The COVID-19 pandemic has sparked discussion on many fronts, including EU data protection. The GDPR offers robust protection to individuals, but still accommodates data processing for the protection of public safety. This session will discuss how European privacy regulators have dealt with the current crisis, the in-house angle, and the broader EU privacy challenges that are here to stay. It will look at existing opinions from EU officials on the GDPR’s application in emergency; the most critical issues for in-house privacy lawyers; and emerging challenges, such as the re-use of personal data for epidemiological and public interest purposes as well the road ahead for tech industries.