This briefing is based on a STOA study that examined the relationship between blockchain technology and European data protection law. The study showed, first, that there is significant tension between the very nature of blockchain technology and the overall structure of the General Data Protection Regulation (GDPR). Whether specific blockchain use cases are compliant with the supranational legal framework can, however, not be examined in a generalised fashion but is best determined on a case-by-case basis. Second, the study also highlighted that in specific cases this class of distributed technologies may offer distinct advantages that can be helpful in achieving some of the GDPR's objectives. It is on the basis of the preceding analysis that the study developed concrete policy options that could be adopted to ensure that distributed technologies develop in in line with the objectives of the legal framework.