Article 50
International cooperation for the protection of personal data
There is no recital in the Directive related to article 50.
Regulation
Art. 50 In relation to third countries and international organisations, the Commission and supervisory authorities shall take appropriate steps to: a) develop international cooperation mechanisms to facilitate the effective enforcement of legislation for the protection of personal data; b) provide international mutual assistance in the enforcement of legislation for the protection of personal data, including through notification, complaint referral, investigative assistance and information exchange, subject to appropriate safeguards for the protection of personal data and other fundamental rights and freedoms; c) engage relevant stakeholders in discussion and activities aimed at furthering international cooperation in the enforcement of legislation for the protection of personal data; d) promote the exchange and documentation of personal data protection legislation and practice, including on jurisdictional conflicts with third countries.
|
Directive
Art. 28 (….). 6. Each supervisory authority is competent, whatever the national law applicable to the processing in question, to exercise, on the territory of its own Member State, the powers conferred on it in accordance with paragraph 3. Each authority may be requested to exercise its powers by an authority of another Member State. The supervisory authorities shall cooperate with one another to the extent necessary for the performance of their duties, in particular by exchanging all useful information. |
Sweden
|
United Kingdom
54. International co-operation (1) The Commissioner— (a) shall continue to be the designated authority in the United Kingdom for the purposes of Article 13 of the Convention, and (b) shall be the supervisory authority in the United Kingdom for the purposes of the Data Protection Directive [F1 and the Data Protection Framework Decision]. (2) The [F2 Secretary of State] may by order make provision as to the functions to be discharged by the Commissioner as the designated authority in the United Kingdom for the purposes of Article 13 of the Convention. (3) The [F2 Secretary of State] may by order make provision as to co-operation by the Commissioner with the European Commission and with supervisory authorities in other EEA States in connection with the performance of their respective duties and, in particular, as to— (a) the exchange of information with supervisory authorities in other EEA States or with the European Commission, F3... (b) the exercise within the United Kingdom at the request of a supervisory authority in another EEA State, in cases excluded by section 5 from the application of the other provisions of this Act, of functions of the Commissioner specified in the order [F4, and (c) the exercise within the United Kingdom at the request of a supervisory authority in another EEA State, in cases falling within the scope of the Data Protection Framework Decision as it applies to that State, of functions of the Commissioner specified in the order. ] (4) The Commissioner shall also carry out any data protection functions which the [F2 Secretary of State] may by order direct him to carry out for the purpose of enabling Her Majesty’s Government in the United Kingdom to give effect to any international obligations of the United Kingdom. (5) The Commissioner shall, if so directed by the [F2 Secretary of State] , provide any authority exercising data protection functions under the law of a colony specified in the direction with such assistance in connection with the discharge of those functions as the [F2 Secretary of State] may direct or approve, on such terms (including terms as to payment) as the [F2 Secretary of State] may direct or approve. (6) Where the European Commission makes a decision for the purposes of Article 26(3) or (4) of the Data Protection Directive under the procedure provided for in Article 31(2) of the Directive, the Commissioner shall comply with that decision in exercising his functions under paragraph 9 of Schedule 4 or, as the case may be, paragraph 8 of that Schedule. (7) The Commissioner shall inform the European Commission and the supervisory authorities in other EEA States— (a) of any approvals granted for the purposes of paragraph 8 of Schedule 4, and (b) of any authorisations granted for the purposes of paragraph 9 of that Schedule. (8) In this section— “the Convention” means the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data which was opened for signature on 28th January 1981; [F5 “the Data Protection Framework Decision” means the Council Framework Decision 2008/977/ JHA of 27th November 2008 on the protection of personal data processed in the framework of police and judicial cooperation in criminal matters; ] “data protection functions” means functions relating to the protection of individuals with respect to the processing of personal information. 54A. Inspection of overseas information systems (1) The Commissioner may inspect any personal data recorded in— (a) the Schengen information system, (b) the Europol information system, (c) the Customs information system. (2) The power conferred by subsection (1) is exercisable only for the purpose of assessing whether or not any processing of the data has been or is being carried out in compliance with this Act. (3) The power includes power to inspect, operate and test equipment which is used for the processing of personal data. (4) Before exercising the power, the Commissioner must give notice in writing of his intention to do so to the data controller. (5) But subsection (4) does not apply if the Commissioner considers that the case is one of urgency. (6) Any person who— (a) intentionally obstructs a person exercising the power conferred by subsection (1), or (b) fails without reasonable excuse to give any person exercising the power any assistance he may reasonably require, is guilty of an offence. (7) In this section— “the Customs information system” means the information system established under Chapter II of the Convention on the Use of Information Technology for Customs Purposes, “the Europol information system” means the information system established under Title II of the Convention on the Establishment of a European Police Office, “the Schengen information system” means the information system established under Title IV of the Convention implementing the Schengen Agreement of 14th June 1985, or any system established in its place in pursuance of any [F2EU] obligation.] |