The European Data Protection Board (EDPB) has emphasized the need for greater consistency between the General Data Protection Regulation (GDPR) and the rapidly expanding framework of EU digital legislation. Following its December 2024 plenary session, the EDPB released a statement welcoming the European Commission’s second report on the GDPR’s application. The Board underlined the critical importance of harmonizing new digital laws with the GDPR to ensure legal certainty and clarity.

While recognizing the GDPR’s significant role in empowering individuals with control over their personal data, the EDPB highlighted challenges posed by recent regulatory developments, including the Artificial Intelligence (AI) Act and the Digital Services Package. According to the Board, aligning these laws with the GDPR is crucial to prevent regulatory overlaps and confusion across the digital landscape.

“We must establish a cohesive framework to ensure the GDPR seamlessly interacts with emerging digital laws,” said Anu Talus, Chair of the EDPB. “This is about more than regulatory consistency—it’s about enabling businesses and individuals to navigate the digital realm without facing contradictory rules.”

The EDPB reaffirmed its commitment to its 2024-2027 Strategy, which prioritizes enhanced collaboration between data protection authorities (DPAs) and other regulatory entities. A key focus area involves creating practical guidelines to integrate the GDPR with newer regulations, such as the EU AI Act, ensuring clear and complementary enforcement.

Recognizing the need for accessible information, the EDPB also pledged to improve resources for non-experts, particularly small and medium-sized enterprises (SMEs), to help them navigate the intricate regulatory landscape.

However, the Board noted that the increasing complexity of cross-border cases and the rise of new technologies require significant additional resources. The EDPB stressed the importance of allocating more financial and human resources to support DPAs in managing these growing demands.

“We’re witnessing a surge in cross-border cases, and the pace of technological advancement demands greater agility and efficiency,” Talus added. “To meet these challenges, we need adequate resources to sustain effective oversight and enforcement.”

The Board also echoed concerns from the Fundamental Rights Agency (FRA) about the independence of supervisory authorities. It urged the European Commission to evaluate these concerns further, addressing challenges faced by DPAs across member states.

As Europe advances its digital transformation, the call for regulatory clarity, stronger cooperation, and adequate resources becomes ever more urgent. The EDPB’s efforts to foster cross-regulatory collaboration and provide actionable guidance will be instrumental in ensuring the GDPR continues to anchor data protection across an evolving digital ecosystem.