Law: Act No. 80 of 7 June 2020 on the Protection of Personal Data (the Act)

Regulator: The Faroe Islands Data Protection Authority (the Authority)

Summary: The Faroe Islands, a self-governing nation within the Kingdom of Denmark, is not part of the EU, and is thus not directly subject to the GDPR.

Conversely, Act No. 80 of June 7, 2020 on the Protection of Personal Data (the Act) governs data protection, entering into effect at the beginning of 2021. Notably, the Faroe Islands has been considered adequate for the purposes of the GDPR since 2010, making it one of a few non-EU jurisdictions to which personal data can be transferred from the EU. The Act, which shares similarities with the GDPR in terms of the principles, rights, and obligations that it sets out.

The Act also established the Faroe Islands Data Protection Authority (the Authority). The Authority is responsible for overseeing compliance with the Act and has been active in enforcing its provisions.