[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fK6oGw1Fd3Wb36tNo6ODtpr4labqctS9HM21vZ-HfFTA":3,"$fDuOfbrGklFg9DNstLQj01v77JKgm8YTNP3W1V3nd5U4":60,"white_papers":225},{"tableOfContents":4,"markDownContent":5,"htmlContent":6,"metaTitle":7,"metaDescription":8,"wordCount":9,"readTime":10,"title":11,"nbDownloads":12,"excerpt":13,"lang":14,"url":15,"intro":16,"featured":17,"state":18,"author":19,"authorId":20,"datePublication":24,"dateCreation":25,"dateUpdate":26,"mainCategory":27,"categories":43,"metaDatas":49,"imageUrl":50,"imageThumbUrls":51,"id":59},true,"Are you tired of generic newsletters that skim over your real challenges? Dastra offers you **Dastra Insights**, a legal and regulatory watch **specially designed for DPOs, in-house counsel, and Privacy and AI professionals**.\n\n🎯 **Targeted, useful monitoring grounded in the day-to-day reality of data protection and AI.**\n\nHere is our selection for **June 2026**:\n\n## \\[AI / GDPR / Regulatory Simplification\\] The Omnibus package moves forward on the AI Act and GDPR documentation obligations\n\n**Date**: June 2026\\\n**Source**: [European Parliament](https://www.europarl.europa.eu/news/en/press-room/20260611IPR45207/ai-act-ep-approves-simplification-measures-and-nudifier-app-ban), [European Commission](https://ec.europa.eu/commission/presscorner/detail/en/qanda_25_1278), [EDPB / EDPS](https://www.edpb.europa.eu/news/news/2025/targeted-modifications-gdpr-edpb-edps-welcome-simplification-record-keeping_en)\n\nThe digital simplification Omnibus package remains a key topic to watch for data, AI, and compliance teams. On the **AI Act** side, the European Parliament has approved simplification measures providing in particular for a delay of certain obligations applicable to high-risk AI systems, while maintaining the AI Act’s risk-based approach. The text also provides for a ban targeting certain “nudifier”-type systems and sexually explicit non-consensual content generated by AI.\n\nOn the **GDPR** side, the Commission has proposed easing certain record-keeping obligations for processing activities, notably for SMEs and certain mid-cap companies, where the processing does not present a high risk to the rights and freedoms of data subjects. The EDPB and the EDPS welcomed the goal of reducing administrative burden, while recalling that simplification must not weaken fundamental rights or the GDPR’s core principles.\n\nFor lawyers, DPOs, and compliance teams, the challenge is twofold: closely track the new AI Act compliance timelines, and avoid interpreting the GDPR simplification measures as a general exemption from documentation. Even if the register is formally lightened, organizations will still need to be able to demonstrate compliance, especially for risky processing, sensitive processing, AI-related processing, and arrangements involving monitoring, profiling, or automated decision-making.\n\n## \\[AI Act / Transparency\\] The Commission publishes the Code of Practice on labelling AI-generated content\n\n**Date**: 10 June 2026\\\n**Source**: [European Commission](https://digital-strategy.ec.europa.eu/en/news/commission-publishes-code-practice-marking-and-labelling-ai-generated-content)\n\nThe European Commission has published the final Code of Practice on marking and labelling content generated or manipulated by AI. The code is voluntary, but it is intended to help providers and deployers of generative AI systems prepare for the AI Act’s transparency obligations.\n\nLegal teams should monitor this closely for chatbots, deepfakes, public-interest content, and user interfaces. The code may become a practical reference for documenting labelling choices, internal controls, and product trade-offs.\n\n## \\[AI Act / Governance\\] The AI Act Advisory Forum holds its first meeting\n\n**Date**: 22 June 2026\\\n**Source**: [European Commission](https://digital-strategy.ec.europa.eu/en/news/ai-act-advisory-forum-convenes-its-kick-meeting)\n\nThe Commission held the first meeting of the AI Act Advisory Forum, the consultative body provided for under Article 67 of the AI Act. Discussions focused on operating rules, standardisation, the Code of Practice on transparency for AI-generated content, and guidance on classifying high-risk AI systems.\n\nThe main interest is institutional: the AI Act’s interpretation and implementation ecosystem is taking shape. Affected companies should monitor the forum’s contributions, as they may influence standards, guidance, and compliance expectations.\n\n## \\[GDPR / Connected Mobility\\] The CNIL publishes its recommendation on location data from connected vehicles\n\n**Date**: 30 June 2026\\\n**Source**: [CNIL](https://www.cnil.fr/fr/recommandation-vehicules-connectes-localisation)\n\nThe CNIL has published its final recommendation on the use of location data from connected vehicles, following a public consultation. The text is aimed at manufacturers, rental companies, fleet managers, telematics providers, and data intermediaries.\n\nThe practical impact is significant: the CNIL clarifies in particular when consent is required under ePrivacy, how rights are managed in multi-user vehicles, data minimisation, retention periods, and security measures. Mobility players should review their information flows, legal bases, and mechanisms for disconnecting or deleting onboard data.\n\n## \\[Minors / Emerging Technologies\\] G7 authorities adopt principles on the protection of minors\n\n**Date**: 26 June 2026\\\n**Source**: [CNIL](https://www.cnil.fr/fr/g7-technologies-protection-mineurs)\n\nMeeting in Paris on 25 and 26 June at the CNIL’s invitation, the G7 data protection authorities adopted key principles on protecting minors in the face of emerging technologies.\n\nAlthough these principles do not directly create new obligations, they provide a useful indication of supervisory priorities: digital age assurance, minors’ exposure to online services, protective design by default, appropriate transparency, and provider accountability. For DPOs, this is a sign of international convergence on expectations applicable to services used by children.\n\n## \\[UK GDPR / Complaints\\] New UK data protection complaints obligation\n\n**Date**: 23 June 2026\\\n**Source**: [ICO](https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2026/06/new-data-protection-complaints-law-now-in-force/)\\\n**Impact**: High\\\n**Source confidence**: High, official source\n\nThe ICO confirms the entry into force of new requirements under the Data (Use and Access) Act: all organizations processing personal data must provide a clear complaints mechanism, acknowledge receipt within 30 days, investigate appropriately, and communicate the outcome of the complaint.\n\nThis is a highly operational update for compliance teams in the UK. Organizations should review their complaints procedures, response scripts, internal traceability, and the interaction with rights requests, access requests, and marketing complaints.\n\n## \\[IoT / Connected Devices\\] The ICO finalises its expectations for consumer connected products\n\n**Date**: 11 June 2026\\\n**Source**: [ICO](https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2026/06/setting-out-our-expectations-for-the-smart-device-industry/)\n\nThe ICO publishes its final guidance on consumer IoT products and services. It covers, among others, connected speakers, smart TVs, fitness trackers, connected doorbells, home hubs, and household appliances.\n\nThe authority emphasises privacy by design, protective default settings, genuine and revocable consent, information at the right time, DPIAs when data is sensitive or children may use the product, as well as ongoing security. The ICO also announces a focus on smart TVs and targeted advertising, with a clear issue around consent and transparency.\n\n## \\[Data Breaches / GDPR\\] The EDPB adopts a common data breach notification template\n\n**Date**: 10 June 2026\\\n**Source**: [EDPB ](https://www.edpb.europa.eu/news/edpb-meets-with-eu-commissioner-mcgrath-and-adopts-common-data-breach-notification-template_en)\n\nThe EDPB adopts a common template for notifying personal data breaches. The aim is to harmonise the information submitted to supervisory authorities and facilitate application of Article 33 of the GDPR.\n\nThis is a directly usable tool for DPOs: it can serve as a benchmark for updating internal incident procedures, information-collection forms, 72-hour notification playbooks, and interactions with security, IT, and legal teams.\n\n## \\[Data Subject Rights / One-Stop-Shop\\] The EDPB updates its digest on the right to object and the right to erasure\n\n**Date**: 25 June 2026\\\n**Source**: [EDPB ](https://www.edpb.europa.eu/news/one-stop-shop-case-digest-on-right-to-object-and-right-to-erasure-updated_en)\n\nThe EDPB publishes an updated One-Stop-Shop digest on the right to object and the right to erasure. The document is based on cross-border decisions and sets out how authorities assess the internal processes implemented by organisations.\n\nFor privacy teams, this is a useful resource to test the robustness of rights-request procedures: requests for account deletion, objection to direct marketing, response times, traceability, remedial measures, and consistency across European subsidiaries.\n\n## \\[AI / Data Governance\\] The United Arab Emirates announce the creation of a new authority dedicated to AI and data\n\n**Date**: 14 June 2026\\\n**Source**: [Government of Dubai Media Office](https://www.mediaoffice.ae/en/news/2026/jun/12-06/mohammed-bin-rashid-approves-establishing-artificial-intelligence-and-data-authority)\n\nThe United Arab Emirates have announced the creation of a new **Artificial Intelligence and Data Authority**, placed under the authority of the Cabinet and intended to become the sole national body responsible for data, artificial intelligence, and digital government. The authority will bring together functions previously carried out by the Office of Artificial Intelligence, the digital government sector within the Telecommunications and Digital Government Regulatory Authority, as well as the UAE Data Office.\n\nAt this stage, the announcement is not accompanied by a new legislative text. It is nevertheless worth noting for lawyers and compliance teams, as the implementing regulations of the Emirati data protection law are still awaited. The creation of an integrated authority covering data, AI, and digital services could therefore signal a further step toward regulatory structuring.\n\nIt will also be important to monitor how the UAE chooses to regulate AI. The country already has policies, strategies, and guidelines, but their possible translation into legal obligations will raise classic and sensitive issues: protection of individual rights, data governance, security, transparency, while preserving economic attractiveness and business innovation.","\u003Cp>Are you tired of generic newsletters that skim over your real challenges? Dastra offers you \u003Cstrong>Dastra Insights\u003C/strong>, a legal and regulatory watch \u003Cstrong>specially designed for DPOs, in-house counsel, and Privacy and AI professionals\u003C/strong>.\u003C/p>\n\u003Cp>🎯 \u003Cstrong>Targeted, useful monitoring grounded in the day-to-day reality of data protection and AI.\u003C/strong>\u003C/p>\n\u003Cp>Here is our selection for \u003Cstrong>June 2026\u003C/strong>:\u003C/p>\n\u003Ch2 id=\"ai-gdpr-regulatory-simplification-the-omnibus-package-moves-forward-on-the-ai-act-and-gdpr-documentation-obligations\">[AI / GDPR / Regulatory Simplification] The Omnibus package moves forward on the AI Act and GDPR documentation obligations\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://www.europarl.europa.eu/news/en/press-room/20260611IPR45207/ai-act-ep-approves-simplification-measures-and-nudifier-app-ban\" rel=\"nofollow\">European Parliament\u003C/a>, \u003Ca href=\"https://ec.europa.eu/commission/presscorner/detail/en/qanda_25_1278\" rel=\"nofollow\">European Commission\u003C/a>, \u003Ca href=\"https://www.edpb.europa.eu/news/news/2025/targeted-modifications-gdpr-edpb-edps-welcome-simplification-record-keeping_en\" rel=\"nofollow\">EDPB / EDPS\u003C/a>\u003C/p>\n\u003Cp>The digital simplification Omnibus package remains a key topic to watch for data, AI, and compliance teams. On the \u003Cstrong>AI Act\u003C/strong> side, the European Parliament has approved simplification measures providing in particular for a delay of certain obligations applicable to high-risk AI systems, while maintaining the AI Act’s risk-based approach. The text also provides for a ban targeting certain “nudifier”-type systems and sexually explicit non-consensual content generated by AI.\u003C/p>\n\u003Cp>On the \u003Cstrong>GDPR\u003C/strong> side, the Commission has proposed easing certain record-keeping obligations for processing activities, notably for SMEs and certain mid-cap companies, where the processing does not present a high risk to the rights and freedoms of data subjects. The EDPB and the EDPS welcomed the goal of reducing administrative burden, while recalling that simplification must not weaken fundamental rights or the GDPR’s core principles.\u003C/p>\n\u003Cp>For lawyers, DPOs, and compliance teams, the challenge is twofold: closely track the new AI Act compliance timelines, and avoid interpreting the GDPR simplification measures as a general exemption from documentation. Even if the register is formally lightened, organizations will still need to be able to demonstrate compliance, especially for risky processing, sensitive processing, AI-related processing, and arrangements involving monitoring, profiling, or automated decision-making.\u003C/p>\n\u003Ch2 id=\"ai-act-transparency-the-commission-publishes-the-code-of-practice-on-labelling-ai-generated-content\">[AI Act / Transparency] The Commission publishes the Code of Practice on labelling AI-generated content\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 10 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://digital-strategy.ec.europa.eu/en/news/commission-publishes-code-practice-marking-and-labelling-ai-generated-content\" rel=\"nofollow\">European Commission\u003C/a>\u003C/p>\n\u003Cp>The European Commission has published the final Code of Practice on marking and labelling content generated or manipulated by AI. The code is voluntary, but it is intended to help providers and deployers of generative AI systems prepare for the AI Act’s transparency obligations.\u003C/p>\n\u003Cp>Legal teams should monitor this closely for chatbots, deepfakes, public-interest content, and user interfaces. The code may become a practical reference for documenting labelling choices, internal controls, and product trade-offs.\u003C/p>\n\u003Ch2 id=\"ai-act-governance-the-ai-act-advisory-forum-holds-its-first-meeting\">[AI Act / Governance] The AI Act Advisory Forum holds its first meeting\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 22 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://digital-strategy.ec.europa.eu/en/news/ai-act-advisory-forum-convenes-its-kick-meeting\" rel=\"nofollow\">European Commission\u003C/a>\u003C/p>\n\u003Cp>The Commission held the first meeting of the AI Act Advisory Forum, the consultative body provided for under Article 67 of the AI Act. Discussions focused on operating rules, standardisation, the Code of Practice on transparency for AI-generated content, and guidance on classifying high-risk AI systems.\u003C/p>\n\u003Cp>The main interest is institutional: the AI Act’s interpretation and implementation ecosystem is taking shape. Affected companies should monitor the forum’s contributions, as they may influence standards, guidance, and compliance expectations.\u003C/p>\n\u003Ch2 id=\"gdpr-connected-mobility-the-cnil-publishes-its-recommendation-on-location-data-from-connected-vehicles\">[GDPR / Connected Mobility] The CNIL publishes its recommendation on location data from connected vehicles\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 30 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://www.cnil.fr/fr/recommandation-vehicules-connectes-localisation\" rel=\"nofollow\">CNIL\u003C/a>\u003C/p>\n\u003Cp>The CNIL has published its final recommendation on the use of location data from connected vehicles, following a public consultation. The text is aimed at manufacturers, rental companies, fleet managers, telematics providers, and data intermediaries.\u003C/p>\n\u003Cp>The practical impact is significant: the CNIL clarifies in particular when consent is required under ePrivacy, how rights are managed in multi-user vehicles, data minimisation, retention periods, and security measures. Mobility players should review their information flows, legal bases, and mechanisms for disconnecting or deleting onboard data.\u003C/p>\n\u003Ch2 id=\"minors-emerging-technologies-g7-authorities-adopt-principles-on-the-protection-of-minors\">[Minors / Emerging Technologies] G7 authorities adopt principles on the protection of minors\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 26 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://www.cnil.fr/fr/g7-technologies-protection-mineurs\" rel=\"nofollow\">CNIL\u003C/a>\u003C/p>\n\u003Cp>Meeting in Paris on 25 and 26 June at the CNIL’s invitation, the G7 data protection authorities adopted key principles on protecting minors in the face of emerging technologies.\u003C/p>\n\u003Cp>Although these principles do not directly create new obligations, they provide a useful indication of supervisory priorities: digital age assurance, minors’ exposure to online services, protective design by default, appropriate transparency, and provider accountability. For DPOs, this is a sign of international convergence on expectations applicable to services used by children.\u003C/p>\n\u003Ch2 id=\"uk-gdpr-complaints-new-uk-data-protection-complaints-obligation\">[UK GDPR / Complaints] New UK data protection complaints obligation\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 23 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2026/06/new-data-protection-complaints-law-now-in-force/\" rel=\"nofollow\">ICO\u003C/a>\u003Cbr />\n\u003Cstrong>Impact\u003C/strong>: High\u003Cbr />\n\u003Cstrong>Source confidence\u003C/strong>: High, official source\u003C/p>\n\u003Cp>The ICO confirms the entry into force of new requirements under the Data (Use and Access) Act: all organizations processing personal data must provide a clear complaints mechanism, acknowledge receipt within 30 days, investigate appropriately, and communicate the outcome of the complaint.\u003C/p>\n\u003Cp>This is a highly operational update for compliance teams in the UK. Organizations should review their complaints procedures, response scripts, internal traceability, and the interaction with rights requests, access requests, and marketing complaints.\u003C/p>\n\u003Ch2 id=\"iot-connected-devices-the-ico-finalises-its-expectations-for-consumer-connected-products\">[IoT / Connected Devices] The ICO finalises its expectations for consumer connected products\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 11 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2026/06/setting-out-our-expectations-for-the-smart-device-industry/\" rel=\"nofollow\">ICO\u003C/a>\u003C/p>\n\u003Cp>The ICO publishes its final guidance on consumer IoT products and services. It covers, among others, connected speakers, smart TVs, fitness trackers, connected doorbells, home hubs, and household appliances.\u003C/p>\n\u003Cp>The authority emphasises privacy by design, protective default settings, genuine and revocable consent, information at the right time, DPIAs when data is sensitive or children may use the product, as well as ongoing security. The ICO also announces a focus on smart TVs and targeted advertising, with a clear issue around consent and transparency.\u003C/p>\n\u003Ch2 id=\"data-breaches-gdpr-the-edpb-adopts-a-common-data-breach-notification-template\">[Data Breaches / GDPR] The EDPB adopts a common data breach notification template\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 10 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://www.edpb.europa.eu/news/edpb-meets-with-eu-commissioner-mcgrath-and-adopts-common-data-breach-notification-template_en\" rel=\"nofollow\">EDPB \u003C/a>\u003C/p>\n\u003Cp>The EDPB adopts a common template for notifying personal data breaches. The aim is to harmonise the information submitted to supervisory authorities and facilitate application of Article 33 of the GDPR.\u003C/p>\n\u003Cp>This is a directly usable tool for DPOs: it can serve as a benchmark for updating internal incident procedures, information-collection forms, 72-hour notification playbooks, and interactions with security, IT, and legal teams.\u003C/p>\n\u003Ch2 id=\"data-subject-rights-one-stop-shop-the-edpb-updates-its-digest-on-the-right-to-object-and-the-right-to-erasure\">[Data Subject Rights / One-Stop-Shop] The EDPB updates its digest on the right to object and the right to erasure\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 25 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://www.edpb.europa.eu/news/one-stop-shop-case-digest-on-right-to-object-and-right-to-erasure-updated_en\" rel=\"nofollow\">EDPB \u003C/a>\u003C/p>\n\u003Cp>The EDPB publishes an updated One-Stop-Shop digest on the right to object and the right to erasure. The document is based on cross-border decisions and sets out how authorities assess the internal processes implemented by organisations.\u003C/p>\n\u003Cp>For privacy teams, this is a useful resource to test the robustness of rights-request procedures: requests for account deletion, objection to direct marketing, response times, traceability, remedial measures, and consistency across European subsidiaries.\u003C/p>\n\u003Ch2 id=\"ai-data-governance-the-united-arab-emirates-announce-the-creation-of-a-new-authority-dedicated-to-ai-and-data\">[AI / Data Governance] The United Arab Emirates announce the creation of a new authority dedicated to AI and data\u003C/h2>\n\u003Cp>\u003Cstrong>Date\u003C/strong>: 14 June 2026\u003Cbr />\n\u003Cstrong>Source\u003C/strong>: \u003Ca href=\"https://www.mediaoffice.ae/en/news/2026/jun/12-06/mohammed-bin-rashid-approves-establishing-artificial-intelligence-and-data-authority\" rel=\"nofollow\">Government of Dubai Media Office\u003C/a>\u003C/p>\n\u003Cp>The United Arab Emirates have announced the creation of a new \u003Cstrong>Artificial Intelligence and Data Authority\u003C/strong>, placed under the authority of the Cabinet and intended to become the sole national body responsible for data, artificial intelligence, and digital government. The authority will bring together functions previously carried out by the Office of Artificial Intelligence, the digital government sector within the Telecommunications and Digital Government Regulatory Authority, as well as the UAE Data Office.\u003C/p>\n\u003Cp>At this stage, the announcement is not accompanied by a new legislative text. It is nevertheless worth noting for lawyers and compliance teams, as the implementing regulations of the Emirati data protection law are still awaited. The creation of an integrated authority covering data, AI, and digital services could therefore signal a further step toward regulatory structuring.\u003C/p>\n\u003Cp>It will also be important to monitor how the UAE chooses to regulate AI. The country already has policies, strategies, and guidelines, but their possible translation into legal obligations will raise classic and sensitive issues: protection of individual rights, data governance, security, transparency, while preserving economic attractiveness and business innovation.\u003C/p>\n","Dastra Insights Privacy & AI: What happened in June?","A legal and regulatory watch service specially designed for DPOs, legal professionals, and Privacy and AI practitioners.",1358,8,"Dastra Insights: what happened in June in Privacy and AI?",0,null,"en","dastra-insights-what-happened-in-june-in-privacy-and-ai","A legal and regulatory watch service specifically designed for DPOs, legal professionals, and privacy and AI practitioners.",false,"Published",{"id":20,"displayName":21,"avatarUrl":22,"bio":13,"blogUrl":13,"color":13,"userId":20,"creationDate":23},20352,"Leïla Sayssa","https://static.dastra.eu/tenant-3/avatar/20352/TDYeY3C8Rz1lLE/dpo-avatar-h01-150.png","2025-03-03T11:08:22","2026-07-03T14:06:00","2026-07-03T14:06:50.5860755","2026-07-03T14:14:41.816258",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":33},2,"Blog","A list of curated articles provided by the community","blog","#28449a",[34,37,40],{"lang":35,"name":29,"description":36},"fr","Une liste d'articles rédigés par la communauté",{"lang":38,"name":29,"description":39},"es","Una lista de artículos escritos por la comunidad",{"lang":41,"name":29,"description":42},"de","Eine Liste von Artikeln, die von der Community verfasst wurden",[44],{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":45},[46,47,48],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},[],"https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu-original.jpg",[52,53,54,55,56,57,58],"https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu-1000.webp","https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu.webp","https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu-1500.webp","https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu-800.webp","https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu-600.webp","https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu-300.webp","https://static.dastra.eu/content/e23a2c8b-c325-43a2-bbd3-e4fb73cd7552/dastractu-100.webp",60148,{"total":10,"items":61,"parent":220},[62,83,104,126,148,169,187,203],{"id":63,"name":64,"description":65,"url":66,"color":67,"parentId":28,"count":13,"imageUrl":13,"parent":68,"order":10,"translations":73},20,"Inside Dastra","Go behind the scenes at Dastra: company news, culture, events, team highlights, and the people driving our GDPR solution.","dastra-life","#e3cf68",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":69},[70,71,72],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},[74,77,80],{"lang":35,"name":75,"description":76},"Vie de Dastra","Plongez dans les coulisses de Dastra : actualités internes, culture d’entreprise, événements, équipes et engagements. Découvrez qui se cache derrière notre solution RGPD.",{"lang":41,"name":78,"description":79},"Innerhalb von Dastra","Eintauchen in das Unternehmen",{"lang":38,"name":81,"description":82},"Dentro de Dastra","Sumérjase en la empresa",{"id":84,"name":85,"description":86,"url":87,"color":88,"parentId":28,"count":13,"imageUrl":13,"parent":89,"order":94,"translations":95},69,"Expertise","Gain insights from our experts on GDPR compliance, data protection, and privacy challenges. In-depth articles, professional analysis, and real-world best practices.","indepth","#000000",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":90},[91,92,93],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},7,[96,98,101],{"lang":35,"name":85,"description":97},"Bénéficiez des conseils de nos experts sur la conformité RGPD, la protection des données et les enjeux privacy. Articles de fond, analyses et retours d’expérience métier.",{"lang":41,"name":99,"description":100},"Fachwissen","Entdecken Sie die Artikel unserer DSGVO-Experten",{"lang":38,"name":102,"description":103},"Experiencia","Descubre los artículos de nuestros expertos en Privacy",{"id":105,"name":106,"description":107,"url":108,"color":109,"parentId":28,"count":13,"imageUrl":13,"parent":110,"order":115,"translations":116},4,"Use cases","Discover how companies use Dastra to manage their GDPR compliance. Testimonials, use cases, and real-world integrations of our privacy management solution.","case-studies","#b61b9c",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":111},[112,113,114],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},6,[117,120,123],{"lang":35,"name":118,"description":119},"Retours d'expérience","Découvrez comment les entreprises utilisent Dastra pour piloter leur conformité RGPD. Témoignages, cas d’usage et intégrations concrètes de notre solution de privacy management.",{"lang":41,"name":121,"description":122},"Case Studies","Entdecken Sie die Erfahrungsberichte unserer Kunden",{"lang":38,"name":124,"description":125},"Casos prácticos","Descubra los testimonios de nuestros clientes",{"id":127,"name":128,"description":129,"url":130,"color":131,"parentId":28,"count":13,"imageUrl":13,"parent":132,"order":137,"translations":138},10,"Release notes","Keep up with the latest features of Dastra: product updates, new functionalities, and improvements to our GDPR compliance and data management platform.","release","#8c316a",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":133},[134,135,136],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},5,[139,142,145],{"lang":35,"name":140,"description":141},"Notes de version","Restez informé(e) des dernières fonctionnalités de Dastra : mises à jour, évolutions produit et améliorations de notre solution de conformité RGPD et de gestion des données personnelles.",{"lang":41,"name":143,"description":144},"Veröffentlichungen","Alle Versionshinweise und Funktionen von Dastra",{"lang":38,"name":146,"description":147},"Lanzamientos","Todas las notas de la versión e información sobre las funciones de Dastra",{"id":149,"name":150,"description":151,"url":152,"color":153,"parentId":28,"count":13,"imageUrl":13,"parent":154,"order":105,"translations":159},9,"News","Stay up to date with the latest news from data protection authorities: decisions, fines, guidelines, and regulatory trends in GDPR and privacy.","news","#1676ca",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":155},[156,157,158],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},[160,163,166],{"lang":35,"name":161,"description":162},"Actualités","Suivez les dernières actualités des autorités de protection des données (CNIL, EDPS, etc.) : décisions, sanctions, lignes directrices et tendances réglementaires en matière de RGPD et de privacy.",{"lang":38,"name":164,"description":165},"Actualidad","Todos los artículos relativos a las autoridades de protección de datos",{"lang":41,"name":167,"description":168},"Nachrichten","Alle Artikel mit Bezug zu Datenschutzbehörden",{"id":170,"name":171,"description":172,"url":173,"color":88,"parentId":28,"count":13,"imageUrl":13,"parent":174,"order":179,"translations":180},221,"AI Governance","Best practices, regulatory frameworks and real-world insights to manage AI responsibly and in compliance with the AI Act.","ai-governance",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":175},[176,177,178],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},3,[181,184],{"lang":35,"name":182,"description":183},"Gouvernance de l'IA","Bonnes pratiques, cadres réglementaires et retours d'expérience pour piloter l'IA de façon responsable et conforme à l'AI Act.",{"lang":41,"name":185,"description":186},"KI-Governance","Best Practices, regulatorische Rahmenbedingungen und Praxiserfahrungen für einen verantwortungsvollen KI-Einsatz im Einklang mit dem AI Act.",{"id":188,"name":189,"description":190,"url":191,"color":88,"parentId":28,"count":13,"imageUrl":13,"parent":192,"order":28,"translations":197},220,"Compliance","Regulatory news, practical guides and analysis to keep your organization compliant with the GDPR and beyond.","compliance",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":193},[194,195,196],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},[198,201],{"lang":35,"name":199,"description":200},"Conformité","Actualités réglementaires, guides pratiques et analyses pour maintenir votre organisation en conformité RGPD et au-delà.",{"lang":41,"name":189,"description":202},"Regulatorische Neuigkeiten, Praxisleitfäden und Analysen, um Ihre Organisation DSGVO-konform und darüber hinaus aufzustellen.",{"id":204,"name":205,"description":206,"url":207,"color":88,"parentId":28,"count":13,"imageUrl":13,"parent":208,"order":213,"translations":214},219,"Privacy","Principles, techniques and trends in personal data protection — from privacy by design to data subject rights.","privacy",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":209},[210,211,212],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},1,[215,217],{"lang":35,"name":205,"description":216},"Principes, techniques et tendances autour de la protection des données personnelles — de la privacy by design aux droits des personnes.",{"lang":41,"name":218,"description":219},"Datenschutz","Grundsätze, Methoden und Trends zum Schutz personenbezogener Daten — von Privacy by Design bis zu Betroffenenrechten.",{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":221},[222,223,224],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},{"items":226,"total":263,"size":213,"page":213},[227],{"title":228,"nbDownloads":10,"excerpt":13,"lang":14,"url":229,"intro":230,"featured":17,"state":18,"author":231,"authorId":20,"datePublication":232,"dateCreation":233,"dateUpdate":234,"mainCategory":235,"categories":241,"metaDatas":249,"imageUrl":253,"imageThumbUrls":254,"id":262},"Your Checklist to Multi-State Privacy Impact Assessments ","your-checklist-to-multi-state-privacy-impact-assessment-compliance","Master multi-state Privacy Impact Assessments by downloading this checklist.",{"id":20,"displayName":21,"avatarUrl":22,"bio":13,"blogUrl":13,"color":13,"userId":20,"creationDate":23},"2026-02-23T10:07:00","2026-02-23T10:07:01.6114712","2026-02-24T15:38:38.0037058",{"id":236,"name":237,"description":13,"url":238,"color":239,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":179,"translations":240},70,"Livre blanc","white-papers","#1795d3",[],[242,247],{"id":28,"name":29,"description":30,"url":31,"color":32,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":12,"translations":243},[244,245,246],{"lang":35,"name":29,"description":36},{"lang":38,"name":29,"description":39},{"lang":41,"name":29,"description":42},{"id":236,"name":237,"description":13,"url":238,"color":239,"parentId":13,"count":13,"imageUrl":13,"parent":13,"order":179,"translations":248},[],[250],{"typeMetaDataId":105,"value":251,"id":252},"https://static.dastra.eu/backofficefilescontainer/6c9c6770-09f5-44d2-ac35-466a87c40426/US PIA Cross State Checklist Best Practices.pdf",117305,"https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-original.jpg",[255,256,257,258,259,260,261],"https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-1000.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-1500.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-800.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-600.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-300.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-100.webp",59886,12]