When we wrote Privacy on the Ground several years ago, we did so with the aim of painting a picture of how people charged with protecting privacy and personal data actually do their work and what kinds of regulation, as well as other internal and external forces, effectively shape their behaviour. We compared five countries and discovered that countries with more ambiguous legislation—Germany and the USA—had the strongest privacy management practices, despite very different cultural and legal environments. They embedded privacy into business and risk management practices and built privacy into products, not just into legal texts. The more rule-bound countries—like France and Spain—trended instead towards compliance processes, not embedded privacy practices. Comparing privacy and personal data protection in practice thus revealed best practices, provided guidance to policymakers, and offered important lessons for everyone concerned with privacy and personal data protection. In many ways, EU Personal Data Protection in Policy and Practice is a continuation of our work, as it examines the practical implementation of privacy and data protection practices on the ground. While the countries analysed differ from those that we examined, the findings in this book confirm our previous results regarding the overlapping countries (the UK, Germany and France). Additionally, this book examines several additional countries in Europe such as Ireland, Sweden, Romania, Italy and the Netherlands, enriching our previous results with insights from more countries. Altogether, this provides an interesting cross section of countries from several regions in Europe with differing legal systems, economies and cultural backgrounds, resulting in different approaches towards privacy and personal data protection.