CEDPO
The Confederation of European Data Protection Organisations

CEDPO
The Confederation of European Data Protection Organisations

CEDPO aims to

  • promote the role of the Data Protection Officer,
  • provide advice on balanced, practicable and effective data protection, and to
  • contribute to a better harmonisation of data protection law and practices in the EU/EEA.

 

CEDPO members are convinced that the Data Protection Officer (DPO) plays a central role in enabling a balanced, practicable and effective protection of personal data. By gathering  organisations from different EEA Member States under one Confederation, we intend to contribute to a better harmonisation of rules and practices through the exchange of practical know-how and experiences.

Recent News

French Ministry of Labour- Study on the profession of DPO

French Ministry of Labour- Study on the profession of DPO

The profession of Data Protection Officer (DPO) is relatively new in many private or public organizations. The conditions of practice, the forms of employment, the career paths or skills held or expected for the exercise of the profession of DPO need to be well identified and understood in order to provide the right answers in terms of employment and professional training. The AFCDP has worked...

Lake Como CEDPO Statement

Lake Como CEDPO Statement

Lake Como CEDPO Statement CEDPO held its first in person board meeting of the post COVID pandemic era on the banks of Lake Como. The objectives of the meeting were (i) to discuss the current European data protection legislative landscape, (ii) take stock of member observations and activities, and (iii) define common priorities and objectives for the CEDPO work program of 2022-2023. There were a...

CEDPO issues opinion on EDPB’s Guidelines 01/2022

CEDPO issues opinion on EDPB’s Guidelines 01/2022

On January 18th the European Data Protection Board (EDPB) published Guidelines 01/2022 on the right of access under Article 15 of the GDPR. Access requests from data subjects and the obligations of data controllers to provide a copy of personal data are of great relevance for practice, but essential questions of detail regarding scope and extent are still unresolved. It is disputed, for example,...

Data Protection Weekly 25/2022

European Union CJEU ruling- Case C-534-20:  German provisions governing the termination of a DPO’s employment are compatible with EU law, but subject to restrictions In its judgment of 22 June 2022 (Case C-534/20), the CJEU ruled on the question whether the GDPR allows the applicability of the German provisions governing the dismissal of a DPO pursuant to the Federal Data Protection Act (BDSG)....

Data Protection Weeky 24/2022

European Union EDPB adopts guidelines on certification as a tool for transfers The EDPB adopted on 17 June 2022, guidelines on certification as a tool for transfers. By these guidelines, the EDPB intends to provide clarification on the practical use of this transfer tool. They are composed of 4 parts : Purpose, scope and the different actors involved; Implementing guidance on accreditation...

Data Protection Weekly 23/2022

European Union Data Governance Act published in the official journal of the European Union The Data Governance Act was published on 6 June 2022, in the Official Journal of the European Union. You can read the final text, here.  Case C‑154/21 -RW v Österreichische Post AG - Opinion of Advocate General Pitruzzella on the extent of article 15 (1) (c) GDPR According to Advocate General Pitruzella,...

Data Protection Weekly 22/2022

National Authorities Austria:  DSB publishes cookie FAQ The Austrian Data Protection Authority  published on 25 May 2022 an FAQ on the use of third-party cookies under the EU GDPR and applicable Austrian law. The FAQ details various concepts around cookie compliance, such as characterization of necessary cookies, cookie walls, user payment as an alternative to consent and more. You can access...

Data Protection Weekly 25/2022

European Union CJEU ruling- Case C-534-20:  German provisions governing the termination of a DPO’s employment are compatible with EU law, but subject to restrictions In its judgment of 22 June 2022 (Case C-534/20), the CJEU ruled on the question whether the GDPR allows the applicability of the German provisions governing the dismissal of a DPO pursuant to the Federal Data Protection Act (BDSG)....

Data Protection Weeky 24/2022

European Union EDPB adopts guidelines on certification as a tool for transfers The EDPB adopted on 17 June 2022, guidelines on certification as a tool for transfers. By these guidelines, the EDPB intends to provide clarification on the practical use of this transfer tool. They are composed of 4 parts : Purpose, scope and the different actors involved; Implementing guidance on accreditation...

Data Protection Weekly 23/2022

European Union Data Governance Act published in the official journal of the European Union The Data Governance Act was published on 6 June 2022, in the Official Journal of the European Union. You can read the final text, here.  Case C‑154/21 -RW v Österreichische Post AG - Opinion of Advocate General Pitruzzella on the extent of article 15 (1) (c) GDPR According to Advocate General Pitruzella,...

Founding History

About CEDPO

CEDPO was founded in September 2011 by European Data Protection Organisations, namely, AFCDP (Association Française des Correspondants à la Protection des Données à Caractère Personnel) of France, APEP (Asociación Profesional Española de Privacidad) of Spain, GDD (Gesellschaft für Datenschutz und Datensicherheit) of Germany, and NGFG (Nederlands Genootschap van Functionarissen voor de Gegevensbescherming) of the Netherlands. In February 2014, ADPO (The Association of Data Protection Officers) of Ireland, ARGE DATEN of Austria, and SABI (Stowarzyszenie Inspektorów Ochrony Danych) of Poland joined CEDPO. 

The latest to additions to CEDPO took place between 2018-2020 when ASSO DPO (Associazione Data Protection Officer) of Italy, AEPD (Associação de Encarregados de Proteção de Dados) of Portugal and ASCPD (Asociatia Specialistilor in Confidentialitate si Protectia Datelor) of Romania became member associations.

CEDPO Members

Austria | ARGE Daten
France | AFCDP
Germany | GDD
Ireland | ADPO
Italy | ASSO DPO
The Netherlands | NGFG
Poland | SABI

Romania | ASCPD

Portugal | AEPD

Spain | APEP

Austria | ARGE Daten

France | AFCDP
Germany | GDD
Ireland | ADPO
Italy | ASSO DPO
The Netherlands | NGFG
Poland | SABI
Rumania | ASCPD
Spain | AEPD
Spain | APEP