NAIH launches AWARE project for GDPR awareness

The National Authority for Data Protection and Freedom of Information (NAIH) has launched the EU-funded AWARE project to increase GDPR awareness among micro and small enterprises, particularly in the beauty and private healthcare sectors. The project will run from 2025 to 2027 and includes research, an information website, webinars, and training.

Hungary Ratifies Council of Europe Convention 108+

Hungary has become the 30th party to ratify the Council of Europe's Convention 108+, an international treaty concerning data protection. This action signifies Hungary's commitment to aligning its data protection laws with international standards.

Hungarian Information Rights System 30th Anniversary Celebration

The Hungarian data protection authority celebrated the 30th anniversary of the country's information rights system with an international conference on September 17, 2025. The event reviewed past achievements, challenges, and future tasks in data protection and freedom of information.

Real Estate Agency Fined for GDPR Violations

The Croatian Personal Data Protection Agency has fined a real estate agency EUR 100,000.00 for processing personal data in violation of the General Data Protection Regulation (GDPR). The agency acted as a controller in this case.

Real Estate Agency Fined EUR 100,000 for GDPR Violations

The Croatian Personal Data Protection Agency has imposed a EUR 100,000 fine on a real estate agency for processing personal data in violation of the General Data Protection Regulation. This action highlights the agency's commitment to enforcing data protection laws.

Croatian Data Protection Agency Fines Real Estate Agency

The Croatian Personal Data Protection Agency has imposed a EUR 100,000 fine on a real estate agency for processing personal data in violation of the GDPR. The agency acted as a data controller and processed data contrary to the regulation's provisions.

Real Estate Agency Fined EUR 100,000 for GDPR Violations

The Croatian Personal Data Protection Agency has fined a real estate agency EUR 100,000 for violating GDPR provisions. The agency acted as a controller and processed data contrary to the regulation.

Real Estate Agency Fined 100,000 EUR

The Croatian Personal Data Protection Agency (AZOP) has fined a real estate agency 100,000 EUR for violations related to data protection. The agency also announced a conference on Data Protection in AI Systems.

DSB Circular on Freedom of Information Act

The Austrian Data Protection Authority (DSB) issued a supplementary circular on December 12, 2025, regarding the Freedom of Information Act. This circular clarifies a previous communication, adjusting a reporting deadline for data submissions.

Data Protection Authorities of Slovakia and Austria Meet

Data protection authorities from Slovakia and Austria met on December 10, 2025, in Bratislava to discuss cooperation and upcoming regulatory changes, including GDPR amendments and new EU digital laws. This meeting follows previous bilateral and regional discussions.

Data Protection Authority 2026 Focus Audits on Processing Security

The Austrian Data Protection Authority (DSB) announced its 2026 focus audits will target processing security under Article 32 GDPR. Procedures against selected controllers and processors are scheduled to begin in March 2026, with a second part announced in June 2026.

Irish and Austrian Data Protection Authorities Meeting

The Austrian Data Protection Authority hosted officials from the Irish Data Protection Commission for a meeting on January 13, 2026. The meeting aimed to discuss matters of mutual interest and further strengthen the close cooperation between the two regulatory bodies, particularly concerning cross-border data protection cases.

Data Protection Authority Joint Database Launched

The Austrian Data Protection Authority and the Parliamentary Committee for Data Protection (PDK) have launched a joint database for their decisions within the legal information system (RIS). This new application, named 'Datenschutz-Aufsichtsbehörden', aims to streamline access to data protection rulings.

Hellenic Data Protection Authority Holds Dialogue Day with Research Community

The Hellenic Data Protection Authority (HDPA) successfully held its "1st Dialogue Day with the Research Community" on October 1, 2025. The event focused on strengthening cooperation with academic and research institutions on data protection issues, including AI applications and privacy-friendly digital wallets.

byRisk Project Newsletter 2 Supports SMEs with Data Protection Risks

The Hellenic Data Protection Authority has released the second newsletter for the European byRisk project, which aims to support small and medium-sized enterprises (SMEs) in identifying and analyzing data protection risks. This issue details project progress, including risk categorization and the design of a new risk assessment tool.

Hellenic DPA byRisk Project: Data Protection for SMEs and Public Awareness

The Hellenic Data Protection Authority has launched the byRisk project, co-funded by the European Commission, to support SMEs in data protection risk assessment and raise public awareness. The project aims to develop tools for SMEs and the general public, with pilot operations expected by March 2026 and an international conference planned for October 2026.

Hellenic DPA Information Day 2026 on Data Protection and AI

The Hellenic Data Protection Authority (HDPA) held an Information Day on Data Protection Day 2026, discussing the GDPR, the proposed AI Act, and the HDPA's role. The event highlighted the need for effective implementation of regulations and adequate resources for the HDPA.

Seminar on Privacy Risks from Personal Data Processing

The Hellenic Data Protection Authority and the University of Piraeus are organizing an online seminar on privacy risks associated with personal data processing, particularly concerning Artificial Intelligence. The seminar is part of the byRisk project and is open to the general public.

CNPD AI Data Protection Training Session

The CNPD is offering a 4-hour in-person training session on Data Protection Basics: Artificial Intelligence. The session, held on April 7, 2026, aims to explain the challenges of AI in relation to data protection and the GDPR.

CNPD Workshop on DAAZ Diploma Ceremony

The CNPD is hosting a workshop and DAAZ diploma ceremony on April 29, 2026, in Luxembourg. The event aims to provide feedback on a previous workshop and recognize participants' achievements in the DAAZ tool.

CNPD AI Data Protection Training Session

The CNPD is offering a 4-hour in-person training session on Data Protection Basics: Artificial Intelligence. The training aims to help participants understand the challenges of AI concerning data protection and the GDPR, and is scheduled for May 5, 2026.

Data Protection Basics Training - RGPD Introduction

The CNPD (Luxembourg's data protection authority) is offering a 5-hour introductory training session on data protection basics and the RGPD. The training is aimed at individuals new to data protection and will be held in French on April 14, 2026, in Belval.

Data Protection Basics Training Session

The CNPD of Luxembourg is offering a free 'Data Protection Basics' training session in French on June 16, 2026. The 5-hour session is designed for individuals new to data protection and aims to explain the core principles of the RGPD. Registration is required via email.

Data Protection Authority Fines iHUNT TECHNOLOGY for Privacy Violations

The National Supervisory Authority for Personal Data Processing in Romania has fined S.C. iHUNT TECHNOLOGY IMPORT-EXPORT SA 20,000 lei for violating data protection laws regarding cookie consent. The investigation found that the company stored non-essential cookies without user consent.

GDPR Sanction for Ordonul Asistenților Medicali Neamț

The National Supervisory Authority for Personal Data Processing in Romania sanctioned Ordonul Asistenților Medicali Generaliști, Moașelor și Asistenților Medicali din România – Filiala Neamț for GDPR violations. The entity received a fine of 2,000 euros and two reprimands for issues related to video surveillance and data subject information.

CJEU Judgment: Online Marketplace Operator as Data Controller

The Court of Justice of the European Union ruled in Case C-492/23 that an online marketplace operator is a data controller under GDPR. The operator must identify and verify sensitive data in advertisements before publication and obtain explicit consent.

GDPR Sanction for Roumasport S.R.L.

The National Supervisory Authority for Personal Data Processing in Romania has sanctioned Roumasport S.R.L. with a fine of 10,000 euros for violating GDPR provisions related to data security. The investigation followed a personal data security breach due to unauthorized access following cyberattacks.

National Supervisory Authority Fines Lenjeria Magică SRL for Data Processing Violation

The National Supervisory Authority for Personal Data Processing in Romania has fined Lenjeria Magică SRL 15,000 lei for violating data processing laws related to website cookies. The company stored non-essential cookies without explicit user consent, breaching provisions of Law no. 506/2004 and Regulation (EU) 2016/679.

Generative AI for Bank Carbon Data Gaps

Banca d'Italia published a paper exploring the use of Generative AI (GenAI) to address gaps and inconsistencies in carbon emission data reported by major Euro area banks. The research assesses GenAI's ability to supplement traditional data sources, noting its potential while also highlighting quality and transparency concerns.

Italian Less Significant Banks' Corporate Lending Deterioration Analysis

Banca d'Italia published an analysis on corporate lending by Italian less significant banks (LSI) compared to significant groups (SI). The study found that LSIs have a higher loan deterioration rate, largely due to a greater proportion of loans to smaller, higher-risk businesses.

AI Adoption Impact on Italian Firms' Productivity and Profitability

Banca d'Italia published a paper analyzing the economic impact of AI adoption on Italian firms. The study found that AI adoption increases productivity and profitability, leading to a reallocation towards more qualified roles without negative overall employment effects.

AI and US Economy: Accounting Perspective on Investment and Production

The Bank of Italy has published a paper analyzing the impact of Artificial Intelligence (AI) infrastructure investments on the US economy. The paper details how AI investments, particularly in data centers, have supported aggregate demand in the US and discusses the global supply chain for AI components.

Banca d'Italia: Expert Assessment in Credit Rating System

The Bank of Italy has published an analysis (N. 79) detailing recent methodological improvements to its internal credit rating system for non-financial companies (ICAS). The study, based on over 25,000 expert assessments from 2016-2022, highlights how expert judgment, including climate and sector risk analysis, significantly enhances rating predictive power and stability during economic stress.

PRAC Recommendations on Safety Signals

The European Medicines Agency's Pharmacovigilance Risk Assessment Committee (PRAC) has adopted recommendations on safety signals discussed between September 29 and October 2, 2025. These recommendations are directly actionable by marketing authorisation holders (MAHs) for both Centrally Authorised Products (CAPs) and Nationally Authorised Products (NAPs).

PRAC Recommendations on Safety Signals

The European Medicines Agency's Pharmacovigilance Risk Assessment Committee (PRAC) has adopted recommendations on safety signals discussed in their October 2025 meeting. These recommendations are directly actionable by marketing authorisation holders (MAHs) for updates to product information.

PRAC Recommendations on Safety Signals

The European Medicines Agency's Pharmacovigilance Risk Assessment Committee (PRAC) has adopted recommendations on safety signals discussed in November 2025. Marketing Authorisation Holders (MAHs) are required to provide supplementary information or update product information based on these recommendations, with specific deadlines for certain signals.

PRAC Recommendations on Signals - January 2026 Meeting

The European Medicines Agency's Pharmacovigilance Risk Assessment Committee (PRAC) has adopted recommendations on safety signals discussed in January 2026. Marketing Authorisation Holders (MAHs) for affected medicinal products are required to update product information within specified timelines.

PRAC Recommendations on Safety Signals

The European Medicines Agency's Pharmacovigilance Risk Assessment Committee (PRAC) has adopted recommendations on safety signals discussed in February 2026. These recommendations require marketing authorisation holders (MAHs) to provide supplementary information or take regulatory action, such as updating product information.

AGCM Investigates Procter & Gamble for Misleading Braun Ads

The Italian Competition Authority (AGCM) has launched an investigation into Procter & Gamble S.r.l. concerning misleading advertising for the Braun Skin i-Expert hair removal device. The authority is concerned that claims of being 'hair-free for two years' may overstate the product's effectiveness and lack sufficient evidence.

Italian Competition Authority Investigates Ambush Marketing for Milan-Cortina 2026

The Italian Competition Authority has launched two investigations and one moral suasion action against supermarket chains Rialto (Il Gigante), MD S.p.A. (MD), and SELEX Gruppo Commerciale S.p.A. (Famila) for alleged ambush marketing related to the Milan-Cortina 2026 Olympic and Paralympic Winter Games. The actions are based on potential breaches of Article 10 of Law Decree No. 16/2020.

Italian Competition Authority Fines Bernabei Companies for Unfair Commercial Practice

The Italian Competition Authority has fined Bernabei s.r.l. and Bernabei Liquori s.r.l. a total of €400,000 for unfair commercial practices. The companies made misleading claims and omitted key information regarding discounts on alcoholic and non-alcoholic drinks advertised on their website and app.

Italian Competition Authority Closes FiberCop and TIM MSA Investigation

The Italian Competition Authority has closed its investigation into the Master Service Agreement between FiberCop and TIM by accepting commitments from the companies. The investigation, opened in December 2024, focused on exclusivity clauses, rebate schemes, and IRU transfer terms. The accepted commitments aim to ensure effective competition and maintain incentives for future investments in fibre infrastructure.

Italian Competition Authority Opens High-Speed Rail Market

The Italian Competition Authority has concluded an investigation into Rete Ferroviaria Italiana (RFI) by accepting binding commitments to open the high-speed rail market. These commitments ensure fair access for a third operator and amend RFI's capacity allocation rules to promote competition and passenger benefits.

Italy Reciprocates Austrian Macroprudential Measure

The Bank of Italy has decided to reciprocate Austria's macroprudential measure, a 1% sectoral systemic risk buffer on exposures to construction and real estate sectors. This measure, effective April 1, 2026, applies to Italian banks and banking groups, with an exemption for institutions with exposures below €100 million.

Eurocoin Indicator Shows Slight Fall in January

Banca d'Italia announced that the Eurocoin indicator, a measure of euro area economic activity, slightly decreased to 0.49 in January 2026 from 0.52 in December 2025. This indicates a continued, albeit softened, phase of cyclical expansion within the euro area.

ECB Banking Data: Assets and Non-Performing Loans Ratio Increase

The European Central Bank (ECB) has published consolidated banking data for the end of September 2025. The data shows a 0.95% increase in total assets to €33.44 trillion and a 0.01 percentage point increase in the non-performing loans ratio to 1.97%.

Banca d'Italia Identifies O-SIIs and Sets Capital Buffer Requirements

Banca d'Italia has identified additional Other Systemically Important Institutions (O-SIIs) and set new capital buffer requirements. BPER Banca and Monte dei Paschi di Siena will be subject to a 0.50% buffer starting April 1, 2026, in addition to previously identified institutions.

Eurocoin Indicator Increased to 0.54 in February

The Bank of Italy announced that the Eurocoin indicator, a summary index of the euro area's current economic situation, slightly increased to 0.54 in February 2026 from 0.49 in January. The indicator is boosted by manufacturing confidence and demand indicators.

Garante Privacy Orders Amazon to Stop Worker Surveillance

The Italian Data Protection Authority (Garante privacy) has ordered Amazon Italia Logistica to immediately stop its worker surveillance system. The authority found that Amazon collected sensitive information on employees, including health conditions, union activities, and personal/family life, violating data protection regulations.

Garante Monitors 'Family in Woods' Case, Recalls Child Protection

The Italian Data Protection Authority (Garante) is monitoring the "family in woods" case and has issued a press release reminding media outlets of their obligations regarding child protection and data privacy. The Garante urges caution in disseminating information that could identify minors.