Author: Banco de España.
This report is the outcome of the Schuman Programme project undertaken by the Banco de España to study how the ESCB/SSM institutions have interpreted the most important aspects of the GDPR. It takes stock of the information received through a questionnaire on the implementation of the GDPR in the context of central banks’ and competent authorities’ activities, distributed to 37 institutions.
The GDPR leaves many aspects open for interpretation and, in order to comply diligently with the accountability principle, the Banco de España considers it relevant to know how those aspects have been interpreted by institutions in other European jurisdictions that perform similar tasks to those of the Banco de España. As GDPR implementation is ongoing, this report aims at sharing best practices and ways of implementing the requirements of this regulation in various European central banks and competent authorities. It should be seen as a starting point for initiating a deeper discussion on various practical implementation tools and methods.
The more coherent the common approach to the GDPR in various European central banks and competent authorities is, the better their common understanding of and compliance with the GDPR will be.