CJEU - T-709/21 - WhatsApp Ireland v European Data Protection Board

From GDPRhub
Revision as of 10:11, 27 April 2022 by Kc (talk | contribs) (Created page with "{{CJEUdecisionBOX |Case_Number_Name=T-709/21 WhatsApp Ireland v Comité européen de la protection des données |ECLI= |Opinion_Link= |Judgement_Link=https://curia.europa.eu...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
CJEU - T-709/21 WhatsApp Ireland v Comité européen de la protection des données
Cjeulogo.png
Court: CJEU
Jurisdiction: European Union
Relevant Law: Article 4(1) GDPR
Article 12(1) GDPR
Article 13(1)(d) GDPR
Article 65 GDPR
Article 65(1)(a) GDPR
Article 83 GDPR
Article 41 CFR
Article 48 CFR
Decided:
Parties: EDPB
Case Number/Name: T-709/21 WhatsApp Ireland v Comité européen de la protection des données
European Case Law Identifier:
Reference from:
Language: 24 EU Languages
Original Source: Judgement
Initial Contributor: n/a

See Facts for form of order sought.

English Summary

Facts

Form of order sought

The applicant claims that the Court should:

annul the decision 1/2021 of the European Data Protection Board (EDPB) of 28 July 2021, in total or, in the alternative, in its relevant parts, and

order the Defendant to pay the costs of the proceedings.

Pleas in law and main arguments

In support of the action to annul the binding decision 1/2021 of the EDPB of 28 July 2021, on the dispute arisen on the draft decision of the Irish Supervisory Authority regarding WhatsApp Ireland under Article 65(1)(a) of Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR)1 , the applicant relies on seven pleas in law.

First plea in law, alleging that the EDPB exceeded its competence under Article 65 of GDPR.

Second plea in law, alleging that the EDPB infringed Articles 13(1)(d) and 12(1) GDPR by interpreting and applying these provisions and WhatsApp’s transparency obligations excessively by requesting WhatsApp to provide unrequired information.

Third plea in law, alleging that the EDPB infringed Article 4(1) GDPR by interpreting and applying this provision and the term ‘personal data’ excessively.

Fourth plea in law, alleging the EDPB violated the presumption of innocence as enshrined in Article 48 of the Charter of Fundamental Rights of the EU by inappropriately shifting the burden of proof onto WhatsApp to demonstrate that its processing environment is such that the risks of re-identification of data subjects is purely speculative.

Fifth plea in law, alleging that the EDPB infringed the right to good administration as enshrined in Article 41 of the Charter of Fundamental Rights of the EU by disregarding WhatsApp’s right to be heard and the EDPB’s obligations to carefully and impartially examine evidence and to adequately state reasons.

Sixth plea in law, alleging that the EDPB violated Article 83 GDPR and various underlying principles governing the determination of fines under the GDPR.

Seventh plea in law, alleging that the EDPB violated the principle of legal certainty by failing to acknowledge that its decision puts forward novel interpretations and applications of several provisions of the GDPR, with the consequence that the infringement was unpredictable.

Holding

Holding pending decision.

Comment

Share your comments here!

Further Resources

Share blogs or news articles here!

Retrieved from "https://gdprhub.eu/index.php?title=CJEU_-_T-709/21_-_WhatsApp_Ireland_v_European_Data_Protection_Board&oldid=25530"
Creative Commons Attribution-NonCommercial-ShareAlike
Powered by MediaWiki