OneTrust GDPR Deep Dive Series Chapter 10: Delegated Acts and Implementing Acts & Chapter 11: Final Provisions

Chapter 10 of the General Data Protection Regulation (GDPR) gives the European Commission the authority to adopted provisions in accordance with Article 12(8) and 43(8). The Commission will be able to develop standardised icons and imagery to be used to communication information as well as develop GDPR certification mechanisms. This power can be revoked at any time by either the European Parliament or the Council of the EU.

Chapter 11 confirms the repeal of the Data Protection Directive (Directive 95/46/EC) on May 25, 2018 and states that any previous references to the Directive or the Article 29 Working Party in existing legislation should be construed, respectively, as references to the GDPR and the European Data Protection Board (EDPB).

The chapter also creates a standardised reporting procedure through which the Commission will report on the GDPR to EU Parliament and the Council every four years starting on 25 May 2020.

Chapter 10 Articles & Descriptions

Article 92: Exercise of the Delegation
Article 93: Committee Procedure

Chapter 11 Articles & Descriptions

Article 94: Repeal of Directive 95/46/EC
Article 95: Relationship with Directive 2002/58/EC T
Article 96: Relationship with Previously Concluded Agreements
Article 97: Commission Reports
Article 98: Review of Other Union legal Acts on Data Protection
Article 99: Entry into Force and Application

GDPR will come into effect on May 25, 2018, and OneTrust believes that every global organization should start considering how to best implement efficient and effective data-handling practices that are replicable and consistent. The GDPR Deep Dive Series delves into each chapter of the GDPR to summarize key takeaways of the new governance in an easy-to-digest format. It is intended to help privacy executives with implementation and operationalization of GDPR regulations, and will be published bi-weekly on our blog.