FEDMA_LogoFinal-01FEDMA_LogoFinal-01FEDMA_LogoFinal-01FEDMA_LogoFinal-01
  • Home
  • About us
    • Our Principles
    • National Association Members
    • Corporate Members
    • Governance & team
  • Latest News
  • Policy Area
    • Position Papers
    • Consumer Protection
    • Data Transfers
    • Digital Economy
    • Privacy & Data Protection
  • FASt
  • Projects
    • Unlocking Privacy Enhancing Technologies in marketing and advertising
    • Ethical AI-Powered Marketing Charter
    • AI Policy
    • Educational Hub
    • Sustainability Best Practices Guide
    • Legal Fact pack
  • Contact
Subscribe
✕

What’s wrong with personal data breaches under the GDPR?

30 November 2022

General Data Protection Regulation (GDPR) on blue dotted world map background

This week, FEDMA submitted its contribution to the EDPB’s targeted consultation on the Guidelines 9/2022 on personal data breach notification under GDPR.

Compared to other consultations from the EDPB, this call for feedback addresses a minor update to the guidelines, aiming to clarify the situation for controllers and processors which are not established in the EU.

Specifically, the additional draft paragraph provides that in case of a personal data breach, a non-EU organisation will need to notify “every single authority for which affected data subjects reside in their Member State”, regardless of the “mere presence of a representative in a Member State”.

In its feedback to the EDPB, FEDMA pointed out that the proposed update would result in strengthening existing hurdles that companies face when notifying personal data breaches, including:

  • Significant bureaucratic burdens when navigating through different national notification form systems;
  • the lack of clarity on the cases when DPAs would accept a delayed notification;
  • overreporting data breaches, often with an excessive amount of information, for the fear of being sanctioned, thus “swamping” DPAs with thousands of unnecessary or trivial notifications.

Read FEDMA’s full contribution here.

Share

RECENT NEWS

  • FEDMA wins Benelux Enterprise Awards for “Best Data Marketing Advocacy Body 2026”30 June 2026
  • Ahead of the COREPER meeting, industry coalition calls for meaningful simplification in the digital omnibus24 June 2026
  • FEDMA partnership – Europe’s CMOs Select Julia Goldin as European CMO of the Year 202623 June 2026
  • From Scam Ads to Scam Journeys: A New International Framework for Collective Action18 June 2026

© Fedma 2026

Made with ❤️ by MFM Digital

Contact us

rue de la Loi, 155
BE-1040 Brussels, Belgium

+32 2 779 4268

info@fedma.org

Follow us


EU Transparency registry number: 39300567160-02

Support

Privacy Policy

Terms and Conditions

Intranet

Subscribe
Subscribe Become a member Intranet

Follow us

Support

Terms and conditionsPrivacy PolicyIntranet –

Become a member now

To discuss FEDMA Membership, please contact rdewouters@fedma.org or book an introductory call via Microsoft Bookings.

SEND EMAIL INTRODUCTORY CALL

Never see this message again.

DO NOT MISS OUR NEWS

Subscribe to our Newsletter