European Data Protection Directive - Frequently Asked Questions

Transfer of personal data from the EU/EEA to any country outside the EU/EEA is heavily regulated.  As India is a major recipient of personal data (such as through outsourcing contracts), Indian entities dealing with such personal data from the EU/EEA should be aware of the legal framework in the EU/EEA regarding data protection.

These Frequently Asked Questions have been prepared for the purpose of assisting entities in India to understand how personal data is protected in the EU/EEA under Directive 95/46/EC (also referred to as the Data Protection Directive) and their ensuing obligations and exposure to liability when concluding a transaction involving personal data from the EU/EEA.  This does not give legal advice nor is the information exhaustive.  It is for general information and discussion purposes only.

Click here to view / download the FAQs.

Supplement to Legal Framework of Data Protection in the EU

This Supplement is a supplement to, and should be read in conjunction with, the document titled “Legal Framework of Data Protection in the EU”, dated February 19, 2010.  This Supplement provides a summary of the revised standard contractual clauses, approved by the European Commission on February 5, 2010, for transfer of personal data by controllers established in the EU to processors established in third countries, under Directive 95/46/EC.  The information contained in this Supplement is not exhaustive nor does it give legal advice.

Click here to view / download the supplement.

Legal Framework of Data Protection in the EU

The liabilities of the service providers, as an importer of data, are increasing day by day with evolving compliance regulations. These regulations are now proactively advocating governance of Transborder data flow. European Union, in particular is more proactive in issuing directives that would potentially affect service providers. It becomes an imperative to  understand the challenges and legalities of Trans - border data flows from European Union.

Click here to view / download the paper.

AEPD Joint Proposal for a Draft of International Standards on the Protection of Privacy with regard to the processing of Personal Data

In light of the upcoming meeting of the AEPD Working Group on the above proposal on June 11, 2009, the Data Security Council of India (DSCI) is delighted to share its views with the Working Group Members on the proposed EU International Standards.

Click here to view / download the paper.

Send your queries to This e-mail address is being protected from spambots. You need JavaScript enabled to view it