Public consultation for data breach notification template. NIS2 delays

Welcome to #SypherPrivacyTalks - your data protection, governance and compliance weekly roundup. Bringing you the top stories of the week.

Template for personal data breach notification

edpb.europa.eu • 2+ min read

📝 The EDPB introduced a unified EU‑wide data breach notification template to streamline GDPR reporting, inviting public feedback on it until 5 August 2026. The new template standardises the required fields and guidance under Art 33, to reduce inconsistent reporting and make cross‑border supervisory assessments easier… read more

EU takes France and Spain to court over cybersecurity law delay

brusselssignal.eu • 3 min read

🏛️ The Commission has taken France and Spain to the CJEU for missing the NIS2 transposition deadline, prolonging fragmentation in critical‑sector cybersecurity governance. The delay keeps organisations in legal limbo and stalls the uniform risk‑management and oversight standards NIS2 was meant to enforce… read more

A practical guide to the UK’s new Data Protection complaints regime

algoodbody.com • 7 min read

📜 From 19 June 2026, UK organisations must run a statutory data‑protection complaints process under the Data (Use and Access) Act 2025, formalising controller duties around triage and timely resolution. The regime reinforces accountability by requiring clear intake routes, documented handling and demonstrable oversight… read more

Health data: fine of 5 million euros against IQVIA

cnil.fr/en • 4 min read

💶 The CNIL has fined IQVIA €5 million after ruling that pseudonymised health‑data warehouses remain fully subject to GDPR when the controller retains the re‑identification keys. The decision has governance implications for 100+ operators using similar architectures… read more

👉 Related: GDPR fine of several thousand euros for Romanian Post (article in Romanian)

GDPR at eight: Then, now and what’s coming next

cdp.cooley.com • 10 min read

💡 Eight years on, the GDPR is shifting again, with the Digital Omnibus set to reshape core rules while enforcement and guidance continue to intensify. Organisations need agile governance as regulators expand scrutiny, update adequacy decisions and tighten expectations across AI, cookies and breach response… read more

--

Get connected with us on LinkedIn or by subscribing to our weekly newsletter. We do our best to select the most interesting and relevant content in our field and deliver it to you in a bite-sized format, so you can stay up to date on topics such as Privacy Management & Compliance.