[GDPR] the WP29 & EDPB?
The Article 29 Working Party (WP29) is the predecessor to the European Data Protection Board (EDPB), which was established under the General Data Protection Regulation (GDPR). WP29 was an advisory body composed of representatives from the national data protection authorities of all EU member states, as well as the European Data Protection Supervisor. Its primary role was to provide guidance and recommendations on the interpretation and application of the EU Data Protection Directive and other data protection laws.
One of the main differences between WP29 and EDPB is the legal basis for their establishment. WP29 was established under the EU Data Protection Directive, which was repealed and replaced by the GDPR in May 2018. EDPB, on the other hand, was established under the GDPR and is responsible for ensuring consistent application of the regulation throughout the EU.
Another key difference between WP29 and EDPB is the scope of their responsibilities. While WP29 was primarily focused on providing guidance and recommendations on the interpretation and application of the EU Data Protection Directive, EDPB has a broader mandate under the GDPR. In addition to providing guidance and recommendations, EDPB is responsible for promoting cooperation and consistency among national data protection authorities, developing and maintaining a list of processing activities that require a data protection impact assessment (DPIA), reviewing and issuing opinions on draft codes of conduct, certification mechanisms, and other guidelines related to data protection, and monitoring the implementation of the GDPR.
Overall, while WP29 and EDPB share some similarities in terms of their composition and focus on data protection, EDPB has a broader mandate and a stronger legal basis for its establishment. As the primary body responsible for ensuring consistent application of the GDPR throughout the EU, EDPB plays a critical role in protecting individualsโ privacy rights and promoting responsible data handling practices across the EU.
๐๐ป๐๐ฟ๐ผ๐ฑ๐๐ฐ๐ถ๐ป๐ด ๐๐ต๐ฒ โ๐๐ถ๐ผ๐บ๐ฒ๐๐ฟ๐ถ๐ฐ ๐๐ฎ๐๐ฎ ๐ถ๐ป ๐ฉ๐ถ๐ฒ๐๐ป๐ฎ๐บโ ๐๐ฎ๐ป๐ฑ๐ฏ๐ผ๐ผ๐ธ ๐ฏ๐ ๐ฃ๐ฅ๐๐ฉ๐๐๐ฌ๐๐ข๐ ๐ฃ๐๐๐๐ก๐๐
๐ ๐๐ป๐๐ฟ๐ผ๐ฑ๐๐ฐ๐ถ๐ป๐ด ๐๐ต๐ฒ โ๐๐ถ๐ผ๐บ๐ฒ๐๐ฟ๐ถ๐ฐ ๐๐ฎ๐๐ฎ ๐ถ๐ป ๐ฉ๐ถ๐ฒ๐๐ป๐ฎ๐บโ ๐๐ฎ๐ป๐ฑ๐ฏ๐ผ๐ผ๐ธ ๐ฏ๐ ๐ฃ๐ฅ๐๐ฉ๐๐๐ฌ๐๐ข๐ ๐ฃ๐๐๐๐ก๐๐ Biometric data is rapidly becoming the backbone of identity verification, authentication, and monitoring systems โ and is now classified as one of the most sensitive categories of personal data under Vietnamโs Personal Data Protection Law 2025. To help organizations, businesses, and privacy professionals navigate this […]
Learn more
VIETNAMโS LEGAL FRAMEWORK FOR BACKGROUND CHECKS
๐๐๐๐๐๐ฅ๐ข๐จ๐ก๐ ๐ฉ๐๐ฅ๐๐๐๐๐๐ง๐๐ข๐ก (๐๐๐ฉ) ๐๐ก ๐ฉ๐๐๐ง๐ก๐๐ : ๐ช๐๐๐ง ๐๐ ๐ฃ๐๐ข๐ฌ๐๐ฅ๐ฆ ๐ก๐๐๐ ๐ง๐ข ๐๐ก๐ข๐ช As Vietnam moves toward full enforcement of the Personal Data Protection Law in 2026, background verification (BGV) practices are coming under closer legal and ethical scrutiny.Our latest article breaks down what checks employers can legitimately perform, when they are required by law, and how […]
Learn more
HIPAA PRIVACY RULE: MECHANISMS FOR PERSONAL HEALTH INFORMATION PROTECTION
HIPAA PRIVACY RULE: MECHANISMS FOR PERSONAL HEALTH INFORMATION PROTECTION The Privacy Rule is one of the core rules of HIPAA which governs the conditions, timing, and circumstances under which protected health information (PHI) may be used or disclosed. It establishes standards that grant patients rights over their health data, enhancing their control over its use […]
Learn more