PATRICIA III is the third edition of a table-top cyberexercise, named “Personal dATa bReach awareness In Cybersecurity Incident hAndling” (PATRICIA). The exercise takes place on 25 March 2026 from 08:30 to 16:45 at the European Commission, aimed to raise awareness among European Union Institutions, Bodies and Agencies (EUIBAs) staff about personal data breach management.
On 5 June 2025, the EDPS organised the second edition of PATRICIA - Personal dATa bReach awareness in Cybersecurity Incident Handling, a table-top exercise focusing on personal data breach management. It aimed to raise awareness among European Union Institutions, Bodies and Agencies' (EUIBAs) staff about personal data breach management in a cyber-attack context. This is an Executive Summary of the report.
EDPS Formal comments on the draft Implementing Regulation laying down rules for the application of Regulation (EU) No 910/2014 as regards reference standards for qualified certificates for website authentication.
EDPS Formal comments on the draft Implementing Regulation laying down the rules for the application of Regulation (EU) 2018/1727, as regards the technical specifications, measures and other requirements for the establishment and use of the decentralised IT system for secure processing and communication of information.
On 3 October 2024, the European Union Agency for Cybersecurity (ENISA) and the European Data Protection Supervisor (EDPS) jointly organised a table-top exercise titled “Personal Data Breach Awareness In Cybersecurity Incident Handling” (PATRICIA). The event, hosted at the EDPS premises in Brussels, aimed to raise awareness among staff from European Union Institutions, Bodies, and Agencies (EUIs) on managing personal data breaches.