Back to all glossary articles

Data protection authority (DPA)

A data protection authority (DPA) is an independent public authority that supervises the application of the data protection law and protects the fundamental rights and freedoms of data subjects related to the processing of Personal data . Each EU Member State has its own DPA.

The primary roles of DPAs in the EU involve:

  • Handling data breach reports.
  • Consistently interpreting and enforcing Data privacy and protection laws across the EU.
  • Offering expert advice to businesses on data protection issues and compliance.
  • Managing complaints from individuals alleging GDPR violations.
  • Interpreting aspects of EU law, particularly regarding GDPR.
  • Managing fines and other noncompliance penalties.
Data controllers

are typically obligated to inform users about their right to lodge a complaint and provide information about the DPA to reach out to.

  • Navigating the Norwegian E-Com Act 2025: How it Impacts Web Analytics and What Steps You Should Take

    The Norwegian Electronic Communications Act, commonly known as the E-Com Act, is a fundamental legislation governing electronic communications targeting Norwegian audiences.  As of January 1, 2025, significant amendments have been introduced, particularly concerning cookie guidelines and user data collection.  These changes aim to enhance user privacy and align Norway’s regulations with broader European standards, such…

    Read more

  • Customer Data Platform is now available for all Piwik PRO users

    The Core plan for Piwik PRO Analytics Suite now includes a Customer Data Platform (CDP). Our CDP is designed for businesses of all sizes, offering the opportunity to explore its capabilities without any initial investment and the flexibility to grow alongside your business needs.  With Piwik PRO Core, you can use an all-in-one integrated data…

    Read more

Other definitions

Recent posts from Piwik PRO blog