Changeflow GovPing Data Protection EDPB Adopts 2026-2027 Work Programme for GDPR C...
Routine Notice Added Final

EDPB Adopts 2026-2027 Work Programme for GDPR Compliance

Favicon for www.edpb.europa.eu EDPB News
Published February 13th, 2026
Detected February 13th, 2026
Email

Summary

The European Data Protection Board (EDPB) has adopted its work programme for 2026-2027, focusing on making GDPR compliance easier. Key initiatives include developing ready-to-use templates for organizations on legitimate interest assessments, records of processing activities, and privacy notices.

View original document View source feed page

What changed

The EDPB has released its work programme for 2026-2027, which is aligned with its 2024-2027 strategy and the Helsinki Statement. A primary goal is to simplify GDPR compliance for organizations. To achieve this, the EDPB plans to develop several ready-to-use templates, including those for legitimate interest assessments, records of processing activities, and privacy notices. These templates will supplement existing ones for data breach notifications and data protection impact assessments.

This initiative aims to strengthen dialogue with stakeholders and facilitate GDPR compliance. While this notice outlines future plans and does not impose immediate new obligations, organizations should be aware of the upcoming availability of these compliance tools. The EDPB's focus on easing compliance suggests a continued effort to provide practical support for data protection obligations.

What to do next

  1. Review upcoming EDPB guidance and templates for GDPR compliance tools.
  2. Assess internal processes for alignment with potential new template formats for legitimate interest assessments, records of processing, and privacy notices.

Source document (simplified)

Brussels, 13 February - The EDPB has recently adopted its work programme for 2026-2027,  which is grounded in the four pillars of the EDPB strategy 2024-2027.

The work programme is based on the priorities set out in the EDPB strategy and it also takes into account the commitments made in the Helsinki Statement on enhanced clarity, support and engagement aimed at making GDPR compliance easier, strengthening consistency, and boosting cross-regulatory cooperation.

Easing compliance is at the top of the EDPB agenda

The work programme reaffirms the commitment of the EDPB to simplifying GDPR compliance for organisations, which includes the development of a series of ready-to-use templates for organisations. Following the public consultation on this,  the EDPB decided to develop templates for legitimate interest assessment, record of processing activities and privacy notice/policy in addition to the already announced templates for data breach notifications and data protection impact assessment.

This is also in line with both the Helsinki Statement’s objectives of strengthening dialogue with stakeholders and facilitating GDPR compliance for organisations.

More information about the EDPB work programme can be found here.

Related changes

Favicon for edpb.europa.eu EDPB-EDPS Opinion on Biotech Act Privacy Implications
Priority review Mar 13, 2026 EDPB Documents (GDPR) Government
Favicon for edpb.europa.eu EDPB Letter to EC on US Entry Privacy Implications
Priority review Mar 13, 2026 EDPB Documents (GDPR) Government
Favicon for www.edpb.europa.eu EDPB Conference on Cross-Regulatory Cooperation
Routine Mar 03, 2026 EDPB News Data Protection
Favicon for www.pcpd.org.hk Hong Kong PCPD Arrests Two for Suspected Doxxing
Urgent Mar 13, 2026 PCPD Media Statements (HK) Data Protection
Favicon for www.pcpd.org.hk Global Privacy Authorities Joint Statement on AI-Generated Imagery
Priority review Mar 13, 2026 PCPD Media Statements (HK) Data Protection
Favicon for www.pcpd.org.hk Privacy Commissioner Reports 2025 Work and Data Security Incidents
Priority review Mar 13, 2026 PCPD Media Statements (HK) Data Protection

Source

Favicon for www.edpb.europa.eu
EDPB News edpb.europa.eu/news/news_en
Data Protection
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
European Data Protection Board
Published
February 13th, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Minor

Who this affects

Applies to
Employers Technology companies
Geographic scope
EU-wide

Taxonomy

Primary area
Data Privacy
Operational domain
Compliance
Topics
GDPR Compliance Tools

Browse Categories

Federal Courts 26 State Courts 91 Securities Regulation 6 Financial Regulation 43 Consumer Protection 5 Drug Safety 45 Data Protection 21 Competition 2 Attorneys General 3 Insurance Regulation 5 Trade & Export 36 Legislation 42 Energy Regulation 13 Environment 3 Labor & Employment 2 Tax 1

Get Data Protection alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when EDPB News publishes new changes.

Free. Unsubscribe anytime.