topic - DPO Hub

The DPO role: Key resources

members – 3 min read

🇫🇷 CNIL shares DPO management report template | Key DPO role resources: CJEU, EDPB, DPAs, EDPS, GDPR commentaries and more

May 4, 2026

DPIAs: Key resources

members – 6 min read

New: EDPB public consultation on DPIA template 🔥

Apr 14, 2026

Lawfulness: Legitimate interests

members – 3 min read

17 Mar 2026: 🇳🇴 Datatilsynet with updated legitimate interest guidance. Could this mean the final EDPB Guidelines 1/2024 is just around the corner?

Mar 18, 2026

Personal data breaches – in practice

members – 2 min read

A breach happens. What now? When are you "aware", how do you assess the risk – and who do you need to notify? 📝 Homework: download the revised breach flowchart, tailor it to your organisation and ensure you have a step-by-step process in place.

Mar 8, 2026

Data breaches

members – 3 min read

🇳🇴 DPA with significant breach page change | Upcoming topic page for breaches, prompted by EDPB's summary document. Links so far: Denmark, Finland, France, Greece, Ireland, Italy, Norway, Spain, Sweden, ICO, EDPB, EDPS, EC.

Mar 1, 2026

The DPO role: Article 37(1)(b)

members – 5 min read

10 Oct: Estonia's thresholds for 'large-scale' (5k, 10k, 50k) | Breaking down Article 37(1)(b) key terms: 'core activities', 'regular', 'systematic', 'monitoring' and 'large scale'. And what should you do if you're still unsure whether you need to appoint a DPO? Appoint one voluntarily?

Oct 10, 2025

Lawfulness: Consent

members – 6 min read

Latest update: Luxembourg DPA with updated guidance. Start here for all things consent: when to rely on and not, practical tips and key resources (GDPR, DPD, CFR, OECD, CJEU rulings and EDPB guidance).

Mar 17, 2025

Rights: Access (DSAR, Right of access)

members – 3 min read

All things right of access: Article 15 elements table, a handy flowchart, key CJEU rulings and Rie's practical guide (including how to deal with nightmare DSARs).

Feb 28, 2025