The Court of Justice of the European Union (CJEU) ruled on Tuesday 15 June on the exercise of the powers of national supervisory authorities in relation to cross-border data processing (Case C-645/19).
These national authorities, the Court ruled, may bring, under certain conditions, any alleged breach of the General Data Protection Regulation (GDPR) before a court in a Member State, even if it is not the ‘lead’ authority (see EUROPE B12635A16).
The GDPR designates the Irish data...