On 6 December 2024, the Council of the EU adopted conclusions calling for a stronger mandate and capacity for ENISA, the EU Cybersecurity Agency. Priorities include enhancing EU-wide certification schemes, developing a single reporting platform, and strengthening ties with national CERTs. This means organizations in regulated sectors should expect stricter oversight and certification requirements.🔗 Council...Read More

In March 2025, the Commission proposed targeted amendments to GDPR to reduce compliance costs, especially for SMEs. This includes easing record-keeping obligations and clarifying definitions of SMEs and “small and micro companies” (SMCs). The estimated savings amount to €300 million annually. Still, the proposal keeps safeguards for high-risk processing.🔗 European Commission – Data protection rulesRead More