The European Parliament's Civil Liberties Committee (LIBE) debated the European Data Protection Board's 2025 annual report on 8 June 2026, with EDPB Chair Anu Talus defending the GDPR as the foundation of the EU's digital rulebook while MEPs pressed on enforcement, regulatory complexity, and the ongoing digital omnibus negotiations.
Talus highlighted the EDPB's efforts to clarify overlaps between the GDPR and the Digital Markets Act, Digital Services Act, and AI Act, and to support simplification via the digital omnibus while opposing changes to the definition of personal data. She reported that the EDPB had imposed €1.1 billion in fines and handled 572 cross-border decisions in 2025. Talus also committed to publishing anonymization guidelines in July.
EPP rapporteur Lena Düpont welcomed the EDPB's nuanced views on the omnibus and asked about the upcoming anonymization guidelines, cross-border cooperation, and resources under the next Multiannual Financial Framework. S&D's Birgit Sippel questioned enforcement against big tech, consent fatigue, and access to personal data; Talus supported ePrivacy signals to address cookie fatigue. Greens/EFA's Mārtiņš Staķis stressed that the GDPR is the foundation of digital legislation. PfE's Fabrice Leggeri raised concerns about regulatory complexity and fines distribution, with Talus advocating cross-regulatory cooperation. Renew's Michael McNamara pressed on the EDPB's opposition to personal data definition changes, AI-driven de-anonymization risks, and delays in guidelines; Talus confirmed concerns that the omnibus proposal goes beyond CJEU case law and committed to flagging inconsistencies via a new website channel.
The debate exposed a divide between MEPs who see the GDPR as a robust foundation that should not be weakened (S&D, Greens/EFA) and those who worry about regulatory complexity and enforcement burdens (EPP, PfE, Renew). The EDPB's stance against changing the definition of personal data aligns with S&D and Greens/EFA, while its support for simplification via the omnibus finds common ground with EPP and Renew. The committee continues omnibus negotiations; the EDPB's July anonymization guidelines will be a key next step.
For EU consumers, stronger enforcement and ePrivacy signals could reduce consent fatigue and improve data protection, but regulatory complexity may slow innovation. For big tech firms, the €1.1 billion in fines signals continued aggressive enforcement, but the omnibus simplification could reduce compliance costs. For national data protection authorities, the EDPB's cross-border coordination and new website channel may improve consistency, but resource constraints under the next MFF remain a concern. For EU policymakers, the debate highlights the tension between maintaining GDPR's high standards and reducing regulatory overlap with new digital rules.