DPA

November 19, 2025

Council Approves Regulation to Streamline Cross-Border GDPR Complaints

The Council approved new rules to speed up and harmonize cross-border GDPR complaints, with uniform criteria, clear procedures, and strict investigation deadlines.

A burlap pouch lies on top of various Euro banknotes. The visible denominations include 100, 200, and 500. The bills are colorful, each featuring different architectural designs. The pouch is small and textured, contrasting with the smooth, vibrant currency beneath it.

October 29, 2025

Court of Appeal upholds GDPR fine against Grindr

Norwegian court upheld a major GDPR fine against Grindr for improper processing and sharing of sensitive and location data, stressing stricter requirements for consent, minimization and safeguards.

Close-up of overlapping Euro banknotes, featuring part of a 20 Euro note with the signature of Mario Draghi and a 50 Euro note showing an architectural arch. The 20 Euro note displays the EU flag with yellow stars and the year 2015. The notes' colors are blue and orange.

October 29, 2025

Dutch regulator fines Experian Netherlands €2.7M for unlawful data use

The Dutch regulator fined Experian Netherlands €2.7M for unlawfully collecting and processing personal data for credit assessments without proper transparency, lawful basis, or data subject rights.

The image shows the Irish flag waving against a clear blue sky. The flag features three vertical stripes: green on the left, white in the center, and orange on the right. It is attached to a white flagpole, and the flag is gently billowing in the breeze.

October 29, 2025

Privacy groups criticise appointment of third Irish DPA Commissioner

Privacy groups warned that the appointment of a former Meta executive as a DPC Commissioner risks conflicts of interest and could undermine independent GDPR enforcement.

A person wearing a light blue shirt is writing on white papers spread across a dark surface. They hold a pen in their right hand, focusing on the task. The background is softly blurred, emphasizing the writing activity.

October 29, 2025

NOYB files criminal complaint over Clearview AI’s GDPR violations

Criminal complaint in Austria seeks prosecution of Clearview AI for mass biometric data scraping after multiple EU GDPR fines and bans exposed enforcement limitations against a U.S. company.

October 14, 2025

EDPB launches coordinated enforcement action on GDPR transparency obligations

The EDPB will coordinate an EU-wide enforcement action on GDPR transparency and information obligations, with national DPAs participating voluntarily and the action launching in 2026.

Close-up of a tablet screen displaying a list of Microsoft Office apps. Visible apps include Outlook, OneDrive, Word, Excel, PowerPoint, OneNote, SharePoint, Teams, Yammer, and Admin. Each app has its respective colorful icon next to its name. The screen has a soft blurred edge.

October 14, 2025

Austria finds Microsoft illegally tracked students

Austrian regulator found Microsoft 365 Education illegally tracked students via cookies; Microsoft must grant data access and faces scrutiny over transparency and GDPR compliance.

A person wearing a white long-sleeved shirt is holding a smartphone in their left hand and using their right index finger to touch the screen. The image focuses on the hands and the phone, with a blurred white background.

September 26, 2025

Investigation reveals sale of precise phone movement data in Ireland

Undercover RTÉ reporting shows minute-by-minute smartphone location data for tens of thousands in Ireland is being sold, enabling re-identification and raising serious privacy and security concerns.

A chocolate chip cookie with a bite taken out rests on a white background. Crumbs are scattered around, adding texture to the scene. The cookie is golden brown with visible chocolate chips, and its rough, crumbly texture is evident.

September 8, 2025

CNIL fines Google €325 million and SHEIN €150 million for cookie non-compliance

The CNIL fined Google (€325M) and SHEIN (€150M) for cookie and ad consent breaches, stressing free, informed consent and sanctioning covert tracking and cookie-wall practices.

Unmade bed with white sheets and pillows next to a large window. Outside, an urban cityscape with tall buildings and a variety of architectural styles is visible. The scene is bright, suggesting daytime, and the view captures a mix of modern and older structures.

September 2, 2025

Spains DPA fines hotels over scanning guest identity documents

AEPD fines Iberostar unit €70,000 for requiring full ID copies at booking; authority stresses GDPR data minimisation and that copies are unnecessary and risky for guest registration.

Airplane wing with a red tip against a clear blue sky. Below, there is an expanse of ocean meeting a sandy coastline, with some white clouds near the coast. The horizon divides the blues of the sky and sea, creating a serene aerial scene.

August 13, 2025

IMY reprimands Flightradar24 for unlawful handling of aircraft owners’ data

IMY reprimanded Flightradar24 for GDPR breaches after routinely demanding aircraft registration certificates, requiring improved erasure procedures and proportional identity verification.

A digital illustration features a silver padlock centered among cascading blue binary code on a black background. The code, consisting of ones and zeros, gives a sense of continuous motion, symbolizing digital security and data protection. The padlock emits a glowing light.

August 13, 2025

Ireland’s DPA Launches Toolkit to Safeguard Vulnerable Adults’ Data

New DPC Adult Safeguarding Toolkit guides organisations on GDPR-compliant collection, storage and sharing of vulnerable adults’ personal data with practical templates and sector collaboration.

1 2 3 4 ›»

DPA

Privacy groups criticise appointment of third Irish DPA Commissioner

Investigation reveals sale of precise phone movement data in Ireland

Support GDPR buzz!

Get notified about news & resources