Cities express challenges and recommendations regarding GDPR compliance in smart cities

  • knowledge society
publication date
document type

EUROCITIES, through its Green Digital Charter initiative, organised a training on the GDPR 'privacy impact assessment' practice. A collective brainstorming on concrete cases allowed participants to identify challenges and recommendations that are expected to drive further cooperation within the Knowledge Society Forum.

From May 2018, the new EU General Data Protection Regulation (GDPR) will take effect and impact all EU cities, which will be asked to appoint a data protection officer (DPO) and to implement a series of new rules and practices.

On 22 January 2018, the GDC/GuiDanCe project organised a technical training for cities' data experts to understand the concepts and processes necessary for the data management chain within a city administration to deal with citizens' privacy while delivering smart services.

Four cities (Barcelona, Eindhoven, Espoo and the royal borough of Greenwich, London) presented concrete examples on which participants collectively brainstormed. The break-out session produced a series of observations and recommendations and identified a list of topics expected to drive future peer-to-peer exchanges on technological challenges encountered by cities in their path to digitalisation.

A report has been realised for the participants. An executive summary is available on the Green Digital Charter website ( or can be downloaded on this page.

Interested to join the group's future activities? Contact Rebecca Portail, project support officer at Rebecca.Portail[at]

   Executive-summary_GuiDanCe_GDPR_training_January_22_2018_Bruxellesdownload/preview this file