NEW: AI Compliance solution.

Live webinar

What can we learn from the EU Commission's legal action against EDPS over MS 365 decision?

3rd October 2024, 11:00-12:00 AM (CET)

Jakob Krabbe

Lead Legal Engineer and lawyer, ComplyCloud

Ulrika Skadhauge

Lawyer, ComplyCloud

More about the webinar

On 8 March 2024, the EDPS (data protection agency for the EU Institutions) decided that the Commission’s use of Microsoft 365 was not compliant with the GDPR.


The reasons included unlawful transferring to third countries as well as unclear instructions to Microsoft as to how they could use the personal data that was transferred.


Now, the Commission has sued the EDPS, requiring the decision to be cancelled. We expect the case to provide us with answers to some interesting questions like:

  • When does the use of a cloud-based tool constitute a third country transfer?

  • How precise must the personal data and the purposes of the processing be described in a data processing agreement?

  • What role does the general EU-principle of proportionality play when data protection agencies make decisions with fatal consequences to European companies?

    The case is relevant to any organization using Microsoft 365 or similar cloud-based tools. 

Your webinar host

Jakob Krabbe: Jakob is a lawyer and he has more than 5 years of experience with compliance. On a daily basis, he implements our customers in ComplyCloud, advises them on compliance and continuously educates them in GDPR and NIS2 at our customer courses.


Ulrika Skadhauge: Ulrika is a lawyer at ComplyCloud and has just written her thesis on cloud providers and third-country transfers. She is a true expert in the field with thorough analyses fresh in her memory.

Fill out the form

Booking

To book a class, become a member, or rent our studio, please complete this short form. We’ll get back to you as soon as we can.