#52026XG02065Notice to Data Subjects Subject to Restrictive Measures under Council Decision 2011/235/CFSP and Council Regulation (EU) No 359/2011 on Iran
AI-generated summary for informational purposes only. Not legal advice. See the original source for the authoritative text.
This law provides notice to individuals affected by certain restrictive measures imposed due to the situation in Iran. It outlines the legal frameworks for processing personal data related to these measures and the responsibilities of the Council of the European Union in managing this data. The law emphasizes the rights of data subjects, including access and correction of their personal data, and describes the conditions under which personal data may be transferred to third countries or organizations.
AI-generated summary. May contain errors. Refer to official sources for legal decisions.
Key Changes
- Introduction of specific rights for data subjects.
- Establishment of data retention periods for compliance.
- Clarification on data transfer conditions to third parties.
Obligations
What this law requires
Council of the European Union must establish and update the list of persons subject to restrictive measures in accordance with Decision 2011/235/CFSP and Regulation (EU) No 359/2011
Council must retain personal data of data subjects for 5 years from the moment the data subject has been removed from the restrictive measures list or until validity expires, or if legal action is pending, until final judgment
Council must obtain personal data from Member States and/or the European External Action Service and may exchange this data with third countries or international organizations only when necessary for public interest reasons or legal defense, and in absence of adequacy decisions, only under specified conditions
Data subjects must provide a copy of identification document (ID card or passport) with identification number, country of issue, validity period, name, address and date of birth when exercising data subject rights
Council must process requests from data subjects exercising rights (access, correction, erasure, restriction, objection) submitted via email to sanctions@consilium.europa.eu with copy to Data Protection Officer