Preiskel & CoPreiskel & Co
Preiskel & Co
  • Home
  • About Us
    • Diversity, Social Responsibility, and Pro Bono
  • Services
    • Corporate
    • Commercial
    • Regulatory
    • Competition & Antitrust
    • Data Protection, Privacy, and Retention
    • Intellectual Property
    • Dispute Resolution
    • Employment
  • Sectors
    • Telecommunications
    • IT, Technology, & Internet
    • Media and Broadcasting
    • Websites, Blogging, & Social Media
    • Film & Television
    • Gambling & Online Gaming
    • Leisure & Retail
    • Energy & Minerals
    • Cryptocurrency & Blockchain
    • Creative Industries
  • People
    • Daniel Preiskel
    • Ronnie Preiskel
    • Tim Cowen
    • Jose Saras
    • Robert Dougans
    • Tina Cowen
    • D A T Green
    • Karthyaeni Vittala
    • Richard Stewart
    • Mor Swiel
    • Ilanit Appelfeld
    • Stephen Dnes
    • Daniel Oakland
    • Robert Harvey
    • Martina Raciti
    • Joanna Coombs-Huang
    • Xavier Prida
    • Stewart White
    • Alison MacFarlane
    • Hannah Leader
    • Peter Dally
    • Antony Corel
    • Sue Warwick
    • Tony Curzon-Price
    • Shardi Shameli
    • Stephen Hornsby
    • Ewelina James
    • Maria Constantin
    • Sophia Yakhno
  • International
  • Blog
  • News
    • Publications
  • Contact
Menu back  

Controller Binding Corporate Rules – EDPB adopts new recommendations on the application for approval and the elements and principles of the Rules

November 25, 2022By Preiskel & Co

On the 16th of November 2022, the European Data Protection Board (“EDPB”) adopted Recommendations 1/2022 (the “Recommendations”) on the application for approval and on the elements and principles found in Controller Binding Corporate Rules. The EDPB’s Recommendations are open for feedback from the public with submissions to be made by 10 January 2023.

The Recommendations will repeal and replace the EDPB endorsed Article 29 Working Party Recommendations on the Standard Application for Approval of Controller Binding Corporate Rules for the Transfer of Personal Data (WP264).

Binding Corporate Rules approved under the EU GDPR (the “EU BCRs”) are legally binding terms and a transfer tool that can be used to transfer data outside the EU to:

  • controllers or processors within the same corporate group; or
  • group of undertakings or group of enterprises engaged in a joint economic activity.

Article 46(2) of the EU GDPR recognises the EU BCRs as an adequate safeguard for making restricted transfers of personal data. The EU BCRs set out the obligations to establish a level of data protection which is essentially equivalent to the EU GDPR one.

The Recommendations’ focus is:

  • clarifying the content of the EU BCRs and providing additional guidance;
  • ensuring a level playing field for all EU BCRs applicants;
  • provide an updated standard application form for the approval of BCRs;
  • making a distinction between what must be included in the EU BCRs and what must be presented to the EU BCR lead data protection authority in the EU BCR application;
  • providing an updated standard application form for the approval of EU BCRs. The EDPB has updated and merged the existing EU BCRCs referential with the application form for EU BCRs; and
  • bringing the existing guidance in line with the requirements under the Schrems II.

Find the EDPB press release and the version of the Recommendations for public consultation here.

The EDPB confirmed that separate recommendations for EU BCRs for processors are currently being developed.

 

Please contact Jose Saras if you have any questions about the above.

The material in this article is only for general review of the topics covered and does not constitute legal advice. No legal or business decision should be based on its content.

Latest Preiskel & Co blog posts
  • General EU Requirements for Cookie Banners – EDPB Task Force Report
    January 27, 2023
  • Ofcom Launches Investigation into BT Following Suspected Breaches of Consumer Protections Post Implementation of EECC
    January 27, 2023
  • Important decision impacting how companies must provide personal data requested by data subjects under their access rights
    January 19, 2023
  • NIS 2 Directive – Enhanced Common Level Cybersecurity Across the EU
    January 12, 2023
  • Saving the WWW from the W3C
    December 20, 2022
  • Imminent US adequacy decision to be met by legal challenges from privacy advocates
    December 13, 2022
  • Preiskel & Co Client, Nadira Murray’s awards for film “Winners”
    December 13, 2022
  • Telecoms Security Framework (TSF) – Background and Requirements
    December 8, 2022
  • Updated EU Commission decision paves way for 5G on the road and in-flight connectivity innovation
    November 29, 2022
  • Controller Binding Corporate Rules – EDPB adopts new recommendations on the application for approval and the elements and principles of the Rules
    November 25, 2022
  • ICO reveals new transfer risk assessment tool
    November 25, 2022
  • Ofcom publishes new rules for telecoms providers to combat scam calls
    November 23, 2022

The Preiskel Blog

  • General EU Requirements for Cookie Banners – EDPB Task Force Report 27 Jan 2023
  • Ofcom Launches Investigation into BT Following Suspected Breaches of Consumer Protections Post Implementation of EECC 27 Jan 2023
  • Important decision impacting how companies must provide personal data requested by data subjects under their access rights 19 Jan 2023
  • NIS 2 Directive – Enhanced Common Level Cybersecurity Across the EU 12 Jan 2023

Preiskel news

  • Danny Preiskel to speak at the Westminster eForum policy conference ‘Next steps for the UK mobile industry’
  • Preiskel & Co’s corporate team advised IXAfrica regarding a highly significant technology infrastructure investment for East Africa
  • Preiskel & Co’s Technology M&A Global Practice Guide published by Chambers
  • Preiskel & Co Client, Nadira Murray’s awards for film “Winners”
Preiskel tweets
  • Danny Preiskel to speak at the @WeFEvents eForum policy conference ‘Next steps for the UK mobile industry’. Find ou… https://t.co/ELDiFBj6Zo3 days ago
  • General EU Requirements for Cookie Banners – EDPB Task Force Report. Find out more here: https://t.co/2yGdpzOEZp #cookies #EDPB8 days ago
  • Ofcom Launches Investigation into BT Following Suspected Breaches of Consumer Protections Post Implementation of EE… https://t.co/7hgZjWQ16T8 days ago
Preiskel & Co LLP
4 King's Bench Walk,
Temple,
London
EC4Y 7DL
United Kingdom

Tel: +44 20 7332 5640
Email: info@preiskel.com

Find us on:

TwitterLinkedinMail
© Preiskel & Co LLP 2023 | Site map | Legal notices | Cookie Policy | Privacy

   

We use analytic cookies to help us understand how many visitors we have and how they move around our website. This helps us improving our website. You can accept or reject our use of analytic cookies and update your choices at any time. See our Cookie Policy to learn more about how we use essential and analytic cookies and to update your choices.OKReject analyticsCookie policy