backOn January 17, 2025, the European Data Protection Board (EDPB) announced new guidelines on data pseudonymisation, an essential mechanism to ensure compliance with the General Data Protection Regulation (GDPR). The purpose of the guidelines is to clarify how this practice can be implemented to protect personal data, highlighting that pseudonymized data, while less identifiable, remains personal data if it can be attributed to an individual through additional information. The guidelines also address how pseudonymisation can reduce risks and facilitate the use of legitimate interests as a legal basis for data processing, provided the requirements of the GDPR are met. A public consultation on the topic will be open until February 28, 2025.
In addition to the guidelines on pseudonymisation, the EDPB also discussed the interplay between data protection law and competition law, focusing on the need for greater collaboration between the regulatory authorities of these areas. The Board adopted a position paper emphasizing the importance of closer cooperation between data protection and competition authorities, especially following the Meta vs. Bundeskartellamt case ruling. The EDPB proposed measures to integrate market factors into data protection practices and recommended the creation of a single point of contact to improve coordination among regulators.
share
