14.04.2026 21:22:00
Дата публикации
2025 became a period of intensive adaptation for the European Data Protection Board (EDPB) to the rapid development of artificial intelligence and the expansion of EU digital legislation. The regulator’s main focus was finding balance between technological progress and the protection of fundamental rights.
One of the key tasks was harmonizing GDPR with new acts. The EDPB adopted guidelines on interaction with the Digital Services Act (DSA) and the Digital Markets Act (DMA), and advanced integration of data protection rules into the context of the AI Act.
Facing business: The Helsinki Declaration A milestone was the adoption of the “Helsinki Statement,” which set a course for openness and simplified compliance. For SMEs this means moving from complex legal interpretations to practical tools: templates, FAQs, and unified forms for breach notifications.
Control and the “Right to be Forgotten” Enforcement practice in 2025 reached new scales: 414 new cross‑border cases were recorded. Within the One‑Stop‑Shop system, 1299 procedures were initiated, 572 of which ended with final decisions. A major Coordinated Enforcement Framework (CEF) review covered 764 companies, assessing compliance with the “right to erasure.”
Blockchain, AI and security Guidelines were adopted on processing personal data via blockchain and on pseudonymisation. A detailed report was also published on privacy risks of large language models (LLMs), with recommendations to mitigate them.
Fines and enforcement The year was marked by significant financial sanctions. Total fines in Europe exceeded €1.145 billion. Ireland (€530.7m) and France (€486.8m) led the way. The most notable case was a €530m fine against TikTok for unlawful data transfers to China.
Organisational work The EDPB Secretariat ensured smooth functioning, organizing over 500 meetings and handling more than 10,000 technical requests. It also defended justice interests, participating in 15 cases before the EU Court.
Conclusion 2025 showed that data protection in Europe is no longer just a set of prohibitions but a dynamic system that speaks the language of business and technology while maintaining legal rigor.
