Published on 08 Oct 2015 • European Union, USA (National/Federal) |
1. Whether, in determining a complaint that a third country's laws and practices do not contain adequate protection for data being transferred to it, a national supervisory authority (such as the DPC) is bound by Decision 2000/520, having regard to Articles 7, 8 and 47 of the Charter and to Article 25(6) of the Data Protection Directive.
2. Or, alternatively, may and/or must the DPC conduct its own investigation of the matter in light of factual developments since Decision 2000/520 was made (such as the Snowden revelations).