Rie Aleksandra - DPO Hub

Events 2026

members – 6 min read

Next up: 22-23 Apr 🇳🇴 Oslo: Normkonferansen "den viktigste møteplassen for deg som er interessert i informasjonssikkerhet og personvern i helse- og omsorgssektoren" (Rie's speaking: Skråblikk fra en fersk helse-PVO) | 20-24 Apr 🇮🇹 Venice: Privacy Symposium

Mar 25, 2026

EDPB Plenary meeting agendas and minutes

members – 12 min read

Minutes: 3x EDPB/EDPS Joint Opinions: (AI) Digital Omnibus; Biotech Act | CEF Right to erasure report | Anonymisation/pseudonymisation event report | DPAs peppered with AI-generated complaints and scrutinising 🇺🇸 travels | Agendas: 🚨 DPIA template | 📝 3x interplay Guidelines, 1 Opinion

Mar 24, 2026

CJEU C-526/24 Brillen Rottler 19 Mar 2026

members – 1 min read

If a DSAR is made solely to engineer a compensation claim rather than to verify lawful processing, it can be refused as abusive – even if it's the first request.

Mar 19, 2026

Luxembourg DPA fines Amazon Europe €746m

members – 2 min read

13 March 2026: Amazon with big win – a Luxembourg appeals court has overturned the €746 million fine and referred the case back to the DPA.

Mar 19, 2026

Lawfulness: Legitimate interests

members – 3 min read

17 Mar 2026: 🇳🇴 Datatilsynet with updated legitimate interest guidance. Could this mean the final EDPB Guidelines 1/2024 is just around the corner?

Mar 18, 2026

AI (Act) resources

members – 24 min read

🔥 Council agrees Omnibus VII position to streamline certain AI rules. Next up: negotiations with the European Parliament.

Mar 14, 2026

Personal data breaches – in practice

members – 2 min read

A breach happens. What now? When are you "aware", how do you assess the risk – and who do you need to notify? 📝 Homework: download the revised breach flowchart, tailor it to your organisation and ensure you have a step-by-step process in place.

Mar 8, 2026

EDPB Strategy and Work Programmes

members – 4 min read

💡 EDPB only to do a "targeted update" to DPO Guidelines | "Easing compliance is at the top of the EDPB agenda" – lets see how that plays out in practice.

Mar 7, 2026

Data breaches

members – 3 min read

🇳🇴 DPA with significant breach page change | Upcoming topic page for breaches, prompted by EDPB's summary document. Links so far: Denmark, Finland, France, Greece, Ireland, Italy, Norway, Spain, Sweden, ICO, EDPB, EDPS, EC.

Mar 1, 2026

GDPR 2.0 - Digital Omnibus

members – 24 min read

26 Feb: Simpler GDPR life for SMEs & SMCs moves forward! | 11 Feb: EDPB & EDPS Joint Opinion ready! | Digital Omnibus: COM's proposal to simplify AI, cybersecurity and (personal) data rules to "save businesses up to €5bn by 2029".

Feb 27, 2026

EDPB CEF 2025: Right to erasure (right to be forgotten)

members – 4 min read

💡 Should-read key takeaways for controllers from the final report. And do we need to sift through back-ups when we get an erasure request..?

Feb 22, 2026

EDPB Guidelines 1/2025 Pseudonymisation (public consultation)

members – 2 min read

New report from the Dec 2025 stakeholder event | EDPB hotly debated pseudonymisation guidelines – still in the works.

Feb 18, 2026