EDPB Sets a 2026-2027 Programme Focused on Compliance and Regulatory Coordination

Summary: The European Data Protection Board adopted its 2026-2027 work programme on February 12, 2026. The programme emphasizes making GDPR compliance easier in practice, reinforcing common enforcement culture across data protection authorities, and issuing guidance in emerging cross-regulatory areas such as generative AI, data-scraping, and the interplay between the AI Act and the GDPR. It also highlights continued work on cooperation tools, transfer mechanisms, and practical compliance materials for broader audiences.

Why it matters: This matters because European privacy governance is increasingly shaped by coordination between regulators, not just by one-off guidance documents. For companies trying to map privacy, AI, and digital-platform obligations into one control environment, the EDPB is signaling that cross-regulatory interpretation is going to become a bigger operational concern.

What to watch: The most important follow-on items are the concrete guidance documents the programme names, especially around generative AI, data-scraping, anonymisation, pseudonymisation, and the AI Act-GDPR boundary. Those will matter more than the programme itself because they are what organizations will eventually have to interpret and implement.

Source: European Data Protection Board

EDPB Sets a 2026-2027 Programme Focused on Compliance and Regulatory Coordination

Related news

EDPB Sharpens Research Guidance and Speeds Up Anonymisation Work

NIST Publishes Hardware Security White Paper on Firmware-Based Monitoring

FTC Targets Noncompete Agreements in Pest Control Enforcement Action