European Commission confirms plans to simplify GDPR in business environment

On March 13, 2025, the European Commission Commission announced that will undergo a simplification process of GDPR. 

In particular, the European Commission has adopted new proposals that will cut red tape and simplify EU rules for citizens and business, in line with its vision to make the EU’s economy more prosperous and competitive, as well as to foster a favourable business environment and ensure that companies can thrive. 

It is anticipated that, the proposed changes will focus on easing record-keeping obligations for organizations with fewer than 500 employees while preserving the core principles of data protection.

The suggested simplification strategies could involve:

1. Streamlined Documentation Standards that cut down the detail required for processing activities considered lower risk.

   
   

2. Simplified Risk Assessment Frameworks that deliver more straightforward guidance and less complicated approaches for SMEs to assess their data processing practices.

   
   

3. Standardized Tools and Templates that enhance compliance accessibility without necessitating specialized legal or technical skills.

   
   

Overall, in its work programme for 2025, the European Commission announced a series of measures to address overlapping, unnecessary or disproportionate rules that create barriers for EU companies. Collectively, with these measures, the Commission wishes to reduce administrative burdens by 25%, and by 35% for small and medium-sized businesses, by 2029.