Call for proposals limited/restricted to national Data Protection Authorities on reaching out to stakeholders on the new data protection legislation

Topic description

Scope:

Priorities and activities to be co-financed

1. Priorities

Considering Regulation (EU) 2016/679 on the protection of natural persons regarding the processing and free movement of personal data (General Data Protection Regulation), the actions aim to support national Data Protection Authorities in:

Priority 1. Reaching out to stakeholders through raising awareness among business stakeholders, in particular small and medium-sized enterprises, and through the general public.

Priority 2. Building on the experience from the same calls for proposals launched in 2017 and 2019 and depending on the needs of national Data Protection Authorities, further support to national data protection authorities, where necessary, in reaching out to stakeholders to ensure awareness on the data protection legislation and replying to their queries.

In line with the political priorities of the European Commission, the data protection reform is one of the main components of a connected digital single market and, an area of justice and fundamental rights based on mutual trust. It is also an essential part of the European agenda on security.

Since the entry into application of the GDPR on 25 May 2018, the Commission is working with EU Data Protection Authorities and stakeholders, in order to assess the evolving context and needs of the various actors.

For more information, the Commission published in 2018 guidance on the application of the GDPR, including Questions & Answers, factsheets and brochures (https://ec.europa.eu/commission/priorities/justice-and-fundamental-rights/data-protection/2018-reform-eu-data-protection-rules/eu-data-protection-rules_en). In 2019, the Commission published a Communication “Data protection rules as a trust-enabler in the EU and beyond –taking stock”.

2. Description of the activities

Supporting national Data Protection authorities on reaching out to business and citizens by:

• supporting data protection authorities in raising awareness among businesses stakeholders (in particular small and medium-sized enterprises), in replying to their queries on the implementation of the General Data Protection Regulation and in facilitating compliance of small and medium-sized enterprises with the General Data Protection Regulation; this objective can be achieved through the development of “hotlines” or compliance tools;
• supporting Data Protection authorities in their awareness-raising activities aimed at the general public.

Activities must take place in countries participating to the REC Programme to be eligible for funding.

3. Expected results

• increased knowledge and understanding among business stakeholders, in particular small and medium-sized enterprises, about data protection rules;
• increased awareness of data protection among the general public.