About us - Spring Conference

Mission

The “Spring Conference” stands as the annual gathering for all data protection authorities across European states, both within and outside the EEA. Each year, a diverse member of the Conference takes the lead in hosting this pivotal event.

The mission of the Spring Conference encompasses:

Addressing Common Interests: Tackling issues of mutual concern, emerging trends, and innovative developments in the realm of privacy and data protection. This pertains to the European context, with a global outlook to consider relevant developments worldwide, thereby informing European progress.
Reflecting Pan-European Membership: Echoing the pan-European composition of its membership, the Conference aims to fortify relationships among regulators across Europe, enhancing their capacity to deliberate on communiques or resolutions.
Promoting Cooperation: Building collaboration between diverse systems in Europe and the professionals operating within these systems. This pursuit aims to establish an unparalleled regional data privacy ecosystem.
Emphasis on Practical Exchange: Concentrating on the practical exchange and discussion of best practices in the development and implementation of policies and privacy-related legislation. Additionally, a focus on stakeholder engagement activities aims to empower Data Protection Authorities (DPAs) in effectively fulfilling their mandate.

Members

European Authorities Accredited as Members:

Albania, Andorra, Armenia, Austria, Belgium, Bosnia and Herzegovina, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Georgia, Germany, Germany/Bavaria, Germany/Berlin, Germany/Brandenburg, Germany/Lower Saxony, Germany/Mecklenburg-West Pomerania, Germany/Northrhein- Westphalia, Germany / Rhineland Palatinate, Germany / Schleswig-Holstein, Gibraltar, Greece, Guernsey, Hungary, Iceland, Ireland, Isle of Man, Italy, Jersey, Kosovo, Latvia, Liechtenstein, Lithuania, Luxembourg, Malta, Moldova, Monaco, Montenegro, Netherlands, North Macedonia, Norway, Poland, Portugal, Romania, San Marino, Serbia, Slovakia, Slovenia, Spain, Spain/Basque, Spain/Catalonia, Spain/Andalusia, Sweden, Switzerland, Switzerland / Basel Landschaft Canton, Switzerland / Zurich Canton, Switzerland / Zug Canton, Turkiye, United Kingdom, EU European Data Protection Supervisor, EU Customs Information System Joint Supervisory Authority, The Data Protection Authority of the European Space Agency, CoE Data Protection Commissioner

Steering committee

About the Group

The European Conference of Data Protection Authorities stands as the annual meeting for independent data protection authorities across European states, both within and outside the EEA, to provide a forum for cooperation, to tackle issues of mutual concerns and exchange of best practice in the field of privacy and data protection.

The Conference consists of the Annual Plenary, the Steering Group and Sub-Groups. In May 2022, the Conference mandated the establishment of an Interim Steering Group to update the Rules and Procedures to reflect the proposed Mission and the Vision of the Conference and also to create a permanent Steering Group, to describe the role and mission of such Group, and to clarify the Conference Accreditation Rules. This Interim Steering Group paved the way for the creation of a permanent Steering Group of the Spring Conference, which was officially established in May 2023. Hence, the mandate of the Interim Steering Group ended in May 2023.

Membership

The permanent Steering Group comprises up to 8 members: the previous, current and future Conference hosts and (optionally) the current host of the European Case Handling Workshop (ECHW), plus up to four ordinary seats. To provide balance and continuity to the Steering Group, ordinary seats serve for three years, unless they wish to step down.

Since May 2023, the following members occupy the available seats of the Steering Group:

Type of Participation	Respective Data Protection Authority
Conference Plenary host in 2023	Hungary - National Authority for Data Protection and Freedom of Information
Conference Plenary host in 2024	Latvia - Data State Inspectorate
Conference Plenary host in 2025	Georgia - Personal Data Protection Service*
Host of the European Case-Handling Workshop in 2024**	Estonia - Data Protection Inspectorate
Ordinary seat	Bulgaria - Commission for Personal Data Protection
Ordinary seat	Cyprus - Commissioner for Personal Data Protection
Ordinary seat	Personal Data Protection Service (Coordinator)
Ordinary seat	United Kingdom - Information Commissioner's Office

Coordinator

Per the Rules and Procedures of the Conference, the position is agreed upon by consensus annually by the Members of the Group itself and announced to the Conference. The Personal Data Protection Service of Georgia volunteered as a candidate for the Coordinator role.

With the support and upon the decisions of the Steering Group Members, in 2023, the Personal Data Protection Service of Georgia was appointed and announced as a Coordinator of the Steering Group.

* Note: In 2023, the Data Protection Authority of Iceland occupied the seat as a host authority of the 33rd edition of the Spring Conference, but later, the authority stepped down and was replaced by the new host of the plenary in 2025.

Host authority

Welcome Letter from the President of the Turkish Personal Data Protection Authority

Dear Members and Observers of the Conference,

Dear Colleagues,

The Personal Data Protection Authority of the Republic of Türkiye (KVKK) is honoured to announce that it will host the 34th Spring Conference this year from 5th to 8th May in the seaside city of Antalya.

The Spring Conference serves as an established forum for data protection authorities, observers, and invited guests to engage in high- level discussions on key issues related to the protection of personal data, privacy, and fundamental rights in the digital age.

The 34th Spring Conference will focus on current and future aspects of personal data protection, with particular emphasis on AI, children’s personal data, international data flow and the future of data protection authorities. The event aims to strengthen dialogue and cooperation among supervisory authorities and relevant stakeholders.

Thus, we are very much thrilled to offer you an opportunity to explore the rich culture, history, and natural beauty of our country, while providing a collaborative environment to facilitate insightful discussions, exchange best practices, host sessions and provide networking opportunities.

Detailed information regarding programme, and registration process will be announced on this website in due course.

KVKK looks forward to welcoming members, observers, and distinguished guests to the 34th Spring Conference in the beautiful city of Antalya.

Prof. Dr. Faruk BİLİR

President of the Turkish Personal Data Protection Authority

Who We Are?

· Turkish Personal Data Protection Authority, which is a public legal entity and has administrative and financial autonomy, has been established to carry out

duties conferred on it under the Law No. 6698.

· The Authority is affiliated to the Minister assigned by the President of the Republic.

· The Headquarters of the Authority is in Ankara. The Authority is composed of the Board and the Presidency.

· Decision making body of the Authority is the Board.

Mission

Our mission is to ensure the protection of personal data and develop awareness in this respect in the public eye in line with the fundamental rights related with privacy and freedom stated in the Constitution as well as to establish an environment to enhance the capability of competition of the public and private organisations in the data-driven world.

Values

Our vision is to be a globally recognized competent authority which is influential in the protection of personal data and raising the public awareness in this regard.