Public Policies in Data Security in the European Union: A Literature Review

Abstract

This literature review explores the multifaceted development of public policies in data security within the European Union. It synthesizes findings from fourteen key academic studies and policy analyses, identifying challenges such as regulatory fragmentation, ethical governance, technological uncertainties with blockchain, and the pursuit of digital sovereignty. The analysis reveals that harmonized regulations are needed to bridge gaps across diverse sectors like finance, aviation, and critical infrastructure. Ethical considerations surrounding AI, algorithmic decision-making, and data sharing emerge as essential for fostering public trust. The review also examines institutional dynamics, highlighting the roles of ENISA, national agencies, and EU legislative initiatives like the Digital Operational Resilience Act. It discusses how political negotiations and sector-specific needs complicate the path toward a unified cybersecurity framework. The synthesis underscores the importance of balancing innovation with compliance, safeguarding citizens' rights while promoting technological advancement. Ultimately, the review advocates for a more integrated, ethical, and resilient policy landscape and suggests areas for future research, emphasizing collaboration among EU institutions, member states, industry stakeholders, and researchers to address emerging cyber threats and achieve digital sovereignty.