# XpertDPO publishes submission on EDPB Recommendations on Controller Binding Corporate Rules (BCRs) Canonical URL: https://xpertdpo.com/xpertdpo-publishes-submission-on-edpb-recommendations-on-controller-binding-corporate-rules-bcrs/ Published: 2023-01-20T12:21:22+00:00 Updated: 2026-05-13T16:43:11+01:00 Author: XpertDPO Editorial Team Summary: XpertDPO responded to EDPB recommendations on Controller Binding Corporate Rules, highlighting practical governance, approval and accountability issues for international data transfer compliance. ## Article XpertDPO has provided feedback to the European Data Protection Board (EDPB) on *Recommendations 1/2022 on the Application for Approval and on the elements and principles to be found in Controller Binding Corporate Rules (Art. 47 GDPR)*. The EDPB recommendations build upon the agreements reached by data protection authorities during approval procedures on concrete BCR applications since the GDPR came into force. They also bring the existing guidance in line with the requirements in the Court of Justice of the European Union’s Schrems II ruling, providing clarity for controllers relying on Binding Corporate Rules for international data transfers. XpertDPO welcomes the EDPB’s recommendations and its efforts to ensure a level playing field for all BCR applicants. While the recommendations provide a standard form for the application for approval of BCR for controllers (BCR-C) and clarify the necessary content of a BCR-C, there is still scope for more standardisation to simplify the process for companies considering BCRs as an appropriate safeguard for transfers of personal data to third countries. XpertDPO’s detailed submission to the public consultation has been published on the EDPB website and can be read [here](https://edpb.europa.eu/sites/default/files/webform/public_consultation_reply/XpertDPO%20submission%20on%20EDPB%20recommendations%20on%20BCRS.pdf). If you wish to find out more about the approval process for Binding Corporate Rules you can contact XpertDPO at info@xpertdpo.com or on +353 1 678 8997. ## General Information Only This article is provided for general information and does not constitute legal, regulatory, or professional advice. Data protection obligations depend on the specific facts, context, and jurisdiction involved. You should not rely on this content as a substitute for advice tailored to your organisation. If you would like support with a specific issue, please contact us: https://xpertdpo.com/contact/