
The part of the processing contracts shall have a clear idea of the situations in which these standard clauses shall be applied.
The opinion also asks for a precisely definition of roles and responsibilities of data controllers and data processors in different situations.
The opinion on the standard contractual clauses for the processing of contracts on the website of the European Data Protection Board:
edpb-edpsjointopinion01_2021_sccs_c_p_en edpb-edpsjointopinion01_2021_sccs_c_p_annex1-decision_en edpb-edpsjointopinion01_2021_sccs_c_p_annex2-cpsccs_enThe standard contractual clauses about data transfers of the European Commission to third countries are instruments of transfer which define the obligations of the exporter and the importer when data are transferred out of the EEA.
In their second opinion, the European Data Protection Board and the EDPS think that the contractual clauses on transfers to third countries will improve the personal data protection.
Anyway, the opinion underline that a series of disposals of the standard contractual clauses shall be improved and clarified. The opinion underlines that these standard contractual clauses shall, in some cases, be applied in connection with the recommendation of the Data Protection Authority on the guarantees for the integration of data transfers.
SOURCE: AUTORITA’ PER LA PROTEZIONE DEI DATI DELLA FINLANDIA