Some companies that have chosen us

Privacy Officer and Privacy Consultant
CDP Scheme according to ISO/IEC 17024:2012
European Privacy Auditor
ISDP©10003 Certification Scheme according to ISO/IEC 17065:2012
According to standard UNI 11697:2017
Lead Auditor ISO/IEC 27001:2022
According to standard ISO/IEC 17024:2012
Data Protection Officer
According to standard ISO/IEC 17024:2012
Anti-Bribery Lead Auditor Expert
According to standard ISO/IEC 17024:2012
ICT Security Manager
According to standard UNI 11506:2017
IT Service Management (ITSM)
According to the ITIL Foundation
Ethical Hacker (CEH)
According to the EC-Council
Network Defender (CND)
According to the EC-Council
Computer Hacking Forensics Investigator (CHFI)
According to the EC-Council
Penetration Testing Professional (CPENT)
According to the EC-Council

Professional qualifications

Stay up-to-date with world news!

Select your topics of interest:


Home / News
NORWEGIAN SUPERVISORY AUTHORITY: update guideline on Schrems II by the EDPB

NORWEGIAN SUPERVISORY AUTHORITY: update guideline on Schrems II by the EDPB

The basic approach of the Schrems II guideline is the same as before. At the same time, the guideline has with new recommendation and clarifications. The biggest change is that recommendations opens to more emphasis on the practical experience of the data importer with surveillance legislation, but with some doubts.

In different points, the EDPB has made some changes and shades to the formulation, for example talking about the pseudonymization. The EDPB has considered that the pseudonymization is one of the instruments that the research environments shall be able to use practically and guidelines shall be read in the light of this.


On the 16th of July 2020 the European Court of Justice has issued the so-called Schrems II Judgement. The Judgement affirms that is not enough to use a valid legal transference basis, like the standard disposals of the European Commission, in order to transfer personal data out of the EEA. It is important to guarantee that the high protection level that we have in the EEA is kept practically. This has created big challenges, especially for companies which are transferred personal information in the USA.

In November 2020, the EDPB has issued a guideline on Schrems II and on what this judgement means for the personal data processing. This guideline has been under a public consultation and on this basis the EDPB has reviewed it. The revised guideline can be found on the website of the EDPB.

The Data Inspectorate will give additional information

Since the recommendation of the EDPB have been published, the State Data Inspectorate is planned to prepare in a short time updated guideline on the transference of personal data to third countries. Meanwhile, the Authority is asking that all the orientation requirements on Schrems II are addressed at the appropriate phone number.

edpb_recommendations_202001vo.2.0_supplementarymeasurestransferstools_en (1)


Recommended to you

Advanced Research