Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.


Status message

Start your free, no obligation 5-day trial to continue exploring with full access.

EDPS investigating contractual arrangements concerning software used by EU firms

Jaclyn Jaeger | April 8, 2019

The European Data Protection Supervisor, which is responsible for enforcing and monitoring EU companies’ compliance with data protection rules, said it is has launched an investigation into the compliance of contractual arrangements between EU institutions and Microsoft.

Regulation 2018/1725, new data protection rules that came into force on 11 December 2018, “introduced significant changes to the rules governing outsourcing,” said Assistant EDPS Wojciech Wiewiórowski. Contractors now have direct responsibilities for ensuring compliance. “However, when relying on third parties to provide services, the EU institutions remain accountable for any data processing carried out on their behalf.”

“They also have a duty to ensure that any contractual...

Read this single article for $49, or click the subscribe button below to review subscription options.

Enjoy unlimited access to thousands of articles, browse five years of digital magazines, qualify for reduced admission to events, and more.