Regulation (EU) 2018/1725 lays down the data protection obligations for the EU institutions and bodies when they process personal data and develop new policies.
The Regulation repeals Regulation (EC) 45/2001, and, in line with GDPR, adopts a principle-based approach.
The new legal instrument ensures that EU institutions and bodies provide transparent and easily accessible information on how personal data is used, as well as foresee clear mechanisms for individuals to exercise their rights; it also reconfirms, clarifies and enhances the role of data protection officers within each EU institution and of the EDPS.
With Christmas and a new year just around the corner, there is still time for one more catch-up on all things European data protection. In this issue, we have: horizon-scanning releases looking at emerging tech, a look at recent international meetings between data protection authorities, and privacy-focused events to kick off your 2026. Read on!
57th meeting of the EDPS and the Data Protection Officers of the EU institutions, bodies, offices and agencies at the European Food Safety Agency (EFSA), Parma (Italy), 27 & 28 November 2025. See the blog.
We are back and there is a lot to catch up on! Read on for events to register for; new EDPS publications and Opinions on AI and transatlantic data sharing; reflections on events on cross-border data protection, privacy tech and the AI Act; news on EDPS oversight of EU border systems; an update on a key court judgement; and more.
Supervisory Opinion 19/2025 on the draft regulation of the European Committee of the Regions on records and archives management
EDPS Supervisory Opinion 18/2025 on a draft joint controllership arrangement between the European Central Bank and National Competent Authorities in the context of the Single Supervisory Mechanism