This resource provides a comprehensive template and legal guidance for submitting a Right to Erasure (Right to be Forgotten) request under Article 17 of the General Data Protection Regulation (GDPR). It includes a structured form to facilitate data subject requests, outlines the legal basis and exceptions for erasure, and explains when organizations are obligated—or allowed to refuse—to erase personal data. Ideal for both individuals seeking to exercise their data rights and organizations aiming to streamline compliance with GDPR obligations.
Repositories
Access a wealth of resources including articles, whitepapers, tools, and guides to support your learning.
Category
More
Type
More
Difficulty Level
- Application Security
CEPOL Cybercrime Training Portfolio
- Published date:
- Author: European Union Agency for Law Enforcement Training (CEPOL)
CEPOL’s Cybercrime Academy offers a comprehensive training portfolio to strengthen the digital skills of EU law enforcement officials in combating cybercrime and cyber-enabled threats. With courses addressing emerging technologies like AI, blockchain, and IoT, the Academy supports cross-border collaboration and capacity-building through specialised training delivered at its centre in Budapest and online. Explore the full catalogue of courses designed to enhance operational readiness in tackling complex cyber threats across Europe.
- Emerging Technologies
Understanding Cyber Ranges: From Hype to Reality
- Published date:
- Author: European Cyber Security Organisation (ECSO)
This paper provides a practical and analytical overview of cyber ranges—what they are, how they work, and why they matter. It explores key use cases, differentiating technologies, business models, and evaluation criteria to help organisations make informed decisions when selecting or developing a cyber range. Aimed at demystifying current market expectations, the paper highlights both the capabilities and limitations of today’s cyber range technologies.
- Compliance Standards
European Cybersecurity Skills Framework (ECSF): Defining Roles, Skills, and Competencies Across the EU
- Published date:
- Author: European Union Agency for Cybersecurity (ENISA)
The European Cybersecurity Skills Framework (ECSF), developed by ENISA, is the EU’s official reference model for identifying and articulating cybersecurity professional roles and the skills, knowledge, and competencies they require. Featuring 12 role profiles, practical mappings to ESCO, NIS2, and AI domains, and a comprehensive user manual, the ECSF supports workforce planning, training design, skills attestation, and policy alignment. Widely adopted by public and private stakeholders, it underpins the Cybersecurity Skills Academy and contributes to closing the cybersecurity talent gap across the EU.
- Data Protection and Privacy
GDPR Compliance Checklist for Data Controllers
- Published date:
- Author: GDPR.eu
This practical GDPR checklist offers a comprehensive overview of key compliance areas for data controllers, including lawful data processing, data security, accountability, and privacy rights. Designed to help organizations of all sizes reduce risk and improve data protection practices, it provides actionable steps—from conducting impact assessments to managing data subject rights. While not legal advice, it serves as a valuable reference for navigating GDPR obligations and strengthening compliance posture.
- Compliance Standards
Streamlining Regulatory Obligations: ECSO Action Plan for EU Cybersecurity Alignment (2025)
- Published date:
- Author: European Cyber Security Organisation (ECSO)
Published by the European Cyber Security Organisation (ECSO) in July 2025, this Action Plan offers a roadmap to harmonise cybersecurity regulatory requirements across the EU. Focusing on incident reporting, risk management, supply chain security, and audit practices, it presents actionable recommendations to improve cross-border coordination and reduce administrative burden—particularly for SMEs. Developed through stakeholder consultations, the plan supports a more resilient, efficient, and strategically autonomous cybersecurity environment in Europe.
- Emerging Technologies
Cyber Range Features Checklist & List of European Providers – ECSO 2025 Edition
- Published date:
- Author: European Cyber Security Organisation (ECSO)
The 2025 Edition of ECSO’s Cyber Range Features Checklist & List of European Providers is a strategic tool designed to support the procurement and deployment of cyber ranges across Europe. Developed by ECSO’s WG5 on Skills & Human Factors, this checklist enables organisations to define precise cyber range requirements, improving electronic tendering and solution alignment. It supports a wide range of stakeholders—cybersecurity professionals, operators, HR teams, governments, academia, and businesses—by enhancing training, resilience, simulation, and capability testing. The resource includes an updated list of European providers and aims to foster collaboration within the cyber range community.
- Application Security
Ethical Hacking: Web Application Security Training
- Published date:
- Author: EIT Digital
The Ethical Hacking course on Web Application Security, delivered under the SPECTRO project, provides a hands-on introduction to identifying and preventing vulnerabilities in web applications. Covering core topics such as information gathering, OWASP Top 10 security risks, client- and server-side security flaws, and API vulnerabilities, the course equips learners with the skills to analyze, test, and secure web applications against malicious attacks. Designed for students and developers, the training combines theory with practical exercises and quizzes to reinforce learning outcomes. Co-funded by the EU’s Digital Europe Programme, the course is free, self-paced, and accessible to ICT professionals and digital experts seeking advanced cybersecurity skills.
- Compliance Standards
ENISA Technical Implementation Guidance for NIS2 Directive
- Published date:
- Author: European Union Agency for Cybersecurity (ENISA)
This ENISA report offers technical guidance to help entities in digital infrastructures, ICT service management, and digital provider sectors comply with the NIS2 Directive. It maps out the security requirements set by the EU Regulation (EU) 2024/2690, and provides practical advice, suggested evidence, and examples to assist organizations in implementing those requirements. It is specifically aimed at private sector entities and covers topics such as risk management, incident management, certification and standards, and skills & competences.
- Compliance Standards
Acceptable Use Policy (AUP) – Framework, Templates, Best Practices, and Common Pitfalls
- Published date:
- Author: ISO-Docs
This resource explores the development and implementation of an Acceptable Use Policy (AUP) aligned with the ISO/IEC 27001:2022 standard. It outlines the purpose, scope, acceptable and prohibited uses, user responsibilities, enforcement measures, and review procedures essential for integrating the AUP into an organization’s Information Security Management System (ISMS). The document highlights the benefits of a strong AUP, such as risk reduction, improved user accountability, regulatory compliance, and enhanced operational efficiency. It also identifies common drafting and implementation pitfalls to avoid and offers practical guidance on stakeholder involvement, training, communication, and policy maintenance. Importantly, the resource includes customizable templates to help organizations develop ISO-compliant AUPs efficiently and effectively. Ideal for IT managers, CISOs, compliance teams, and security professionals.