The European Data Protection Board (EDPB) is an independent European body with legal personality. It ensures that the General Data Protection Regulation and the Law Enforcement Directive are applied consistently and ensures cooperation, including on enforcement.
The EDPB is composed of the heads of the national data protection authorities (Supervisory Authorities) of the countries in the European Economic Area, as well as the European Data Protection Supervisor (EDPS).
The data protection authorities are responsible for enforcing data protection law at a national level and at a cross-border level by cooperating through the one-stop-shop mechanism.
The EDPB takes binding decisions on cross-border cases on which no consensus is reached.
The EDPB has a Secretariat, based in Brussels and provided by the EDPS. A Memorandum of Understanding determines the terms of cooperation between the EDPB and the EDPS.
Chairmanship
The EDPB is led by its Chair, Anu Talus, and two Deputy Chairs, Irene Loizidou Nicolaidou and Zdravko Vukić, elected for a five year term.
Rules of procedure
The rules of procedure contain the most important operational rules of the EDPB. They describe:
- how the EDPB is organised;
- how its members work together;
- how its chair and deputy chairs are elected; and
- its working methods.
View the EDPB rules of procedure