GRI

EU Guarantors: Right of Access, the Results of CEF 2024

News Data protection Reports
Date: 5th Feb, 2025 Source: Italian Data Protection Authority Country: Italy Original Source

Brief

On February 5, 2025, the Italian Data Protection Authority issued an update regarding EU Guarantors: Right of Access, the Results of CEF 2024. The report concludes that there is a high level of compliance with data access rights among large organizations, but also identifies areas for improvement and provides recommendations to promote guidelines on the right of access.

Garanti UE: diritto di accesso, i risultati del CEF 2024
Nel corso dell’ultima plenaria del Comitato europeo per la protezione dei dati (EDPB) è stato adottato il Report conclusivo dell’azione coordinata europea sull’attuazione del diritto di accesso, realizzata dal Coordinated Enforcement Framework (CEF). Il documento sintetizza i risultati del lavoro svolto nell’azione CEF 2024 da 30 Autorità di protezione dati dello Spazio economico europeo (SEE), a cui ha preso parte anche il Garante italiano.
Dal Report emerge un alto grado di conformità dei titolari del trattamento rispetto all’esercizio del diritto d’accesso, soprattutto nelle grandi organizzazioni. Positiva anche l’adozione di strumenti per facilitare l’accesso degli interessati ai dati che li riguardano, come la disponibilità di moduli on line per presentare le richieste e di sistemi self-service per scaricare in autonomia i dati personali.
Il CEF ha individuato comunque alcune aree di miglioramento ed ha elaborato una serie di raccomandazioni. Tra queste, l’esigenza di promuovere le linee guida EDPB sul diritto d’accesso e la sensibilizzazione sia dei titolari del trattamento che degli interessati sui rispettivi obblighi e diritti.
Il Garante ha indirizzato il questionario a circa 60 titolari, tra primarie società operanti nel settore privato ed enti pubblici di medio-grandi dimensioni. Le risposte, in forma aggregata, sono confluite all’interno dell’appendice del Report dell’EDPB, contenente statistiche e grafici, mentre gli esiti dell’azione sono stati sinteticamente riportati nella relazione nazionale.
Sia la metodologia che l'approccio utilizzati per questa azione apriranno la strada a un lavoro sempre più coordinato da parte dei Garanti UE su altri temi di protezione dati, a partire dall'azione CEF 2025 che avrà ad oggetto il diritto all’oblio.
Roma, 5 febbraio 2025

– Leggi il comunicato dell'EDPB: https://www.edpb.europa.eu/news/news/2025/cef-2024-edpb-identifies-challenges-full-implementation-right-access_en

– Scarica il Report CEF 2024: https://www.edpb.europa.eu/our-work-tools/our-documents/other/coordinated-enforcement-action-implementation-right-access_en

Highlights content goes here...

Purpose
The European Data Protection Board (EDPB) has adopted a report on the coordinated enforcement action on the implementation of the right to access, conducted through the Coordinated Enforcement Framework (CEF). The document synthesizes the results of the work done by 30 data protection authorities in the European Economic Area (EEA), including the Italian Garante. The purpose of this report is to identify challenges and provide recommendations for improving the implementation of the right to access.

Effects on Industry
The CEF report reveals a high level of compliance among data controllers regarding the exercise of the right to access, particularly in large organizations. Additionally, there has been an adoption of tools to facilitate access by individuals to their personal data, such as online forms and self-service systems for downloading personal data. However, the report also highlights areas for improvement, including the need to promote EDPB guidelines on the right to access and sensitize both data controllers and individuals about their respective obligations and rights.

Relevant Stakeholders
The Italian Garante has directed a questionnaire to around 60 data controllers, including primary private sector companies and medium-to-large-sized public entities. The responses, in aggregate form, have been included in the appendix of the EDPB report, which contains statistics and graphs. The results of this action are summarized in the national report.

Next Steps
The coordinated approach used for this action will pave the way for future collaborative work by EU Garantes on other data protection topics, starting with the CEF 2025 action, which will focus on the right to erasure. This highlights the importance of adopting a proactive and coordinated strategy in addressing emerging challenges in the field of data protection.

Any Other Relevant Information
The report’s findings and recommendations will contribute to shaping future policy decisions on data protection at the EU level. The CEF framework has been developed as a tool for improving the effectiveness of data protection enforcement across the EEA, demonstrating the commitment of EU authorities to enhancing the rights of individuals in this area.

Italian Data Protection Authority

Quick Insight
RADA.AI
RADA.AI
Hello! I'm RADA.AI - Regulatory Analysis and Decision Assistance. Your Intelligent guide for compliance and decision-making. How can i assist you today?
Suggested
Related Documents
Latest annual statistics show growth in SMSF sector continues
Date: 5th Feb, 2025 Source: Australian Taxation Office (ATO) Country: Australia
News Tax & Compliance Reports
Publication of “Biohealth Report” to expand the value of connected health
Date: 5th Feb, 2025 Source: Korea Health Industry Development Institute (KHIDI) Country: South Korea
News Healthcare & Pharma Reports
NIST Report to Congress Provides Update on Champlain Towers South Investigation
Date: 5th Feb, 2025 Source: National Institute of Standards and Technology Country: USA
News Cybersecurity Reports

Form successfully submitted. One of our GRI rep will contact you shortly

Thanking You!

Click here

Enter your Email

Enter your registered username/email id.

Enter your Email

Enter your email id below to signup.

Enter your Email

Enter your email id below to signup.
Individual Plan
  • Designed for Growing Compliance Teams
$125 / month OR $1250 / year
Features
  • • Coverage for 20 jurisdictions
  • • Monitoring from 500+ regulatory authorities
  • • AI compliance summaries
  • • RaDa.ai : Single-Role
Best for: Researchers, Legal professionals, Academics
Subscribe Now
Enterprise Plan
  • Perfect for Global Enterprises
Contact for Pricing
Features
  • • Custom jurisdictional coverage
  • • Custom monitoring of regulatory authorities
  • • RaDa.ai : Customizable multi-role
  • • Custom reporting and dashboard capabilities
  • • API access for seamless integration
Best for: Law Firms, Corporations, Government Bodies
Contact Sales