The twelfth plenary session of the European Data Protection Board took place on July 9 and 10 in Brussels. During the plenary a wide range of topics were discussed.

The Board emphasized the need of a comprehensive EU-US agreement regarding cross-border access to electronic evidence, containing strong procedural safeguards for fundamental rights.

The Board adopted an opinion in which it agreed that all codes covering non-public authorities and bodies are required to have accredited monitoring bodies in accordance with the GDPR, as well as an opinion on the competence of a supervisory authority in case of a change in circumstances.

An opinion on the personal data protection aspects of the processing of patients’ data in the eHealth Digital Service Infrastructure was also adopted, in which the Board stressed the need to ensure that all the processor duties of the Commission are set out in the Implementing Act.