Although the GDPR fine value was slightly higher in 2025, the number of personal data breach reports rose even more.

The Irish Data Protection Commission (DPC) remains Europe's largest data enforcer by a wide margin, having issued €4.04 ...

Regulators logged over 400 personal data breach notifications a day for first time since law came into force GDPR fines ...

GDPR enforcement across Europe remained consistently high throughout 2025, with regulators issuing fines totalling ...

International data protection law has taken a lead from the lessons learned in Europe since the introduction of GDPR. What influence have they had in APAC? It has been five years since the enactment ...

Depending on whether you are an optimist or a pessimist, it will have taken the European Commission either three years and two weeks (since the entry into force of the General Data Protection ...

The EDPB is an independent European legal body responsible for ensuring consistent application of EU data protection rules, including the General Data Protection Regulation (GDPR), as well as the Data ...

Over five years have passed since the General Data Protection Regulation (GDPR) was introduced, strengthening the fundamental right to data protection across the EU. It empowered people to gain ...

Concerns have been raised about the use of the data of more than 350,000 children after post-primary schools provided ...

The Data Protection Commission (DPC) has found Tusla failed to demonstrate a lawful basis under General Data Protection Regulation (GDPR) for its processing of a whistleblower’s personal data.

Data protection authorities in Europe are to come under closer scrutiny over the way they're enforcing the General Data Protection Regulation (GDPR). Following a complaint, the European Commission has ...