The competence of non-lead supervisory authority under the EU GDPR’S one-stop-shop mechanism: CJEU judgment in Facebook and Others (C-645/19)

Laroussi Chemlali

doi:10.1080/17577632.2022.2109852

The competence of non-lead supervisory authority under the EU GDPR’S one-stop-shop mechanism: CJEU judgment in Facebook and Others (C-645/19)

Laroussi Chemlali

College of Law

Research output: Contribution to journal › Article › peer-review

2 Scopus citations

Abstract

On 15 June 2021, the Court of Justice of the European Union (CJEU) ruled in case C-645/19 between Facebook and the Belgian Data Protection Authority. The CJEU offered some clarification on the General Data Protection Regulation’s (GDPR) one-stop-shop mechanism. In particular, the Court addressed the question of whether a national supervisory authority that is not the lead authority can bring legal proceedings before a court in its Member State with respect to the cross-border data processing. In its judgment, the CJEU reaffirmed the allocation of competences between the ‘lead’ and ‘concerned’ supervisory authorities laid down by the GDPR, while emphasising the importance of sincere and effective cooperation between them, in order to ensure consistent and homogeneous implementation of the GDPR.

Original language	English
Pages (from-to)	208-217
Number of pages	10
Journal	Journal of Media Law
Volume	14
Issue number	2
DOIs	https://doi.org/10.1080/17577632.2022.2109852
State	Published - 2022

Keywords

Data protection law
General Data Protection Regulation (GDPR)
cross-border processing of personal data
one-stop-shop mechanism

Access to Document

10.1080/17577632.2022.2109852

Cite this

@article{3ce8818f2fdf4d2886491844e819a254,

title = "The competence of non-lead supervisory authority under the EU GDPR{\textquoteright}S one-stop-shop mechanism: CJEU judgment in Facebook and Others (C-645/19)",

abstract = "On 15 June 2021, the Court of Justice of the European Union (CJEU) ruled in case C-645/19 between Facebook and the Belgian Data Protection Authority. The CJEU offered some clarification on the General Data Protection Regulation{\textquoteright}s (GDPR) one-stop-shop mechanism. In particular, the Court addressed the question of whether a national supervisory authority that is not the lead authority can bring legal proceedings before a court in its Member State with respect to the cross-border data processing. In its judgment, the CJEU reaffirmed the allocation of competences between the {\textquoteleft}lead{\textquoteright} and {\textquoteleft}concerned{\textquoteright} supervisory authorities laid down by the GDPR, while emphasising the importance of sincere and effective cooperation between them, in order to ensure consistent and homogeneous implementation of the GDPR.",

keywords = "Data protection law, General Data Protection Regulation (GDPR), cross-border processing of personal data, one-stop-shop mechanism",

author = "Laroussi Chemlali",

note = "Publisher Copyright: {\textcopyright} 2022 Informa UK Limited, trading as Taylor \& Francis Group.",

year = "2022",

doi = "10.1080/17577632.2022.2109852",

language = "English",

volume = "14",

pages = "208--217",

journal = "Journal of Media Law",

issn = "1757-7632",

publisher = "Taylor and Francis Ltd.",

number = "2",

}

TY - JOUR

T1 - The competence of non-lead supervisory authority under the EU GDPR’S one-stop-shop mechanism

T2 - CJEU judgment in Facebook and Others (C-645/19)

AU - Chemlali, Laroussi

PY - 2022

Y1 - 2022

N2 - On 15 June 2021, the Court of Justice of the European Union (CJEU) ruled in case C-645/19 between Facebook and the Belgian Data Protection Authority. The CJEU offered some clarification on the General Data Protection Regulation’s (GDPR) one-stop-shop mechanism. In particular, the Court addressed the question of whether a national supervisory authority that is not the lead authority can bring legal proceedings before a court in its Member State with respect to the cross-border data processing. In its judgment, the CJEU reaffirmed the allocation of competences between the ‘lead’ and ‘concerned’ supervisory authorities laid down by the GDPR, while emphasising the importance of sincere and effective cooperation between them, in order to ensure consistent and homogeneous implementation of the GDPR.

AB - On 15 June 2021, the Court of Justice of the European Union (CJEU) ruled in case C-645/19 between Facebook and the Belgian Data Protection Authority. The CJEU offered some clarification on the General Data Protection Regulation’s (GDPR) one-stop-shop mechanism. In particular, the Court addressed the question of whether a national supervisory authority that is not the lead authority can bring legal proceedings before a court in its Member State with respect to the cross-border data processing. In its judgment, the CJEU reaffirmed the allocation of competences between the ‘lead’ and ‘concerned’ supervisory authorities laid down by the GDPR, while emphasising the importance of sincere and effective cooperation between them, in order to ensure consistent and homogeneous implementation of the GDPR.

KW - Data protection law

KW - General Data Protection Regulation (GDPR)

KW - cross-border processing of personal data

KW - one-stop-shop mechanism

UR - https://www.scopus.com/pages/publications/85136133100

U2 - 10.1080/17577632.2022.2109852

DO - 10.1080/17577632.2022.2109852

M3 - Article

AN - SCOPUS:85136133100

SN - 1757-7632

VL - 14

SP - 208

EP - 217

JO - Journal of Media Law

JF - Journal of Media Law

IS - 2

ER -

The competence of non-lead supervisory authority under the EU GDPR’S one-stop-shop mechanism: CJEU judgment in Facebook and Others (C-645/19)

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this