One of the most innovative changes in GDPR was the establishment of cross-border cooperation. But how does this work in practice? How can DPAs that are subject to more than 30 different national or local procedural laws run a joint procedure in compliance with the controller’s and data subjects’ rights? In that respect, the role of the national legislation implementing the GDPR will also be examined. Finally, the debate will touch upon the EDPB competence to take over a case when there is a disagreement between the DPAs, possible competence in cases of non EU controllers, what the rights of the data subjects are in such situations and what the role of the European courts will eventually be.
• How can supervisory authorities comply with multiple procedural laws in cross-border complaints?
• Can data subjects’ procedural rights be adequately enforced in a pan European landscape?
• What is the role of the EDPB when it comes to cooperation among supervisory authorities?
• What is the role of the CJEU as an ultimate interpreter of the GDPR?