The European Data Protection Board (EDPB) shared some statistics on resources made available by Member States to the supervisory authorities (SA) from the European Economic Area (EEA) and on enforcement actions by the SAs. This report was made after receiving a request from the Committee on Civil Liberties, Justice and Home Affairs (LIBE Committee) of the European Parliament.
The report states that supervisory authorities and the EDPB need to be appropriately equipped with staff and resources, in order to supervise compliance with the GDPR and to enforce if needed. A lack of resources competent to handle cross-border cases, can have tangible consequences for citizens across the EU.
In addition to complaint handling and carrying out investigations, the GDPR provides for a myriad of other tasks and instruments to promote and supervise compliance: the assessment of DPIAs, the assessment of codes of conduct, issuing instruments for certification and accreditation, the assessment of BCRs and of course contributing to the work of the EDPB to ensure the consistent application and interpretation of the GDPR across the EU. For all these tasks and instruments, appropriate equipment of supervisory authorities is of equal significant importance.