#PRMJ2603774AOrder from April 14, 2026 on Special Data Protection Derogation Procedures
AI-generated summary for informational purposes only. Not legal advice. See the original source for the authoritative text.
This law outlines the process for French governmental bodies to request an exemption for handling sensitive data via private cloud services when no suitable public option exists. The request must be submitted electronically and detail the project's requirements and constraints. Approval involves a two-month review by the digital department, which then advises the Prime Minister on the decision.
AI-generated summary. May contain errors. Refer to official sources for legal decisions.
Key Changes
- Defines process for derogation requests from sensitive data protection rules
- Sets a two-month review period for each request
- Involves the Prime Minister in the final approval
Obligations
What this law requires
The requesting administration must submit a derogation request electronically to the direction interministérielle du numérique.
Ministers must submit a request for exemption electronically to the direction interministérielle du numérique for projects involving sensitive data.
The derogation request must include the designation of the requesting administration and the contact details of the representative.
The request for exemption must include the designation of the requesting administration and contact information for the representative.
The request must describe the specific project for which the derogation is requested, including its constraints.