transparency

March 20, 2026

EDPB announces 2026 Coordinated Enforcement Framework on GDPR transparency

The EDPB’s 2026 Coordinated Enforcement Framework targets GDPR transparency obligations, with 25 DPAs assessing compliance and sharing findings for EU-wide improvements.

A child with short brown hair is sitting at a wooden table, facing a laptop screen. The screen displays a virtual classroom or online learning platform. The child rests their chin on their hands. A potted plant is in the background on the table.

November 4, 2025

International privacy regulators target children’s apps and websites in 2025 sweep

Over 30 privacy authorities will review child-focused websites and apps Nov 3–7, 2025, checking data collection, transparency, age assurance, and privacy safeguards under data protection rules.

Close-up of a computer motherboard featuring a large central chip labeled "AI Artificial Intelligence." The circuit board is illuminated with blue and orange lighting, highlighting various electronic components and intricate pathways.

October 30, 2025

EDPS Revises Generative AI Guidance for EU Institutions

EDPS updated guidance strengthens data protection rules for generative AI used by EU institutions, adding a practical compliance checklist and clearer controller/processor responsibilities.

Close-up of overlapping Euro banknotes, featuring part of a 20 Euro note with the signature of Mario Draghi and a 50 Euro note showing an architectural arch. The 20 Euro note displays the EU flag with yellow stars and the year 2015. The notes' colors are blue and orange.

October 29, 2025

Dutch regulator fines Experian Netherlands €2.7M for unlawful data use

The Dutch regulator fined Experian Netherlands €2.7M for unlawfully collecting and processing personal data for credit assessments without proper transparency, lawful basis, or data subject rights.

October 14, 2025

EDPB launches coordinated enforcement action on GDPR transparency obligations

The EDPB will coordinate an EU-wide enforcement action on GDPR transparency and information obligations, with national DPAs participating voluntarily and the action launching in 2026.

Close-up of a tablet screen displaying a list of Microsoft Office apps. Visible apps include Outlook, OneDrive, Word, Excel, PowerPoint, OneNote, SharePoint, Teams, Yammer, and Admin. Each app has its respective colorful icon next to its name. The screen has a soft blurred edge.

October 14, 2025

Austria finds Microsoft illegally tracked students

Austrian regulator found Microsoft 365 Education illegally tracked students via cookies; Microsoft must grant data access and faces scrutiny over transparency and GDPR compliance.

Several multicolored file folders are closely packed together on a shelf. They are filled with various documents, evident from the tabs and papers peeking out. The folders are organized in a slightly curved, staggered arrangement, creating a colorful and orderly display.

July 8, 2025

Irish DPA Publishes 2025 Case Studies

The Irish Data Protection Commission’s 2025 case studies reveal key trends in GDPR enforcement, with fines up to €1.2 million for breaches involving access requests, security failures, and transparency issues.

June 16, 2025

Meta AI App Shares Private User Conversations Publicly Without Consent

Meta’s AI app exposes users’ private conversations publicly without clear consent, raising serious GDPR privacy and data protection concerns.

June 12, 2025

Swedish Court Uphelds GDPR Fine on Spotify for Data Processing Failures

Court upheld Spotify AB’s 5.2 million euros fine for failing to provide clear GDPR information and safeguards for personal data processing and transfers.

Two overlapping white speech bubble cutouts on a vibrant pink background. The cutouts have a textured appearance, and both point towards the bottom left. The bold contrast between the white speech bubbles and pink background creates a striking visual effect.

May 27, 2025

Italian Authority Fined Luka Inc. €5 Million for GDPR Violations in Replika Chatbot

Italian Supervisory Authority fined Luka Inc. €5 million for GDPR violations related to Replika chatbot’s data processing, transparency, and age verification failures.

A close-up of a laptop keyboard with a unique blue key featuring the European Union flag, replacing the enter key. A finger is pressing this key. The keyboard includes black keys with white lettering and a silver casing, with part of the speaker grille visible on the right.

February 13, 2025

EDPB’s CSC Releases Biannual Activity Report

The CSC’s report highlights its role in supervising EU IT systems, issuing transparency recommendations, and preparing for future expansions to ensure data protection.

December 19, 2024

Netflix Fined €4.75 Million for Insufficient Transparency

The Dutch DPA fines Netflix €4.75 million for inadequate customer information on personal data handling, violating GDPR regulations.

1 2 3 4 ›»

transparency

Meta AI App Shares Private User Conversations Publicly Without Consent

Italian Authority Fined Luka Inc. €5 Million for GDPR Violations in Replika Chatbot

Support GDPR buzz!

Get notified about news & resources