Exam CIPP-E topic 1 question 73 discussion

The main reason GDPR Article 4(22) establishes the concept of the “concerned supervisory authority” is to ensure that the interests of individuals residing outside the lead authority’s jurisdiction are represented. This concept is intended to ensure that individuals have a supervisory authority to turn to in case of concerns regarding cross-border processing activities. It helps to coordinate the actions of different supervisory authorities and ensure consistent enforcement of the GDPR across the EU.

Article 4 specifically mentions representation of affected individuals. It does not mention anything about company 'representatives', only about establishments in said member state.

D. To ensure that the interests of individuals residing outside the lead authority’s jurisdiction are represented. GDPR Article Reference: Article 4(22): Defines "concerned supervisory authority" as a supervisory authority which is concerned by the processing of personal data because: (a) the controller or processor is established on the territory of the member state of that supervisory authority; (b) data subjects residing in the member state of that supervisory authority are substantially affected or likely to be substantially affected by the processing; or (c) a complaint has been lodged with that supervisory authority.

D The concept of a concerned supervisory authority is meant to ensure that the ‘lead supervisory authority’ model does not prevent other supervisory authorities having a say in how a matter is dealt with when, for example, individuals residing outside the lead supervisory authority’s jurisdiction are substantially affected by a data processing activity https://edpb.europa.eu/system/files/2023-04/edpb_guidelines_202208_identifying_lsa_targeted_update_v2_en.pdf

Best Choice - D