Where an organisation processes the personal data of data subjects in more than one Member State or an organisation is established in more than one Member State, dealing with more than one data protection authority (under the old Directive) becomes an administrative burden and introduces uncertainty and inconsistency. To facilitate and manage cross-border processing, the GDPR introduces the concept of a 'lead supervisory authority' which offers a 'one-stop-shop' service by supervising the activities of the organisation and providing, in most cases, a single point of contact for all stakeholders.
Learn more about Controller/Processor outside the EU here
The content herein is provided for your convenience and does not constitute legal advice.
Compliance Technology Solutions B.V. 2018