- Guidelines 01/2021 on Examples regarding Data Breach Notification - version for public consultation
- Guidelines 05/2020 on consent under Regulation 2016/679
- Recommendations 02/2020 on the European Essential Guarantees for surveillance measures
- Recommendations 01/2020 on measures that supplement transfer tools to ensure compliance with the EU level of protection of personal data - version for public consultation
- Guidelines 4/2019 on Article 25 Data Protection by Design and by Default
- Guidelines 2/2019 on the processing of personal data under Article 6(1)(b) GDPR in the context of the provision of online services to data subjects - version adopted after public consultation
- Guidelines 1/2019 on Codes of Conduct and Monitoring Bodies under Regulation 2016/679 - version adopted after public consultation
- Frequently Asked Questions on the judgment of the Court of Justice of the European Union in Case C-311/18 - Data Protection Commissioner v Facebook Ireland Ltd and Maximillian Schrems 24/07/2020
- Information note on BCRs for Groups of undertakings / enterprises which have ICO as BCR Lead SA - 22/07/2020
- Information note on data transfers under the GDPR in the event of a no-deal Brexit - 12/02/2019
- Information note on BCRs for companies which have ICO as BCR Lead Supervisory Authority - 12/02/2019
- Guidelines 3/2018 on the territorial scope of the GDPR (Article 3) - version adopted after public consultation
- Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation - version adopted after public consultation
- Data Protection Officer
- Data Protection impact assessments High risk processing
- Personal data breach notifications
- Automated decision-making and profiling
- Lead Supervisory Authority
- Transparency
- Position Paper on the derogations from the obligation to maintain records of processing activities pursuant to Article 30(5) GDPR
- Recommendation on the Standard Application form for Approval of Controller Binding Corporate Rules for the Transfer of Personal Data
- Recommendation on the Standard Application form for Approval of Processor Binding Corporate Rules for the Transfer of Personal Data, WP 265
- Working Document setting up a table with the elements and principles to be found in Binding Corporate Rules, WP 256 rev.01
- Working Document setting up a table with the elements and principles to be found in Processor Binding Corporate Rules, WP 257 rev.01