European Data Protection Supervisor
European Data Protection Supervisor

News & Events

News & Events

DPO News and events

04/10/2017
4
Oct
2017

Training for Heads of Unit/Heads of Sector

Training for Heads of Unit/Heads of Sector given by the EDPS in the framework of the EUSA lunch conference with the participation of Philippe Renaudiere, Data Protection Officer at the European Commission.

Subject/purpose of the training

Everyday, Heads of Units/ Heads of Sectors in the EU institutions and bodies collect, use or store (process) personal data in the course of their work. From selection and recruitment, staff appraisals, administrative inquiries, organising meetings, managing visitors to dealing with contracts, grants and tenders, personal data is everywhere!

The law applicable to the EU institutions and bodies when they process the personal data of individuals is about to change. The new Regulation will come into effect in spring 2018 (repealing Regulation (EC) 45/2001) and has implications for all those dealing with personal data in their work.

The updated rules will impose new obligations but will also remove some of the administrative burdens. This course aims to give you a practical overview of your obligations as Heads of Units/Heads of Sectors within the EU institutions: how to protect the information you collect, where to store it, who should have access to it, how long you should keep it and much more.

Date: 4 October 2017
Time: 12.30 - 14
Location: Jean-André de Motstraat 24, 1040 Etterbeek

01/06/2017
1
Jun
2017

41th Meeting of the Data Protection Officers and the EDPS

41th Meeting of the Data Protection Officers of the EU institutions and the European Data Protection Supervisor, European Agency for the operational management of large-scale IT systems in the area of freedom, security and justice (eu-Lisa), Tallinn, Estonia.

AgendaPDF icon
Handout - Workshop on documentation under "New 45"PDF icon
Data protection impact assessment under "New 45" (ppt)File
Rights of the Data Subject under Chapter III of the new Regulation (ppt)Office presentation icon
Overview of recent case lawPDF icon
27/10/2016
27
Oct
2016

40th Meeting of the Data Protection Officers and the EDPS

40th Meeting of the Data Protection Officers and the European Data Protection Supervisor - European Union Intellectual Property Office, Alicante, Spain.

AgendaPDF icon
Overview of recent case law, Presentation by Christopher DockseyPDF icon
What to expect when we inspect, Presentation by Ute KallenbergerPDF icon
Data Protection Impact Assessment, Presentation by Owe Langfeldt and Tereza StruncovaPDF icon
Workshop for newly appointed DPOs, Presentation by Petra Candellier and Xanthi KapsosideriPDF icon
Access under Article 13 and its restriction under Article 20PDF icon
Case study on Mobile Devices, Presentation by Owe Langfeldt and Fidel SantiagoPDF icon
28/04/2016
28
Apr
2016

39th Meeting of the Data Protection Officers and the EDPS

39th Meeting to take place at the EUROFOUND, Dublin. Read more

AgendaPDF icon
Presentation of Wojciech Wiewiórowski, Assistant SupervisorPDF icon
Overview of Recent Case LawPDF icon
eCommunication GuidelinesPDF icon
Speed training on staff appraisalPDF icon
Speed training on whistleblowingPDF icon
Speed training on Cloud computingPDF icon
09/02/2016
9
Feb
2016

Reference Library

Have a look at our gateway to a wealth of information on a selection of subjects covered in the course of our supervision of the EU institutions and bodies.

05/11/2015
5
Nov
2015

38th Meeting of the Data Protection Officers and the EDPS

The next meeting of the Network of Data Protection Officers and the EDPS will be hosted by ENISA at the Electra Palace Hotel, Athens.

For further information please contact dataprotection@enisa.europa.eu

AgendaPDF icon
AI & DM - A collective intelligence exercisePDF icon
Overview of recent data protection and privacy case-lawPDF icon
Overview of recent case lawPDF icon
A review of the guidelines on disciplinary mattersPDF icon
Information security: DP enablerPDF icon
08/05/2015
8
May
2015

37th Meeting of the Data Protection Officers and the EDPS

Information and presentations from the 37th Meeting of the Data Protection Officers and the European Data Protection Supervisor held at the European Investment Bank in Luxembourg on 8 May 2015.

See also the agenda

Complaints and the role of the DPO (zip)Package icon
Report on the 37th Meeting of the DPOs and the EDPSPDF icon
Leading by example: The EDPS Strategy 2015-2019PDF icon
Supervision and enforcement priorities in 2015PDF icon
Overview of recent case lawPDF icon
Introduction to newly appointed DPOsPDF icon
Mobile devices risk management and data protectionPDF icon
The DPO and accountabilityPDF icon
Risk management and data protectionPDF icon
Security incidents affecting personal dataPDF icon
09/12/2014
9
Dec
2014

EPSO Competition for Data Protection Specialists

Administrator / Legal officer (AD 6)

The EDPS is looking for highly-talented data protection specialists to join the team in Brussels. Applicants must have expertise and professional experience in the field of data protection in the public administration. For more information please consult the EPSO website or read the leaflet below.

07/11/2014
7
Nov
2014

36th Meeting of the Data Protection Officers and the European Data Protection Supervisor

36th Meeting of the Data Protection Officers and the European Data Protection Supervisor – Cedefop, Thessaloniki

AgendaPDF icon
Personal Data and Declarations of InterestPDF icon
International Transfers by EU Institutions and BodiesPDF icon
IT Security Incidents and the Role of the DPOPDF icon
Cloud Computing at EU InstitutionsPDF icon
13/06/2014
13
Jun
2014

DPO Training – Prior Checking Notifications

A training session will be held at the EDPS premises at 15h00 concerning how to complete the form for Prior Checking Notifications under Article 27.3 and an exchange of best practice.

11/06/2014
11
Jun
2014

35th Meeting of the Data Protection Officers and the European Data Protection Supervisor

35th Meeting of the Data Protection Officers and the European Data Protection Supervisor – Brussels, 11-13 June 2014

Draft agendaPDF icon
28/02/2014
28
Feb
2014

Vacancies

Consult our latest vacancies!

27/02/2014
27
Feb
2014

Data Security Breaches

In October 2013, the EDPS was notified of a data security breach involving unauthorised access to an EU Agency database which is operated by an external contractor. This database contained the names and email addresses of approximately 70 individuals. The Agency asked the EDPS for advice on how best to handle this breach, and has now implemented all our suggested remedial measures. These included carrying out a full investigation with the contractor, implementing amendments to the contract, and notifying affected data subjects.

Some EU institutions may already have their own rules in place about reporting security breaches to the relevant internal departments. Whilst we welcome this type of proactive approach, we are presently unable to provide a direct or definitive instruction on any obligations to notify security breaches to the controller or the EDPS, under current data protection law. However, the contractual changes that the Agency has implemented in this particular case indicate a positive and practical approach to data breach management, by obligating contractors to promptly notify any such breaches to the controller. This will enable the Agency to deal with any future incident in a timely and effective manner.

Topics:
03/02/2014
3
Feb
2014

Information note on transfers of staff data to Member States

Some Member States governments (e.g. via Permanent Representations, Embassies or directly their Ministries of Foreign Affairs) request personal data (name, grade, contact information...) of their nationals working for the institutions, bodies and agencies. In doing so, some refer to a specific legal basis, others simply ask without giving further reasons. Following several consultations on this matter, the EDPS has compiled a small note explaining to MS governments how and for which purposes such requests can be made. Please feel free to use and forward this note if you receive such requests. It is meant to explain this matter to colleagues in the national administrations, so it repeats the relevant provisions of Regulation (EC) 45/2001.

Please note that while we initially had proposed to send a letter to all MS governments explaining the issue, in the end, we decided not to do so. The main reason was that only about ten MS seem to regularly ask for this information, so there seemed to be no need to point out this possibility to all the others.

30/01/2014
30
Jan
2014

Reply to the update of notification on the CDR at the European Commission

Reply to the update of notification on the CDR at the European Commission - further use of an unsatisfactory CDR for blocking advancement in step – 2013 review of the Staff Regulations

28/11/2013
28
Nov
2013

New Staff Regulations: what this implies in terms of consultations to the EDPS and notifications for prior checking

The modification of the Staff Regulations may imply certain changes to existing administrative decisions or the adoption of new administrative rules.
In this regard we would like to remind you of our policy on consultations which provide that in principle it is the DPO who is to be involved in the revision of administrative decisions unless there is a novel or complex issue.

As for prior check notifications, we would like to use this occasion to remind you of the procedure for an update of an existing notification (preferably one clean version and a mark-up version indicating the changes). Such an update only needs to be made in case of a change with regard to the protection of personal data. There should also be a cover letter from the DPO describing the main changes.

Pages