Home 禄 Tags

EDPS

Data Protection Day 2026 - 45 Years of Convention 108

Data Protection Day 2026: 45 Years of Convention 108 and the Challenge of Staying Vigilant

On 28 January 2026, we celebrate Data Protection Day, the anniversary of Convention 108. Between GDPR revision proposals, simplification measures, and new technologies, personal data protection requires constant vigilance. An analysis of current challenges supported by empirical data and institutional sources.

28 January 2026 路 12 min 路 NicFab
EDPS Generative AI Guidelines - Version 2 - October 2025

EDPS Releases Revised Guidelines on Generative AI: Strengthening Data Protection in the Digital Era

In-depth analysis of the new EDPS guidelines (version 2) on the use of generative AI systems and compliance with Regulation (EU) 2018/1725. 16 key questions for EU institutions and bodies.

28 October 2025 路 15 min 路 NicFab
Credits Adobe

The EU Court of Justice Clarifies the Limits of Pseudonymization: Data Remains Personal for Those Who Hold the Key

The EU Court of Justice Clarifies the Limits of Pseudonymization: Data Remains Personal for Those Who Hold the Key The EDPS/SRB Case: When Pseudonymized Opinions Remain Personal Data The recent Judgment of the Court of Justice of the European Union (First Chamber) of 4 September 2025 in the Case C-413/23 P of 4 September 2025 provides essential clarifications on the nature of pseudonymized data and transparency obligations for data controllers, with significant implications for anyone managing data sharing processes with third parties. ...

7 September 2025 路 9 min 路 NicFab
Credits Adobe

EDPB-EDPS Joint Opinion 01/2025 on SME Record-Keeping Simplification

馃毃 NEW EDPB-EDPS Joint Opinion on SME Record-Keeping Simplification On 9 July 2025, the European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) released their Joint Opinion 01/2025 on the proposed regulation to simplify record-keeping obligations for small and medium-sized enterprises (SMEs) and small mid-cap companies (SMCs). 馃幆 Key Highlights: Extended threshold: The proposal would raise the employee threshold from 250 to 750 employees for record-keeping exemptions under Art. 30(5) GDPR Broader scope: SMCs (small mid-cap companies) would also benefit from simplified obligations Risk-based approach maintained: High-risk processing activities would still require full compliance regardless of company size Administrative burden reduction: Aims to provide greater flexibility for smaller organizations while maintaining data protection standards 馃挕 EDPB-EDPS Position: The authorities express preliminary support for this targeted simplification initiative, welcoming the risk-based approach that ensures fundamental rights protection remains intact. However, they鈥檝e requested further clarification on the new 750-employee threshold and recommend better alignment with the newly introduced SME/SMC definitions. ...

10 July 2025 路 1 min 路 NicFab
[Machine-learning icons created by Becris - Flaticon](https://www.flaticon.com/free-icons/machine-learning)

The EDPS published the Model Administrative Arrangement for transfers of personal data

EDPS Model

31 July 2024 路 1 min 路 NicFab