The management of the National Center for Personal Data Protection participated in the 106th Plenary Session of the European Data Protection Board

The National Center for Personal Data Protection (NCPDP) informs, for public awareness purposes, about the participation of its leadership in the 106th Plenary Session of the European Data Protection Board (EDPB), which took place on 3–4 June 2025 in Brussels, Belgium.

During the meeting, several documents were adopted, including:

• Following a public consultation, the EDPB adopted the final version of the Guidelines on Data Transfers to Public Authorities in Third Countries, which focus on Article 48 of the GDPR and clarify how organizations can best assess the conditions under which they may lawfully respond to personal data transfer requests from authorities in non-EU countries.

• The EDPB presented the report “Law and Compliance in AI Security and Data Protection”, aimed at legal professionals such as Data Protection Officers (DPOs) or privacy experts.

• The EDPB also presented the report “Fundamentals of Secure AI Systems with Personal Data”, aimed at professionals with technical expertise, such as cybersecurity experts, developers, or implementers of high-risk AI systems.

• Lastly, the Board discussed the European Commission’s request for a joint opinion from the EDPB and the European Data Protection Supervisor (EDPS) on its proposal to simplify record-keeping obligations for small and medium-sized enterprises (SMEs), small mid-cap companies, and organizations with fewer than 750 employees. This proposal would amend Article 30(5) of the GDPR. The EDPB and EDPS will issue a joint opinion on the matter within eight weeks.

NCPDP, as the national supervisory authority for personal data processing, emphasizes the importance of Moldova’s participation in the EDPB Plenary Sessions, as well as the relevance of the documents adopted, in order to align national data protection legislation with EU standards.