European Data Protection Board Will Take Deep Dive on 'Right to Be Forgotten' Compliance
The European Data Protection Board (EDPB) will focus this year on enforcing people's "right to be forgotten," or right to erasure, via its coordinated enforcement framework (CEF), it announced Wednesday. It chose this topic as it's one of the most frequently exercised rights under the General Data Protection Regulation (GDPR) and one where data protection authorities (DPAs) receive the most complaints, the board said.
Sign up for a free preview to unlock the rest of this article
Throughout the year, 32 DPAs will participate in the initiative, the EDPB said. The board will "soon" contact data controllers from different sectors in Europe, either by opening formal investigations or conducting fact-finding exercises, it added.
Authorities will check how controllers handle and respond to requests for erasure and, particularly, how they apply the conditions and exceptions for exercising the right, the board said. DPAs will also "stay in close contact" to share their findings, and the probe's results will be analyzed to enable targeted follow-ups at the national and EU level.
Last year's CEF focused on how data controllers implemented GDPR provisions giving data subjects the right of access to their personal data (see 2501200001). It found that many controllers weren't sufficiently aware of EDPB guidelines on the topic.