Dastra's Blog: GDPR, Privacy & Cybersecurity News

Operational checklist: Pseudonymised Data under GDPR

Discover our practical GDPR checklist following the CJEU’s SRB v. EDPS ruling (Sept. 4, 2025). Learn how to assess pseud...

CJEU: Are pseudonymised data always personal?

The Court ruled that pseudonymized data should not automatically be treated as personal data if, in practice, the recipi...

EU–U.S. Data Flows Secured by Court Ruling

On 3 September 2025, the EU General Court dismissed Latombe’s challenge and upheld the EU–U.S. Data Privacy Framework. D...

DastraNews: what happened in Privacy & AI in August?

Privacy & AI insights from the Dastra hub: actionable updates for pros who work daily in the field.

The ROI of GDPR and DPO for your business

And what if the GDPR was not a cost, but an opportunity? With structured obligations and the central role of the Data Pr...

AI Act: Key questions for your record of AI systems

Find out the essential questions to ask when building a compliant and effective AI systems record. Download the PDF chec...

(Infographic) How to fight Shadow AI in your organization

Discover the infographic on key strategies to tackle Shadow AI—governance, training, compliance, and monitoring—to secur...

AI literacy: the weapon against Shadow AI

Shadow AI exposes businesses to legal, ethical, and security risks. Learn how AI literacy and strong governance framewor...

Why mapping AI Systems is key

Mapping your AI systems: a strategic step for compliance, transparency, and responsible governance.

AI Act: key points of the regulation

Understand the AI Act in minutes: essential points of the EU’s new AI regulation and what it means for organisations.

DastraNews: what happened in Privacy & AI in July?

Privacy & AI insights from the Dastra hub: actionable updates for pros who work daily in the field.

AI Act phase two: what changes on August 2nd?

As the second enforcement phase of the AI Act approaches, GPAI model providers must prepare to meet a new set of regulat...