Workshops & Roundtables

Upcoming events:

Workshop 2: In cooperation we (will) trust
Marrakesh, Morocco, 18 October 2016, 16:30 -18:30
in the framework of 38th ICDPPC: https://www.privacyconference2016.org/

Agenda: In cooperation we (will) trust
Ordre du jour : Rencontre avec l’AFAPDP

Due to a limited number of places, please register by sending e-mail to the Inspector General for Personal Data Protection at desiwm@giodo.gov.pl prior to 12 October 2016. While registering, please write your title, first name, last name, organisation and e-mail address. You are also kindly requested to add the following statement: “I hereby give consent for my personal data to be processed by Inspector General for Personal Data Protection (GIODO) for the purposes of the preparation, organizing, servicing and documenting the roundtable organised within PHAEDRA II project (Agreement number – JUST/2013/FRAC/AG/6068) under Act on the Protection of Personal Data of 29 August 1997 (consolidated text: Journal of Laws of 2016 No. 922)”.

What are the grounds for data protection authorities (DPAs) cooperation? Is it purely based on legal requirements? Is efficient cooperation possible without these legal grounds? During the PHAEDRA II project meetings in 2015 and 2016 one particular issue gained special significance – the notion of TRUST. We believe that cooperation between DPAs – even in the General Data Protection Regulation (GDPR) regime – is simply impossible without building trust between each other.

Panel I: Legal rules for cooperation – limited power?
Is the new legal framework enough to establish efficient cooperation?
The General Data Protection Regulation sets out very precise rules for DPAs cooperation. It seems, however, that in some circumstances the legal framework for cooperation needs to be accompanied by practical solutions. Do we need, therefore, some soft regulations or practical arrangements to facilitate this process and built more and more trusted cooperation? Examples from other fields of law (e.g. competition or consumer protection law) can also bring new ideas while establishing cooperation between DPAs.

Panel II: Bases for cooperation – what options do we have?
Searching for real commitment to cooperation.
What options for cooperation do DPAs have in practice? GDPR brings many opportunities, like one-stop-shop (OSS) mechanism, mutual assistance or joint operations. The question arises – does GDPR allow to develop cooperation between DPAs in other modes? In what circumstances? Can we go beyond GDPR while establishing cooperation and cooperate on a basis of some mutual, non-binding agreements? There is also available yet slightly forgotten Convention 108 in a game with all its cooperation mechanisms.

Panel III: IT tools for enhanced cooperation – the power of technology
Building confidence in the quality of information
When DPAs share information between themselves (even confidential), they have to be sure that it is dealt in a trusted and safe way. In an attempt to develop DPAs collaboration, information technology (IT) resources (such as specialised databases) may be highly beneficial in providing knowledge of other DPAs’ decisions, comparative data legislation, data privacy jurisprudence or international agreements, among other significant documents. This is why building a secure IT platform could be a milestone in building efficient cooperation in general.

Past events:

Lunch Rountable 2:
Cooperation between DPAs under the GDPR: the issue of the diversity of national legal systems
Budapest, Hungary, 25 May 2016, 14:30-17:30 (upon invitation)
in the framework of the European Conference of Data Protection Authorities (Joint Workshop of the WP29 Cooperation Subgroup & PHAEDRA II Project)

Agenda: Cooperation between DPAs under the GDPR: the issue of the diversity of national legal systems


Lunch Roundtable 1:
Cooperation of data protection authorities, inside and outside Europe

Brussels, Belgium, 28 January 2016, 12:00-14:00 (upon invitation)
in the framework of 9th CPDP Conference: http://www.cpdpconferences.org

Agenda: Cooperation of data protection authorities, inside and outside Europe

This roundtable will be split into two parts. The first will discuss authorities’ views on the impact of the data protection framework reform on their cooperation in the EU. The PHAEDRA II project recently interviewed European DPAs regarding the main developments of the General Data Protection Regulation (GDPR) – including the consistency mechanism, one-stop shop, European Data Protection Board (EDPB) and their impact on cooperation between European DPAs; challenges to cooperation and coordination between European DPAs; cooperation on enforcement, and the perspectives of the DPAs on the activities of the PHAEDRA II project. The resulting report provides an overview of the perspectives of European DPAs at this key stage in the data protection reform process, and in particular of areas where further work is required, and identifies issues that will need to be debated in more detail.Therefore the first part will summarise the findings of PHAEDRA research thus far and move onto deeper discussion of key outstanding areas of debate, including the practical debate about the extent to which structure and formalisation are necessary or desirable for more effective cooperation and coordination between European DPAs, issues of language use and translation costs in cross-border cases, and the requirements for future tools and platforms.The second part will be devoted to the notion of cooperation of European data protection authorities with their counterparts from outside the EU in the reformed framework. While the proposal for the GDPR regulates extensively the cooperation of EU DPAs, it devotes only a single provision to the cooperation of these authorities with their counterparts outside the EU. Art 45 GDPR is very open and vague in its wording, therefore leaving a number of “open questions”, such as its rationale, planned action by EU DPAs and the European Commission or the prospects of such an approach.While Art 45 of GDPR constitutes a starting point for the extra-EU DPAs cooperation, two recent developments deserve our attention too. First, in the aftermath of the recent invalidation of the Safe Harbour Agreement by the Court of Justice of the European Union, the Art 29 Working Party called “on the Member States and the European institutions to open discussions with US authorities in order to find political, legal and technical solutions enabling data transfers to the territory of the United States that respect fundamental rights”. Second, after the conclusion of the 37th International Conference of Data Protection and Privacy Commissioners (Amsterdam 2015), a possibility for DPAs arrived to adhere to the Global Cross Border Enforcement Cooperation Arrangement, adopted at the 36th International Conference (Mauritius 2014). The said Arrangement, however, raises a number of practical problems worth debating and these concern its legal nature and efficiency, among others.The roundtable will contribute towards the PHAEDRA II project’s recommendations and identification of best practice.The event is addressed to data protection authorities (DPAs) from the European Union (EU) and worldwide, policy-makers, advocates and academics. Therefore, participation upon invitation only. To request and invitation, please send an e-mail to the Inspector General for Personal Data Protection at desiwm@giodo.gov.pl prior to 15 January 2016.

Lunch Roundtable 1: Authorities’ views on the impact of the data protection framework reform on their co-operation in the EU [cancelled]
Brussels, Belgium, 25 November 2015, 13:00 – 15:00 (upon invitation)

Draft agenda: Authorities’ views on the impact of the data protection framework reform on their co-operation in the EU

Due to the present circumstances and the security measures currently taken in Brussels, the Lunch Roundtable originally foreseen for 25 November 2015 is hereby cancelled. Registered participants have already received a dedicated e-mail.

The PHAEDRA II project has recently interviewed European DPAs. The interviews covered the main developments of the General Data Protection Regulation (GDPR) – including the consistency mechanism, one-stop shop, European Data Protection Board, and their impact on cooperation between European DPAs; challenges to cooperation and coordination between European DPAs; cooperation on enforcement, and the perspectives of the DPAs on the activities of the PHAEDRA II project. The resulting report provides an overview of the perspectives of European DPAs at this key stage in the data protection reform process, and in particular of areas where further work is required, and identifies issues that will need to be debated in more detail.

This roundtable will summarise the findings of this research and move onto deeper discussion of key outstanding areas of debate, including the practical debate about the extent to which structure and formalisation are necessary or desirable for more effective cooperation and coordination between European DPAs, issues of language use and translation costs in cross-border cases, and the requirements for future tools and platforms. The workshop will contribute towards the PHAEDRA II project’s recommendations and identification of best practice.


Workshop 1:
Cooperation between DPAs under the GDPR: prospects, practicalities and a to-do list

Amsterdam, the Netherlands, 27 October 2015, 14:00-16:00
in the framework of 37th ICDPPC: https://www.privacyconference2015.org

Agenda: Cooperation between DPAs under the GDPR: prospects, practicalities and a to-do list

The goal of the workshop, addressed to European Data Protection Authorities (DPAs) and selected policy-makers, is to present the first results of the project, as well as discuss several urgent issues concerning the new model of cooperation under the General Data Protection Regulation (GDPR), overcoming the barriers for efficient cooperation between DPAs and the upcoming agenda for data protection reform. We will have opportunity to host the prominent speakers representing DPAs, European Commission, European Data Protection Supervisor, Council of Europe and scientific community.


PHAEDRA I events (2013-2014)

Workshop 4: Further cooperation between DPAs, PCs and PEAs 
Balaclava Fort (Mauritius), 14 October 2014, 14.00-17.00h

The Data Protection Office, the DPA of Mauritius, hosted the 36th International Conference of Data Protection and Privacy Commissioners (ICDPPC), that took place from 13-16 October 2014 in Mauritius. The fourth workshop under the PHAEDRA project was organised as a side event to the ICDPPC, and focussed on the presentation of the results of the project achieved till now and on discussing the mechanisms boosting international enforcement coordination, considering the legal, technical, political or organisational barriers identified under the PHAEDRA project.

Agenda: Further cooperation between DPAs, PCs and PEAs
Report: 
Notes from the fourth PHAEDRA workshop on further cooperation between DPAs, PCs and PEAs
Presentations:

Workshop 3: The EU Data Protection Regulation and regional perspectives on improving international cooperation between DPAs, PCs and PEAs
Seoul (South Korea), 18 June 2014, 13.20-15.20h

The Personal Information Protection Commission, the DPA of South Korea, hosted the 41st Asia Pacific Privacy Authorities (APPA) Forum, that took place from 17-18 June 2014 in Seoul. The third workshop was organized during the open session of the APPA Forum, and was on the theme “The EU Data Protection Regulation and regional perspectives on improving international cooperation between DPAs, PCs and PEAs”. Wojciech Rafał Wiewiórowski and Gertjan Boulet, members of the PHAEDRA consortium, reflected on the EU Data Protection Reform, and presented the results of the PHAEDRA project so far. Two speakers from outside Europe presented regional perspectives on the topic, reflecting on the current practices of interregional and international cooperation between DPAs, PCs and PEAs, more particularly in relation to identified legal, cultural, organizational, technical or other barriers and challenges, and giving perspectives about the adoption of a new EU Data Protection Regulation.

Agenda: The EU Data Protection Regulation and regional perspectives on improving international cooperation between DPAs, PCs and PEAs
The Communiqué of the 41st APPA Forum:
 41st APPA Forum — Communiqué 
Report: Results of the third PHAEDRA workshop on ‘the EU Data Protection Regulation and regional perspectives on improving international cooperation between DPAs, PCs and PEAs’
Presentations:

Workshop 2Challenges and barriers for cooperation and coordination between DPAs 
Skopje (Republic of Macedonia), 6 May 2014, 14.30-16.30h

The Directorate for Personal Data Protection, the DPA of the Republic of Macedonia, hosted the 55th meeting of the International Working Group on Data Protection in Telecommunications (IWGDPT), the so-called Berlin Group, that took place from 5-6 May 2014 in Skopje. The second workshop under the PHAEDRA project was organised as a side event to the meeting of the Berlin Group. During the workshop, organized in the form of a roundtable, members of the PHAEDRA consortium presented the results of the project so far, and representatives of DPAs gave short presentations. Most of the time was dedicated to an open discussion, in order to invite the participants’s views regarding barriers in international cooperation and coordination between DPAs, PCs, and PEAs as well as regarding ways to overcome them.

AgendaChallenges and barriers for cooperation and coordination between DPAs 
Report: 
Results of the second PHAEDRA workshop on ‘Challenges and barriers for cooperation and coordination between DPAs’
Presentations:

Workshop 1: Improving cooperation and coordination between DPAs
Warsaw (Poland), 24 September 2013, 14.00-17.00h

GIODO hosted the 35th International Conference of Data Protection and Privacy Commissioners (ICDPPC), that took place from 23-26 September 2013 in Warsaw (https://privacyconference2013.org/). The first workshop under the PHAEDRA project was organised as a side event to the ICDPPC. During this workshop the problems of cooperation and coordination between DPAs and privacy commissioners were discussed.

Invitation: Improving cooperation and coordination between DPAs
Agenda: Improving cooperation and coordination between DPAs
Report: Results of the first PHAEDRA workshop aimed at improving privacy enforcement co- operation and co-ordination
Press release: Results of the first PHAEDRA workshop aimed at improving privacy enforcement co-operation and co-ordination
Presentations: