GDPR News

A row of European Union flags, featuring yellow stars on a blue background, fluttering on flagpoles. They are set against a modern building facade with a grid of windows. The perspective captures the flags in diminishing order, creating a sense of depth and unity.

March 31, 2026

Commission Confirms Data Breach in Public Web Infrastructure

The European Commission suffered a cyberattack on its public websites, potentially exposing data, while investigations continue with limited details disclosed.

A digital illustration features a silver padlock centered among cascading blue binary code on a black background. The code, consisting of ones and zeros, gives a sense of continuous motion, symbolizing digital security and data protection. The padlock emits a glowing light.

March 20, 2026

EU Moves Forward with Single Entry Point for GDPR and Security Incident Reports

The EU plans a centralized Single Entry Point platform for security incident reporting, extending GDPR breach notification to 96 hours, to simplify compliance across multiple laws.

March 20, 2026

EDPB announces 2026 Coordinated Enforcement Framework on GDPR transparency

The EDPB’s 2026 Coordinated Enforcement Framework targets GDPR transparency obligations, with 25 DPAs assessing compliance and sharing findings for EU-wide improvements.

A digital graphic features a hand behind a translucent padlock symbol encircled by the words "Cyber Security" repeated three times. The background consists of a network of interconnected lines and dots on a dark teal backdrop, emphasizing a theme of digital security.

March 20, 2026

EDPB and EDPS Issue Joint Opinion on EU Cybersecurity Act 2 and NIS2 Amendments

The EDPB and EDPS jointly support enhanced cybersecurity laws in Europe, emphasizing coordination with data protection rules and simplifying breach notifications.

A wooden gavel rests on a closed book, overlaid with the European Union flag featuring yellow stars on a blue background. The composition suggests themes of law and governance within the EU.

March 20, 2026

CJEU Rules on Abuse of GDPR Access Rights and Compensation Claims

The Court ruled GDPR access requests can be refused if made solely to trigger compensation claims rather than to verify lawful data processing.

March 19, 2026

Court Annuls €746 Million GDPR Fine Against Amazon

Luxembourg’s High Administrative Court annulled Amazon’s €746 million GDPR fine over targeted advertising, requiring fault and proportionality reassessment by the CNPD.

March 17, 2026

CJEU to Clarify Consent Under GDPR and ePrivacy Directive

The CJEU will clarify if broad consent for data use by “partners” in direct marketing meets GDPR and ePrivacy Directive requirements.

A burlap pouch lies on top of various Euro banknotes. The visible denominations include 100, 200, and 500. The bills are colorful, each featuring different architectural designs. The pouch is small and textured, contrasting with the smooth, vibrant currency beneath it.

March 12, 2026

GDPR Fines and Data Breach Survey 2025

European GDPR fines remain high at €1.2 billion in 2025, with a 22% rise in daily data breach notifications and increasing regulatory focus on data security and compensation claims.

A person in a white lab coat with a blue stethoscope around their neck is holding and using a smartphone. The person's face is not visible, and they are wearing a checkered shirt underneath the coat. The focus is on the hands and phone, suggesting engagement in a task.

March 12, 2026

EDPB and EDPS Issue Joint Opinion on the European Biotech Act Proposal

The EDPB and EDPS support the European Biotech Act proposal while urging strong data protection measures for clinical trial participants and clear legal roles under GDPR.

A brass padlock engraved with "EUROPE Digital Services Act" and a map of Europe sits on a white keyboard with blue keys. The EU flag, featuring yellow stars on a blue background, is overlaid on the keyboard, symbolizing digital regulation in Europe.

March 11, 2026

EDPB publishes 2025 Report on Coordinated Enforcement Action

The EDPB’s 2025 report reviews GDPR’s right to erasure, highlighting challenges and recommending best practices for effective data deletion across the EU.

A humanoid robot with blue eyes and a white face is on the left side, displaying a neutral expression. The background features a pattern of interconnected circuit lines and nodes against a dark blue backdrop, symbolizing technology and digital networks.

March 11, 2026

Spanish Data Protection Authority Issues Guidance on Agentic AI

The Spanish Data Protection Authority issues detailed GDPR guidance to help organizations manage privacy risks of autonomous agentic AI systems.

Close-up of a computer motherboard featuring a large central chip labeled "AI Artificial Intelligence." The circuit board is illuminated with blue and orange lighting, highlighting various electronic components and intricate pathways.

March 5, 2026

Dutch DPA Warns of OpenClaw AI Security Risks

The Dutch Data Protection Authority warns against using OpenClaw AI due to serious security risks and urges compliance with GDPR to protect personal data.

1 2 3 4 ›»

GDPR News

Commission Confirms Data Breach in Public Web Infrastructure

Support GDPR buzz!

Get notified about news & resources