Introduction to Resource Center
This page provides an overview of the IAPP's Resource Center offerings.

Contact Resource Center
For any Resource Center related inquiries, please reach out to resourcecenter@iapp.org.

Europe
 

Resource Center / Topic Pages / Europe

Image

Europe

TOPIC PAGE

Navigate Page

On this topic page, you can find the IAPP’s collection of coverage, analysis and resources covering Europe.

Back to top

News Articles

Europe

View all News Articles

EU reaches provisional agreement to speed up cross-border GDPR enforcement

NEWS ARTICLE

EU lawmakers announce deal on cross-border GDPR enforcement procedures

NEWS ARTICLE

Europe must drastically adapt enforcement strategy against Big Tech

NEWS ARTICLE

EU AI literacy not a far jump for established privacy professionals, regulator says

NEWS ARTICLE

EU commissioner lays out suite of AI governance, consumer protection goals

NEWS ARTICLE

European Commission’s latest AI initiatives look to drive competitiveness, broader integration

NEWS ARTICLE

The advocate general’s opinion in EDPS v SRB: Changing the GDPR and facilitating European innovation?

NEWS ARTICLE

Operational impacts of the EDPB’s opinion on data protection in AI models

NEWS ARTICLE

European Commission proposes UK adequacy deadline extension

NEWS ARTICLE

European commissioner discusses EU-US Data Privacy Framework, potential GDPR reform

NEWS ARTICLE

The AEPD’s approach to AI: Smarter models, better compliance

NEWS ARTICLE

France’s new age verification standard: Tightening controls on access to explicit image sites

NEWS ARTICLE

The EU Digital Services Act: Ready to meet reporting obligations?

NEWS ARTICLE

European Commission withdraws AI Liability Directive from consideration

NEWS ARTICLE

Navigating the new EU cybersecurity standards: The NIS2 Directive and Cyber Resilience Act

NEWS ARTICLE

Preparing for compliance: Key differences between EU, Chinese AI regulations

NEWS ARTICLE

Court upholds EDPB’s authority after challenge from Ireland’s DPC

NEWS ARTICLE

Liability for nonmaterial damage under the GDPR: Approaches of EU, UK courts

NEWS ARTICLE

What’s in a name?’: EDPB publishes draft guidelines on pseudonymization

NEWS ARTICLE

EDPB’s 2024 coordinated enforcement offers window into right of access

NEWS ARTICLE

European General Court renders impactful decision on data transfer litigation

NEWS ARTICLE

EDPB weighs in on key questions on personal data in AI models

NEWS ARTICLE

EDPB releases opinion on personal data use in AI model development

NEWS ARTICLE

Ireland’s DPC details legitimate interest prong of its LinkedIn enforcement action

NEWS ARTICLE

A deep dive into Europe’s approach on personal data processing in AI systems

NEWS ARTICLE

What to know about the EU Cyber Resilience Act

NEWS ARTICLE

UK Data Use and Access Bill offers familiar proposals, eye toward EU adequacy

NEWS ARTICLE

German court decision signals move toward risk-based approach to data transfers

NEWS ARTICLE

EDPB issues draft guidelines on legitimate interest, opinion on processors

NEWS ARTICLE

European Commission report reviews progress of EU-US DPF

NEWS ARTICLE

Report offers drafting recommendations for EU’s general-purpose AI Code of Practice

NEWS ARTICLE

EU Data Act: All your threshold questions answered

NEWS ARTICLE

The state of web scraping in the EU

NEWS ARTICLE

EU AI Act shines light on human oversight needs

NEWS ARTICLE

European Health Data Space: Revolutionizing health care, scientific research in the EU

NEWS ARTICLE

Navigating AI’s uncharted waters: Insights from China’s Model AI Law, EU AI Act

NEWS ARTICLE

EDPB opinion on legality of pay-or-consent models in EU GDPR context

NEWS ARTICLE

Will the EU AI Act work? Lessons learned from past legislative initiatives, future challenges

NEWS ARTICLE

IAPP GPS 2024: European regulators discuss AI Act enforcement, fines

NEWS ARTICLE

How stakeholders are welcoming EU AI Act

NEWS ARTICLE

European Parliament approves landmark AI Act, looks ahead to implementation

NEWS ARTICLE

The ‘hidden obligation’ rides again! EU representatives under GDPR, DSA, NIS2 and others

NEWS ARTICLE

Toward a risk-based approach? Challenging the ‘zero risk’ paradigm of EU DPAs in international data transfers and foreign governments’ data access

NEWS ARTICLE

Implications of EDPB’s looming ‘pay or OK’ guidelines

NEWS ARTICLE

EU countries vote unanimously to approve AI Act

NEWS ARTICLE

EU AI Act: Draft consolidated text leaked online

NEWS ARTICLE

EU crusade against web cookies faces uncertain future

NEWS ARTICLE

EDPB coordinated enforcement sheds light on DPO compliance

NEWS ARTICLE

European Commission upholds 11 adequacy decisions

NEWS ARTICLE

Key takeaways from the CJEU’s recent automated decision-making rulings

NEWS ARTICLE

EU reaches deal on world’s first comprehensive AI regulation

NEWS ARTICLE

Empowering users: A universal interface for digital ad preferences

NEWS ARTICLE

EU DPAs seek proper clampdown on adtech industry

NEWS ARTICLE

Reynders announces European Commission’s latest international data transfer plans

NEWS ARTICLE

EDPB issues binding decision banning Meta’s targeted advertising practices

NEWS ARTICLE

Ireland’s DPC issues 345M euro TikTok children’s privacy fine

NEWS ARTICLE

Beyond GDPR: Unauthorized reidentification and the Mosaic Effect in the EU AI Act

NEWS ARTICLE

Is this the end of consent-less tracking by online platforms in the EU?

NEWS ARTICLE

EU-US Data Privacy Framework adopted, what now?

NEWS ARTICLE

GDPR fine calculation: A look at the EDPB’s new guidelines and the UK’s approach

NEWS ARTICLE

European Commission adopts EU-US adequacy decision

NEWS ARTICLE

The definition of ‘anonymization’ is changing in the EU: Here’s what that means

NEWS ARTICLE

European Parliament vote pushes AI Act significant step forward

NEWS ARTICLE

In scope or not? An EU AI Act decision tree and obligations

NEWS ARTICLE

Europe’s rulebook for artificial intelligence takes shape

NEWS ARTICLE

NGO seeks more Ukrainian privacy awareness amid Russian invasion

NEWS ARTICLE

EDPB launches coordinated enforcement on role of DPOs

NEWS ARTICLE

UK introduces draft data protection reform

NEWS ARTICLE

EDPB welcomes ‘improvements’ to EU-US adequacy decision, concerns remain

NEWS ARTICLE

EU policymakers have adtech in sight for future regulation

NEWS ARTICLE

CJEU issues ruling on DPOs and conflict of interest

NEWS ARTICLE

UK PM overhauls government departments, including focus on innovation and tech

NEWS ARTICLE

A practical guide to anonymization standards across the EU and UK

NEWS ARTICLE

10 takeaways from the Irish DPC decisions on Meta

NEWS ARTICLE

Irish DPC, EDPB Meta decisions raise complex, fundamental questions

NEWS ARTICLE

Irish DPC fines Meta 390M euros over legal basis for personalized ads

NEWS ARTICLE

EU-US draft adequacy decision arrives, EU process begins in earnest

NEWS ARTICLE

A look at European Parliament’s AI Act negotiations

NEWS ARTICLE

The EU’s temptation to break end-to-end encryption

NEWS ARTICLE

Greek DPA imposes 20M euro fine on Clearview AI for unlawful processing of personal data

NEWS ARTICLE

A view from Brussels: The latest on the DSA, DMA and Privacy Shield

NEWS ARTICLE

The value of a UK representative: A response to the DPDI Bill

NEWS ARTICLE

A view from Brussels: EU Council’s Czech presidency eyes ambitious fall lineup

NEWS ARTICLE

Proposed EU AI Act blurs lines between AI developers and data processors under GDPR

NEWS ARTICLE

UK unveils data reform bill, proposes AI regulation

NEWS ARTICLE

A view from Brussels — Reflections on the incoming Czech Republic presidency

NEWS ARTICLE

CJEU ruling on GDPR litigation builds ‘jurisprudence on data protection’

NEWS ARTICLE

Consent as legal basis for EU and UK employment

NEWS ARTICLE

UK, German DPAs talk regulatory priorities, privacy complexities

NEWS ARTICLE

The UK data policy and possible divergences with the European Union

NEWS ARTICLE

EDPS, EDPB chair talk privacy policy in the EU, beyond

NEWS ARTICLE

EU Parliament, Council reach deal on Digital Markets Act

NEWS ARTICLE

EU, US agree ‘in principle’ to new trans-Atlantic data agreement

NEWS ARTICLE

Data portability in the EU: An obscure data subject right

NEWS ARTICLE

A conversation with Ukrainian Dmytro Korchynskyi

NEWS ARTICLE

Key takeaways from CNIL’s draft recommendation on smart cameras

NEWS ARTICLE

Disclosing information on behavioral profiles: the Polish cookie case

NEWS ARTICLE

The EU’s anti-money laundering regulation and data protection: Part II

NEWS ARTICLE

CNIL is latest authority to rule Google Analytics violates GDPR

NEWS ARTICLE

EU Data Governance Act: What privacy professionals need to know

NEWS ARTICLE

Inside the EU’s rocky path to regulate artificial intelligence

NEWS ARTICLE

Why US-based companies should care about the Norway DPA’s interpretation of GDPR consent

NEWS ARTICLE

Belgian DPA fines IAB Europe 250K euros over consent framework GDPR violations

NEWS ARTICLE

Austrian DPA’s Google Analytics decision could have ‘far-reaching implications’

NEWS ARTICLE

CNIL sets parameters for processors’ reuse of data for product improvement

NEWS ARTICLE

CNIL’s ePrivacy fines reveal potential enforcement trend

NEWS ARTICLE

The EU’s digital strategy and what it means for privacy

NEWS ARTICLE

EDPB discusses data transfer guidance considerations, key points

NEWS ARTICLE

CNIL releases its own privacy maturity self-assessment model

NEWS ARTICLE

Irish DPC WhatsApp decision: What do you need to know?

NEWS ARTICLE

Digital welfare fraud detection and the Dutch SyRI judgment

NEWS ARTICLE

EU considers canceling trade, data flow talks with US

NEWS ARTICLE

What can we learn from the Garante’s recent 2.5M euro fine?

NEWS ARTICLE

Comparing the role of the DPO under the GDPR and Turkish law

NEWS ARTICLE

European Health Data Space: Repairing the trans-Atlantic data relationship through biotech R & D

NEWS ARTICLE

European Commission adopts UK adequacy decisions

NEWS ARTICLE

EDPB rapporteur details board’s supplementary measures

NEWS ARTICLE

EDPB rapporteur details board’s supplementary measures

NEWS ARTICLE

EDPB’s data transfer recommendations adopt a risk-based approach with teeth

NEWS ARTICLE

Top-10 do’s and don’ts for service providers implementing the new SCCs with EU customers

NEWS ARTICLE

EU-US data transfer deal still work in progress, despite new alliance

NEWS ARTICLE

What’s behind the EU’s new Cloud Code of Conduct?

NEWS ARTICLE

Russia amends data protection law to increase personal data subjects’ rights

NEWS ARTICLE

New urgency about data localization with Portuguese decision

NEWS ARTICLE

EU grappling with potential one-stop shop reform

NEWS ARTICLE

Why the EDPB should avoid torpedoing BCRs for processors

NEWS ARTICLE

NIS representation in the EU and UK — Was the March 31 deadline a turning point?

NEWS ARTICLE

Why this French court decision has far-reaching consequences for many businesses

NEWS ARTICLE

GDPR representatives in EU and UK after Brexit

NEWS ARTICLE

Look but don’t touch — Russia to restrict processing of public data

NEWS ARTICLE

European Commission releases draft UK adequacy decisions

NEWS ARTICLE

Croatian DPA shutters website: Protection of personal data or violation of freedom of speech?

NEWS ARTICLE

EU Council ambassadors agree to negotiating position on ePrivacy Regulation

NEWS ARTICLE

Comparing EU regulatory norms with incident reporting obligations

NEWS ARTICLE

How does GDPR apply to clinical trial sponsors outside EEA? Views of EEA DPAs

NEWS ARTICLE

CJEU’s advocate general: One-stop shop means one-stop shop

NEWS ARTICLE

CJEU opinion clarifies cross-border enforcement scenarios

NEWS ARTICLE

UK, EU reach interim data flow agreement

NEWS ARTICLE

Encrypt your data to make GDPR and Russian Data Localization Law compatible

NEWS ARTICLE

Irish DPC finalizes 450K euro GDPR fine against Twitter

NEWS ARTICLE

Proposal for an EU Data Governance Act — a first analysis

NEWS ARTICLE

European Commission expected to unveil Digital Services Act in December

NEWS ARTICLE

European Commission publishes proposed replacement SCCs

NEWS ARTICLE

Nonprofit group approved for new collective action ability in Belgium

NEWS ARTICLE

EU regulators ponder potential avenues to address AI

NEWS ARTICLE

2 years, 2 fines, 2 banks: Croatia DPA advocating for right of access to credit documentation

NEWS ARTICLE

EU, US initiate talks on potential ‘enhanced’ Privacy Shield

NEWS ARTICLE

Critics on Croatia’s ePrivacy proposal: Legitimate interest provisions not legitimate

NEWS ARTICLE

Europe aims to take global lead with strategies on AI, data

NEWS ARTICLE

European Commission publishes data strategy, AI white paper

NEWS ARTICLE

Croatian Presidency tempers expectations on ePrivacy progress

NEWS ARTICLE

How the ePrivacy Regulation talks failed … again

NEWS ARTICLE

EDPS candidates tabbed, interviews to come

NEWS ARTICLE

Portugal’s data protection law went into effect

NEWS ARTICLE

How to interpret Sweden’s first GDPR fine on facial recognition in school

NEWS ARTICLE

EU aims to regulate AI ethics

NEWS ARTICLE

EU stresses lawfulness in new ethical AI guidelines

NEWS ARTICLE

GDPR implementation in Lithuania: Almost a year in review

NEWS ARTICLE

Belgium finalizes GDPR implementation: A practitioner’s view

NEWS ARTICLE

Privacy’s role in the Article 7 proceedings against Hungary

NEWS ARTICLE

EDPB secretariat, Dutch DPA foreshadow EDPB plenary

NEWS ARTICLE

EDPS: We need to move the needle on ethics

NEWS ARTICLE

Lithuania adopts new Law on Legal Protection of Personal Data

NEWS ARTICLE

European Data Protection Board issues update after second plenary meeting

NEWS ARTICLE

In these three countries, employee consent may be the only way to transfer their data

NEWS ARTICLE

Blockchain: Practical use cases for the privacy pro — Learning from Estonia

NEWS ARTICLE

When the GDPR is not quite enough: Employee privacy considerations in Russia, Belarus, and Ukraine

NEWS ARTICLE

Inside the ePrivacy Regulation’s furious lobbying war

NEWS ARTICLE

LIBE votes to push Lauristin’s ePrivacy Regulation forward

NEWS ARTICLE

MEPs debate ePrivacy Regulation’s merits ahead of July 10 deadline

NEWS ARTICLE

Introducing: The ePrivacy Regulation’s key player

NEWS ARTICLE

Why Russia blocked four messengers

NEWS ARTICLE

Will the ePrivacy Reg overshadow the GDPR in the age of IoT?

NEWS ARTICLE

The ePrivacy Regulation: It’s not just about cookies anymore

NEWS ARTICLE

Why LinkedIn was banned in Russia

NEWS ARTICLE

European Commission proposes formal ePrivacy Regulation

NEWS ARTICLE

View More

Back to top

Research Articles

Europe

View all Research Articles

Top 10 operational impacts of the EU AI Act – Regulatory implementation and application alongside EU digital strategy

RESOURCE ARTICLE

Top 10 operational impacts of the EU AI Act – Post-market monitoring, information sharing, and enforcement

RESOURCE ARTICLE

Top 10 operational impacts of the EU AI Act – AI Assurance across the risk categories

RESOURCE ARTICLE

Top 10 operational impacts of the EU AI Act – Governance: EU and national stakeholders

RESOURCE ARTICLE

Top 10 operational impacts of the EU AI Act – Obligations for general-purpose AI models

RESOURCE ARTICLE

Top 10 operational impacts of the EU AI Act – Obligations on nonproviders of high-risk AI systems

RESOURCE ARTICLE

Top 10 operational impacts of the EU AI Act – Understanding and assessing risk

RESOURCE ARTICLE

Top 10 operational impacts of the EU AI Act – Subject matter, definitions, key actors and scope

RESOURCE ARTICLE

Global AI Governance Law and Policy: EU

RESOURCE ARTICLE

Pay, OK or a third way: Context, analysis from the EDPB’s opinion

RESEARCH ARTICLE

EU elections explainer: Heading into the next term, reading the smoke signals

RESOURCE ARTICLE

Global AI Governance Law and Policy: UK

RESOURCE ARTICLE

EU elections explainer: 2024, a transition year into EU leadership overhaul

RESOURCE ARTICLE

Data without borders: EU e-Evidence package facilitates access to private data across jurisdictions

RESEARCH ARTICLE

EU-US data adequacy litigation begins

RESEARCH ARTICLE

Contentious areas in the EU AI Act trilogues

RESEARCH ARTICLE

A practical comparison of the EU, China and ASEAN standard contractual clauses

RESOURCE ARTICLE

The Atlantic Declaration: Data bridges, privacy and AI

RESEARCH ARTICLE

Ireland DPC’s data transfers decision: Pragmatic punch or knockout blow?

RESEARCH ARTICLE

Going back to basics for the EDPB’s year of the DPO

RESOURCE ARTICLE

CNIL’s Secretary General rolls out plans for 2023 at DPI France

RESEARCH ARTICLE

Top ten takeaways from the draft UK GDPR reform

RESEARCH ARTICLE

Practical considerations from EU enforcement: One-stop shop

RESOURCE ARTICLE

Practical considerations from EU enforcement: legal bases and transparency

RESOURCE ARTICLE

The EU-US Data Privacy Framework: A new era for data transfers?

RESEARCH ARTICLE

Sanctions under EU GDPR and recent data regulations: A case of double jeopardy?

RESEARCH ARTICLE

Commission proposal for a regulation on the European health data space

RESEARCH ARTICLE

The way the third-party cookie crumbles: Part 1 – EU and UK developments

RESEARCH ARTICLE

The EU’s DMA and DSA: Why this should be of interest to privacy pros

RESEARCH ARTICLE

EU adequacy decision for South Korea

RESEARCH ARTICLE

EDPB’s data transfer recommendations adopt a risk-based approach with teeth

RESEARCH ARTICLE

ePrivacy Regulation — Q&A on select topics

RESEARCH ARTICLE

The Irish High Court judgment on EU-US data flows

RESEARCH ARTICLE

Next-gen privacy: Examining the EU’s ePrivacy Regulation

RESEARCH ARTICLE

Political and legal framework of German DPAs: The question of centralization

RESEARCH ARTICLE

DPAs on the Ground

WHITE PAPER

EU representative on ‘How to operationalize Article 27’ of the GDPR

RESEARCH ARTICLE

Privacy 2030: A New Vision for Europe

WHITE PAPER

In Memoriam: Giovanni Buttarelli, 1957–2019

RESOURCE ARTICLE

What the GDPR Requires of and Leaves to the Member States

WHITE PAPER

European Commission weighs in on Microsoft Ireland case

RESEARCH ARTICLE

A brief history of the General Data Protection Regulation (1981-2016)

RESOURCE ARTICLE

View More

Back to top

Tools and Trackers

Europe

View all Tools and Trackers

Digital Governance in Europe: A Stakeholder Map of European Institutions and Regulators

TOOL

EU Product Liability Directive Reform: 101

CHART

European Strategy for Data – Overview of New Regulations

CHART

EU NIS2 Directive: 101

CHART

EU AI Act Compliance Matrix

CHART

Global Cross-Border Privacy Rules – Guidance and Resources

TOOL

Implementing Trans-Atlantic Transfers

CHART

European Parliament term recap

CHART

EU AI Act: 101

CHART

EU AI Act: The web of regulatory intersections

INFOGRAPHIC

EU AI Act Stakeholder Map

TOOL

Navigating Government Access to Private Data in the EU

INFOGRAPHIC

EU Data Act: 101

CHART

Key dates for EU initiatives

TOOL

EU AI Act cheat sheet

INFOGRAPHIC

EU Digital Services Act: 101

CHART

EU Digital Markets Act: 101

CHART

Countries At-a-Glance: Privacy and Consumer Trust

INFOGRAPHIC

EU-US Data Privacy Framework – Guidance and Resources

TOOL

GDPR at Five

INFOGRAPHIC

EU decision-making at a glance: How do EU laws get approved?

TOOL

GDPR Genius

CUSTOM TOOL

UK DPDI Bill: Comparative analysis with the EU GDPR and ePrivacy framework

TOOL

EU Data Governance Act: 101

CHART

DPA and government guidance on ‘Schrems II’

TOOL

EU Standard Contractual Clauses (Word documents)

TOOL

Frequently Asked Questions & Resources on ‘Schrems II’

TOOL

ICO, CNIL, German and Spanish DPA revised cookies guidelines: Convergence and divergence

CHART

The impact of the CJEU’s decision on ‘Schrems II’

INFOGRAPHIC

Cookie Guidance from Greece

CHART

EU Member State DPIA Whitelists, Blacklists and Guidance

TOOL

GDPR Awareness Guide

INFOGRAPHIC

View More

Back to top

Podcasts, Videos, Web Conferences

Europe

View all: Podcasts, Videos, Web Conferences

EU Data Act: Dive into the new rules on data access and use

WEB CONFERENCE

Are you ready for NIS2? The impact of Europe’s new cybersecurity directive

VIDEO

Sharing is (health)caring? A look into the new European Health Data Space

WEB CONFERENCE

EU AI Act compliance: How can a privacy program give a head-start?

WEB CONFERENCE

Get ready for the EU AI Act: Priorities for compliance

VIDEO

Adtech: Practical takeaways from recent EU developments

WEB CONFERENCE

Inside the EU AI Act negotiations: A conversation with Laura Caroli

PODCAST EPISODE

Consent or Pay: The EDPB weighs in

VIDEO

Preparing to implement the EU AI Act

VIDEO

The EU AI Act: A view from the lawmaker on next steps

VIDEO

The EU AI Act: A major moment in the digital world

VIDEO

Breaking down the EU AI Act

VIDEO

Luca Bertuzzi on the EU AI Act’s political deal and what’s next

PODCAST EPISODE

The EU AI Act: ‘We have a deal!’ Now what?

VIDEO

EU data transfers: The latest and what comes next

VIDEO

The EU-U.S. Data Privacy Framework in practice

VIDEO

The EU Artificial Intelligence Act: A look into the EU negotiations

VIDEO

Unpacking the DPC’s data transfers decision

VIDEO

The EDPB Coordinated Enforcement Action on the role of DPOs

VIDEO

EDPB/DPC decisions on data transfers: What is expected?

VIDEO

EU-U.S. Data Privacy Framework: New Independent, Binding Redress Mechanism

WEB CONFERENCE

Quo Vadis Europe? IAPP Country Leaders’ predictions for 2023

VIDEO

Privacy Around the Globe: United Kingdom

VIDEO

EDPB’s Meta decisions explained: Resolving the adtech dispute

VIDEO

The EU AI Act: A discussion with MEP and co-rapporteur Dragoș Tudorache

PODCAST EPISODE

The EU-US Data Privacy Framework and next steps for data transfers

VIDEO

IAPP country leaders weigh in: What’s next for data protection in Europe?

VIDEO

EU Artificial Intelligence Act Proposal: What could it change?

VIDEO

A view from Brussels: GDPR & DGA, DSA, DMA: When the rubber meets the road

VIDEO

From the AI Act to the DSA: Catching up on the EU’s digital agenda

PODCAST EPISODE

New EDPB Guidelines: What is a data transfer under the GDPR?

VIDEO

Talks for DPOs by Dutch DPOs

WEB CONFERENCE

The EU AI Regulation — What’s New and What’s Not?

VIDEO

EU-U.S. Data Transfers: The Road Ahead

VIDEO

The Privacy Advisor Podcast: Debrief on ePrivacy Regulation, Schrems II case

PODCAST EPISODE

View More

Back to top

Back to Top

Back to top