Posted on Monday May 28, 2018

EU Regulation No. 2016/679 relating to the protection of individuals with regard to the processing of personal data and on the free movement of such data, better known by its acronym GDPR, comes into effect on May 25, 2018.

The main consequences of this regulation are, on the one hand, to strengthen the rights of individuals vis-à-vis the use of their personal data and, on the other hand, to require public and private bodies that process this type of data, to guarantee their optimal security.

The upcoming modification of the Data Protection Act will follow the same logic by clarifying the application of certain provisions of the RGPD in relation to the prerogatives falling under the jurisdiction of the State.

The CNMSS has prepared itself in order to be able to comply with the provisions of the GDPR from its date of entry into force, in particular by designating a data protection officer (DPD) responsible for ensuring the protection of personal data in the processing operations it implements and by adapting its organization and procedures accordingly.

The interest of CNMSS for the protection of the personal data of its nationals is not new. In fact, in 2008, it chose to appoint a data protection officer (CIL) responsible for ensuring compliance with the legal provisions in force by carrying out the necessary preliminary formalities with the National Commission for Data Processing and Liberties ( CNIL).
From May 25, 2018, the CIL disappears in favor of the DPD who now replaces it, with increased powers.