Guidelines of European entities 

European Data Protection Board

The European Data Protection Board (EDPB) is an independent body created by the GDPR. Its functions include ensuring that the GDPR and the Data Protection Directives in criminal law are applied consistently in all member states. In other words, they are applied uniformly so that all EU citizens have the same rights regardless of their place of residence.

Likewise, the EDPB promotes cooperation between national data protection authorities and encourages them to collaborate and share information and best practices with each other. In addition, the EDPB advises the European Commission on data protection issues and on any new proposed EU legislation of particular importance for the protection of personal data.

 In the exercise of these functions:

• It adopts conclusions about coherence, intended to ensure that all national regulatory bodies interpret the GDPR consistently, for example, in cases involving two or more countries.
• It offers general guidelines (such as directives, recommendations, guides and best practices) about the GDPR

The directives approved by the EDPB clarify and illustrate with concrete examples the new legal framework resulting from the GDPR.

The conclusions on coherence, as well as the directives, recommendations, guides and good practices of the EDPB can be consulted on its website.

European Data Protection Supervisor

The European Data Protection Supervisor (EDPS) is the body in charge of guaranteeing citizens' right to data protection in their relations with EU institutions and bodies.

In the exercise of its functions, the EDPS:

• It supervises the processing of personal data by the EU administration.
• It advises EU institutions and bodies on the processing of personal data, and on related policies and legislation.
• It handles claims against EU institutions or bodies when a citizen considers that they have violated their right to data protection. Likewise, it conducts investigations into these claims.
• It collaborates with national authorities in EU countries to ensure consistency in data protection.
• It monitors new technologies that may have an impact on data protection.

The EDPS applies Regulation 2018/1725, which, following the criteria of the GDPR, sets the rules on data protection within the EU institutions. 

Council of Europe

The Council of Europe is an international organisation founded to defend human rights, democracy and the rule of law in Europe. As it is an international organisation, the Council of Europe has the capacity to promote compliance with certain international agreements reached by member states on various issues. The most well-known body of the Council of Europe is the European Court of Human Rights, which operates on the basis of the European Convention on Human Rights.

The Council of Europe also draws up recommendations in the field of personal data protection. These recommendations must guide both the legislative activity of the member states of the Council of Europe, as well as the development of regulations, intervention protocols, best practice guides, etc.