Factsheets

Processing of personal data - be it collection, storage, use or disclosure - constitutes a limitation on the right to the protection of personal data and must comply with EU law. This requires ensuring that it is both necessary and proportional.

The 8 steps outlined in "The EDPS quick-guide to necessity and proportionality" will help you assess the compatibility of measures impacting the fundamental rights to privacy and to the protection of personal data with the EU Charter of Fundamental Rights.

Topics:

Necessity & Proportionality

27/09/2019

Sep

2019

Factsheets

Checklists and flowcharts on data protection

Administrative fines and sanctions under Regulation EU 2018/1725

Checklist 1: What are the duties of the controller?

Checklist 2: What are the duties of the processor?

Checklist 3: What is required in a processing agreement?

Flowchart: data transfers in the context of Brexit

Flowchart: Are you a processor, controller, or joint controller?

Powers of the EDPS under Regulation (EU) 2018/1725

Useful points and questions on data protection

Topics:

Regulation 2018/1725

24/07/2019

Jul

2019

Factsheets

Stay cool this summer - 11 tips to be secure online on holiday

/file/19-07-25summergraphicbignewsjpg-0_en19-07-25_summergraphic_bignews.jpg

Summer holidays are a chance to relax, but they can be a source of high stress themselves if you are not safe online. To help with this, the European Data Protection Supervisor has created a simple guide of 11 tips to help you stay secure while using your computer, smartphone and tablet – and in a sunny mood!

Topics:

Security

11/12/2018

Dec

2018

Factsheets

The GDPR for EU institutions: your rights in the digital era

/file/factsheet3twitterjpg_enfactsheet3_twitter.jpg

New data protection rules for the EU institutions provide EU citizens with the reassurance that they can enjoy the same strengthened rights when dealing with the EU institutions as they do when dealing with other companies, organizations or public bodies under the GDPR. This Factsheet will help you find out what are your rights in the digital era.

Topics:

Regulation 2018/1725

11/12/2018

Dec

2018

Factsheets

New data protection rules for EU institutions and how they affect YOU

/file/factsheet2twitterjpg_enfactsheet2_twitter.jpg

Personal data protection is about people. It is a fundamental right. The new data protection rules for EU Institutions, agencies and bodies give people more control over their personal data. They are designed to ensure that personal information is protected no matter where it is sent, processed or stored. This factsheet explains how the new data protection rules for EU institutions affect you.

Topics:

Regulation 2018/1725

11/12/2018

Dec

2018

Factsheets

Documenting data processing: The EDPS guide to ensuring accountability

/file/factsheet1twitterjpg_enfactsheet1_twitter.jpg

The key word of the new data protection rules for EU institutions, bodies and agencies is accountability. If you are responsible for processing personal data on behalf of your institution, you are accountable for what you do, why you do it and the way you do it. This means that you need to make sure that you not only comply with data protection law, but that you can demonstrate this compliance. This factsheet will guide you in ensuring accountability.

Topics:

Regulation 2018/1725

21/11/2018

Nov

2018

Factsheets

Factsheet 5 - What to expect when we inspect

/file/factsheet5png-0_enfactsheet_5.png

Inspections are one of the tools used by the EDPS to ensure that the EU institutions and bodies comply with the rules set out in Regulation (EU) 2018/1725. EDPS Factsheet 5 provides information on what to expect if the EDPS carries out an inspection at your institution.

Topics:

07/06/2016

Jun

2016

Factsheets

EDPS launches Accountability Initiative

Topics:

Accountability

16/12/2013

Dec

2013

Factsheets

Factsheet 4 - Keeping an eye on video-surveillance in the EU administration

/file/factsheet4png_enfactsheet_4.png

Almost all EU institutions and bodies have video-surveillance in operation on their premises. When well-designed and selectively used, video surveillance systems are powerful tools for tackling security issues. EDPS Factsheet 4 explains how to balance security with respect for privacy when using video-surveillance.

Topics:

11/11/2013

Nov

2013

Factsheets

Factsheet 3 - Supervising EU institutions and bodies & enforcing data protection principles

/file/factsheet3png_enfactsheet_3.png

When EU institutions and bodies process personal data, they must comply with the principle of accountability and the obligations set out in the EU Data Protection Regulation 45/2001. EDPS Factsheet 3 provides information on how the EDPS works with the EU insitutions to ensure they achieve compliance.

Topics:

25/01/2013

Jan

2013

Factsheets

Factsheet 2 - Transparency in the EU administration: Your right to access documents

/file/factsheet2png_enfactsheet_2.png

The European institutions and bodies make decisions and adopt legislation that affect the lives of all citizens in European Member States. As a citizen you have the right to know why, how and who is involved in making these decisions and laws. Factsheet 4 explains your right of access to the documents prepared in these activities.

Factsheet 1 - Your personal information and the EU administration: What are your rights?

/file/factsheet1png-0_enfactsheet_1.png

Everyone is entitled to protect their personal information. Data protection is a fundamental right, protected by European law and enshrined in Article 8 of the Charter of Fundamental Rights of the European Union. EDPS Factsheet 1 provides you with information on your data protection rights and how to exercise them.

COVID-19
Data Breach
Regulation 2018/1725
Data Protection Officer
Net Neutrality
Encryption
Artificial Intelligence
Ethics
Robotics
Charter of Fundamental Rights
-Article 7 - right to private life
-Article 8 - right to data protection
General Data Protection Regulation
Police Directive
ePrivacy Directive
-Data retention
Regulation 45/2001
Rights of the Individual
-Right of Information
-Right of Access
-Right to Rectification
-Right to Erasure
-Right to Restriction of Processing
-Data Portability
-Right to Object
-Automated Individual Decision-Making
Necessity & Proportionality
Privacy by Design
Interoperability
Privacy by Default
Accountability
International Agreements
-Safe Harbour
-PNR
-Privacy Shield
-Umbrella Agreement
-TTIP
International Standards
-ECHR
-Convention 108
-Cybercrime Convention
International Cooperation
-Council of Europe
-OECD
-EDPB - 29WP
-United Nations
Case-law and litigation
-CJEU
-ECtHR
Transfers of data
-Binding Corporate Rules
-Standard Contractual Clauses
-Adequacy Decision
Supervision coordination
-SIS SCG
-VIS SCG
-Eurodac SCG
-CIS SCG
-IMI SCG
Large-Scale IT Systems
-SIS
-VIS
-Eurodac
-CIS
-IMI
-EES
Information Security
-Computer Forensics
-Encryption
Big Data & Digital Clearinghouse
Internet of Things
Personal Information Management System
IPEN
-PETs
eGovernment
Borders, Asylum, Migration
Common Foreign and Security Policy
Competition
Consumers
Finance & Economy
-Money laundering
-Tax cooperation
-Tax evasion
-Financial markets
Health
-mHealth
-Clinical Trials
Internal Market
Digital Single Market
Judicial Cooperation
Police Cooperation
-Europol
-ECRIS
Electronic Communications, Information Society
Research & Science
Transport
-C-ITS
-eCall
-Drones
Privacy in the EU Institutions
-IT at Work
-Discipline, Investigations
-Anti-fraud
-Recruitment
-Staff Evaluation
-Working Conditions
-Procurements, Grants, Experts
-Health Data in the Workplace
-Anti-harassment
-Conflicts of Interest
-Security & Access to Premises
Transparency
Whistleblowing
Surveillance
-Tracking
-Profiling
Security
-EU Passengers Name Record
-Cybersecurity
-Counter-terrorism
Technologies
-Biometrics
-Blockchain
-Cloud Computing
-Mobile Devices & Apps
-Open Data
-Smart Meters
-Social Networks

Agency for the Cooperation of Energy Regulators (ACER)
Body of European Regulators for Electronic Communications (BEREC)
Clean Sky Joint Undertaking (CSJU)
Committee of the Regions (CoR)
Community Plant Variety Office (CPVO)
Consumers, Health and Food Executive Agency (CHAFEA)
Council of the European Union
Court of Justice of the European Union (CJEU)
ECSEL Joint Undertaking (ECSEL)
Education, Audiovisual and Culture Executive Agency (EACEA)
eu-LISA
European Agency for Safety and Health at Work (EU-OSHA)
European Agency for the Management of Operational Cooperation at the External Border (FRONTEX)
European Anti-Fraud Office (OLAF)
European Asylum Support Office (EASO)
European Aviation Safety Agency (EASA)
European Banking Authority (EBA)
European Central Bank (ECB)
European Centre for Desease Prevention and Control (ECDC)
European Centre for the Development of Vocational Training (Cedefop)
European Chemicals Agency (ECHA)
European Commission
European Court of Auditors (ECA)
European Data Protection Board (EDPB)
European Data Protection Supervisor (EDPS)
European Defence Agency (EDA)
European Economic and Social Committee (EESC)
European Environment Agency (EEA)
European External Action Service (EEAS)
European Fisheries Control Agency (EFCA)
European Food Safety Authority (EFSA)
European Foundation for the Improvement of Living and Working Conditions (Eurofound)
European GNSS Agency (GSA)
European Institute for Gender Equality (EIGE)
European Institute of Innovation and Technology (EIT)
European Insurance and Occupations Pensions Authority (EIOPA)
European Investment Bank (EIB)
European Investment Fund (EIF)
European Maritime Safety Agency (EMSA)
European Medicines Agency (EMA)
European Monitoring Centre for Drugs and Drug Addiction
European Ombudsman (Ombudsman)
European Parliament
European Personnel Selection Office (EPSO)
European Police College (CEPOL)
European Police Office (EUROPOL)
European Public Prosecutor's Office (EPPO)
European Research Council Executive Agency (ERCEA)
European Securities and Markets Authority (ESMA)
European Systemic Risk Board (ESRB)
European Training Foundation (ETF)
European Union Agency for Fundamental Rights (FRA)
European Union Agency for Network and Information Security (ENISA)
European Union Agency for Railways (ERA)
European Union Institute for Security Studies (EUISS)
European Union Intellectual Property Office (EUIPO)
European Union Satellite Centre (EUSC)
Executive Agency for Small and Medium-sied Enterprises (EASME)
Fuel Cells & Hydrogen Joint Undertaking (FCHJU)
Fusion for Energy (F4E)
Innovation and Networks Executive Agency (INEA)
Innovative Medicines Initiative Joint Undertaking (IMI JU)
Joint Research Centre (JRC)
Office for Harmonisation in the Internal Market (OHIM)
Other
Research Executive Agency (REA)
SESAR Joint Undertaking (SESAR JU)
Single Resolution Board (SRB)
The European Union's Judicial Cooperation Unit (EUROJUST)
Translation Centre for the Bodies of the European Union (CdT)