This report highlights a complex situation in which some forms of data localisation are seen as useful and largely uncontroversial, while others as a significant barrier to the digital economy.
The Fundamentals have been drawn up by the Data Protection Commission (DPC) to drive improvements in standards of data processing. They introduce child-specific data protection interpretative principles and recommended measures that will enhance the level of protection afforded to children against the data processing risks posed to them by their use of/ access to services in both an online and offline world.
This document is intended to complement the Guidelines WP 250 and it reflects the common experiences of the Supervisory Authorities of the EEA since the GDPR became applicable.
With this report ENISA aims to support EU countries with their transposition of new European Electronic Communication Code (EECC).
This document seeks to provide thorough analysis and guidance of the criteria to apply restrictions under Article 23 GDPR.
This Study discusses the concept of “European Digital Sovereignty”, opportunities opened by the concept but also the risks and pitfalls.
Read the policy brief to learn about the challenges associated with defining location data, when location data is considered “personal” data, and the specific legal protections for location data in the United States and around the world.
This GDPR Data Protection Impact Assessments (DPIA) for Digital Advertising under GDPR Guide provides background and describes the DPIA process […]
The report discusses the potential implications for fundamental rights and analyses how such rights are taken into account when using or developing AI applications.
This code will guide practitioners through the practical steps they need to take to share data while protecting people’s privacy.
This study examines the setting up of regulatory sandboxes and innovation hubs as part of the overall strategies pursued by jurisdictions in response to the FinTech developments.
This survey investigates many misconceptions, unclarities, and past discussions about how the requirements of the GDPR and other privacy regulations are to be dealt with in the blockchain space.