articles

DSA Timeline of Reporting Requirements

The first Transparency Reporting deadline under the DSA is on 16 April 2025. This DSA timeline explains what needs to be done when so that businesses can ensure compliance.

Data Privacy Day 2025: Strengthening Trust Through Privacy Excellence

Data Privacy Day, which is observed every year on 28 January, isn’t just another calendar event; it’s a rallying cry for organizations, individuals, and governments worldwide to prioritise data protection.

Whether you’re tackling data protection requirements under the GDPR, the CCPA, or any other privacy regulation, managing data subject requests navigating international data transfers, or you’re simply future-proofing your operations, strong privacy frameworks are no longer optional — they’re essential.

DSA Checklist: Information to be included in the Transparency Report under the Digital Services Act

Providers of all types of intermediary services are required to publish Transparency Reports at least once a year. However, this obligation differs greatly for the various types of intermediary services with the goal of applying proportionate obligations to their societal impact. Therefore, the reporting obligations follow a staggered approach of increasing scrutiny when moving up the ladder of the criticality of the business types.

Data breaches: why they matter and how to prepare

Data breaches can have severe consequences for individuals and organizations alike, impacting personal privacy, financial stability, and corporate reputation. The GDPR emphasizes swift action and robust data protection to reduce these risks. This guide provides an introduction to handling data breaches under EU and UK GDPR, exploring common types of breaches, preventive steps, and essential response measures, including guidance on managing third-party processors.

The role of the legal representative under the Digital Services Act

The Digital Services Act (DSA) is another key corner stone of the “Digital Strategy for Europe” and part of a new generation of regulations for digital governance. The DSA is designed to protect users against illegal and harmful content and goods as well as the spread of disinformation in the digital world. Its aim is to ensure user safety, protect fundamental rights, and create a fair and open online platform environment. Like the GDPR, the Digital Services Act has extra-territorial scope meaning that it applies irrespective of the providers’ location. Non-EU provider of intermediary services are required to appoint a legal representative as substitution for their own establishment.