On July 14th, 2022, the Danish Data Protection Authority issued a reprimand against Helsingor Municipality. It imposed a general ban on using Google Chromebooks and Google Workspace for education in primary schools in the Municipality. The Danish DPA banned such processing and suspended any related data transfers to the United States (U.S.) until it is brought in line with the General Data Protection Regulation (GDPR). The suspension took effect immediately, and the Municipality had until August 3rd, 2022, to withdraw and terminate the processing, as well as delete data already transferred. Finally, in a new decision on August 18th, 2022, the Danish DPA has ratified the ban to the use of Google Chromebooks and Workspace. In the eyes of the Danish DPA, the Municipality failed for example to document that they have assessed and reduced the relevant risks to the rights and freedoms of the pupils. This article is structured as follows: section II provides the background concerning the unfolding events after the Schrems II ruling. Section III discusses the origins and facts of the Danish DPA case. Section IV examines the reasoning and critical findings of the Danish DPA decision. Finally, section V concludes with some general recommendations the Danish municipalities must follow based on the ensuing effects stemming from this case.

翻译：2022年7月14日，丹麦数据保护局对赫尔辛格市发出正式谴责，并全面禁止该市小学在教育活动中使用Google Chromebooks和Google Workspace。丹麦数据保护局禁止此类数据处理行为，并暂停所有相关数据向美国的传输，直至其符合《通用数据保护条例》的规定。该暂停令立即生效，市政府需在2022年8月3日前撤回并终止相关数据处理，同时删除已传输的数据。最终，在2022年8月18日的新裁决中，丹麦数据保护局正式批准了对使用Google Chromebooks和Workspace的禁令。丹麦数据保护局认为，该市政府未能充分记录其已评估并降低对学生权利与自由的相关风险。本文结构如下：第二部分提供Schrems II裁决后事件发展的背景；第三部分讨论丹麦数据保护局案例的起源与事实；第四部分审视该局裁决的论证过程与关键结论；最后，第五部分基于本案产生的后续影响，总结丹麦各市政府必须遵循的若干通用建议。