Privacy Officers Network

28 January 2009

AstraZeneca, London


The subjects discussed at this meeting are:

1. The review of the EU Data Protection Directive

  • Priority areas for change
  • Suggestions, for example, to the Data Protection Expert Group (PL&B International Newsletter December 2008 pp. 12-13)
  • Other?

2. Outsourcing projects to India and other countries without a data protection law

  • IT issues, for example, differences of approach to data security
  • Requirements for processing sensitive data
  • Experience of using EU model clauses for outsourcing agreements
  • Experience of advantages and disadvantages of working with data centres in different countries
  • Other?

3. Binding Corporate Rules

  • Experience of applying for approval with different lead countries
  • Impact of the thirteen countries mutual recognition agreement (PL&B International Newsletter October 2008 p.1 and PL&B international e-news 22nd December 2008)
  • Whether there are signs of a quicker approvals process in different countries
  • Remaining problems in different countries
  • Whether EPON would like to propose any recommendations to the Art. 29 Data Protection Working Party
  • Other?

Host: AstraZeneca