We endorse strong protections for personal data, including when data is transferred to third countries. We believe the Recommendations are key not only to ensuring consistency of the implementation of the CJEU’s decision in Schrems II, but also to help data exporters comply with the Court’s decision. But we have substantial concerns about some potential interpretations of the Draft Recommendations. Please see our response attached.

EPIF is delighted to share with you its position with regard to the Commission's European Data Strategy

EPIF is pleased to share its response to the Article 29 Working Party Guidelines on Data Protection Impact Assessment (DPIA). For EPIF, the central question is what ‘high risk’ means to the regulators and to companies. Companies need legal certainty of how the rules will be applied.

The European Payment Institutions Federation is pleased to share its responses to the EBA discussion paper on innovative uses of consumer data by financial institutions.

EPIF is pleased to share its position paper on Safe Harbour 2.0. In the context of the recent ruling of the CJEU in the Max Schrems case and the discourse which has surrounded it, EPIF would like to take the opportunity to highlight the importance of the Safe Harbour Agreement for the functioning of modern digital economies and [...]

EPIF  welcomes  the  European  Commission’s  proposal  for  greater  harmonisation  of  the  EU data protection regime within the internal market with regard to the processing of EU personal data. With this position paper, EPIF seeks to address the concerns it has identified in the draft Regulation. A number of provisions lead in their current form to legal [...]