Draft adequacy decision for Brazil: EDPB adopts opinion 05 November 2025 During its latest plenary, the European Data Protection Board (EDPB) adopted an opinion on the European Commission’s draft decision on the adequate level of protection of personal data in Brazil. Once adopted, the decision will ensure that personal data can flow freely from […]
2025 Global Privacy Enforcement Network sweep focuses on the protection of children’s privacy 03 November 2025 From the 3 to the 7 November 2025, the IDPC will participate to the annual Global Privacy Enforcement Network (GPEN) Sweep that will see more than thirty authorities for the protection of personal data and privacy from around […]
EDPS unveils revised Guidance on Generative AI, strengthening data protection in a rapidly changing digital era 30 October 2025 The European Data Protection Supervisor (EDPS) published its revised and updated guidelines on the use of generative Artificial Intelligence (AI) and processing of personal data by EU institutions, bodies, offices, and agencies (EUIs), reflecting the fast-moving […]
IDPC organises FRIA Workshop 24 October 2025 The Office of the Information and Data Protection Commissioner (IDPC) successfully organised a full-day workshop focused on the requirement to conduct a Fundamental Rights Impact Assessment (FRIA) under Article 27 of the AI Act. The workshop was held in close collaboration with Professor Alessandro Mantelero, an acclaimed […]
Strengthening Schengen security and preventing irregular migration: EU Entry Exit System enters into operation 22 October 2025 On the occasion of the upcoming entry into operation of the EU Entry Exit System (EES) on 12 October 2025, the Coordinated Supervision Committee (CSC) will include the EES system under its scope. This system registers non-Schengen […]
Coordinated Enforcement Framework: EDPB selects topic for 2026 21 October 2025 During its October plenary, the European Data Protection Board (EDPB) picked the topic for its fifth coordinated enforcement action, which will concern compliance with the obligations of transparency and information under the General Data Protection Regulation (GDPR). The GDPR ensures that individuals are informed […]
Draft UK adequacy decisions: EDPB adopts opinions 20 October 2025 During its latest plenary, the EDPB adopted two opinions on the European Commission’s draft decisions on the extension of the validity of the UK adequacy decisions under the General Data Protection Regulation (GDPR) and the Law Enforcement Directive (LED) until December 2031. The EDPB opinions, requested by […]
IDPC launches new Podcast series 16 October 2025 Today we launch our brand-new podcast series! Episode #1 of the IDPC Podcast features the Information and Data Protection Commissioner Ian Deguara and provides an overview of the work of the IDPC. The podcast focuses on the protection of personal data – a fundamental right enshrined […]
AI Regulations come into force – IDPC designated as a Market Surveillance Authority for certain High-Risk AI Systems under Annex III of the AI Act 13 October 2025 On 10 October 2025, the Government published Legal Notice 227 of 2025, entitled the Artificial Intelligence (Designation of the Information and Data Protection Commissioner for the purposes […]
DMA and GDPR: EDPB and European Commission endorse joint guidelines to clarify common touchpoints 09 October 2025 During its latest Plenary, the EDPB and the European Commission endorsed joint guidelines on the interplay between the Digital Markets Act (DMA) and the General Data Protection Regulation (GDPR). These are the first joint guidelines by the Board […]