EDPS - DPO Hub

EDPS audit of the Commission's MS365 use

members – 11 min read

28 July: EDPS closes its investigation into the European Commission’s use of Microsoft 365, now deeming it compliant after previously finding serious EUDPR violations, notably on purpose limitation and international transfers.

Jul 29, 2025

GDPR 2.0?

members – 6 min read

Latest: 🇩🇰 Digital Affairs Minister wants AI Act & DSA simplified too | EDPB & EDPS shares their Joint Opinion: no derogation for the public sector – and stay tuned for Community meetup! The Commission is proposing to simplify the European Single Market, including the GDPR Articles 4, 30, 40 and 42.

Jul 17, 2025

CJEU C-698/23 P EDPS v Parliament and Council 8 May 2025 AG Opinion

members – 1 min read

An Advocate General Opinion on a case about Europol and regulators – safe to skip for most!

May 11, 2025

🚨 EDPB & EDPS joint letter to the Commission on proposal to simplify ROPA requirements

members –

EDPB & EDPS jointly – positively – responded to the European Commission’s letter proposing to simplify the Article 30 ROPA requirement for SMCs and non-profits with fewer than 500 employees and a “certain annual turnover”, deleting certain references and adding in 'high' risk.

May 8, 2025

The Coordinated Supervision Committee (CSC)

members – 2 min read

New Activities report (likely irrelevant for most). The CSC brings together DPAs and the EDPS to coordinate supervision of large-scale IT systems (e.g. IMI, Europol, SIS, Eurojust) and EU bodies under the EUDPR or relevant EU laws.

Feb 21, 2025

CJEU C-413/23 P EDPS v Single Resolution Board 6 Feb 2025 AG Opinion

members – 1 min read

A much-anticipated case on the concept of personal data, but the AG only advices the CJEU to set aside the General Court’s ruling and send the case back to decide on the second plea (breach of good administration and fair procedure). We're still in the dark on several aspects.

Feb 6, 2025