Avis du CEPD

Nos avis portent principalement sur des propositions législatives et sont adressés au législateur de l'UE (le Parlement européen, le Conseil et la Commission européenne), dans le but de signaler les principales préoccupations en matière de protection des données ainsi que nos recommandations.

Ces avis sont rendus en réponse aux demandes de la Commission, qui est légalement tenue de demander notre avis sur toute proposition législative ou projet d'actes d'exécution ou délégués, ainsi que sur les recommandations et propositions au Conseil dans le cadre d'accords internationaux conformément à l'article 42(1) du règlement (UE) 2018/1725 lorsqu'il y a un impact sur la protection des données personnelles.

Nous émettons également des avis d'initiative dans le cadre de notre rôle de conseil sur toutes les questions relatives au traitement de données personnelles.

Filters

Filter by Publication Year

Filter by Topics/Tags

Filter by Institution

Dec

2007

Opinions

Identification par radiofréquence (RFID)

Avis sur la communication de la Commission au Parlement européen, au Conseil, au Comité Economique et Social et au Comité des régions intitulée "L'identification par radiofréquence (RFID) en Europe: vers un cadre politique", document COM(2007) 96, JO C 101, 23.04.2008, p. 1

The EDPS published on 20 December 2007 an Opinion on the Commission's Communication on Radio Frequency Identification (RFID) in Europe that was released in March 2007. The Opinion deals with the growing use of RFID chips in consumer products and other new applications affecting individuals.

The EDPS welcomes the Commission's Communication on RFID as it addresses the main issues arising from the deployment of RFID technology while taking account of privacy and data protection considerations. The EDPS agrees with the Commission that it is appropriate in the first phase to leave room for self-regulatory instruments. However, additional legislative measures may be necessary to regulate RFID usage in relation to privacy and data protection.

Supporting the opt-in option at the point of sale, the "privacy by design" principle and the identification of "best available techniques", the EDPS recommends considering the adoption of a proposal for Community legislation regulating the main issues of RFID-usage in case the proper implementation of the existing legal framework fails.

Langues disponibles: Bulgarian, Czech, Danish, allemand, Estonian, Greek, anglais, Spanish, français, Italian, Latvian, Lithuanian, Hungarian, Maltese, Dutch, Polish, Portuguese, Romanian, Slovak, Slovenian, Finnish, Swedish

COM(2007) 96 final du 15.03.2007

Langues disponibles: anglais, français

Topics

Protection des données dès la conception

Surveillance

Localisation

Technologies

Dec

2007

Opinions

Dossiers passagers européens

Avis sur le projet de décision-cadre du Conseil relative à l'utilisation des données des dossiers passagers (Passenger Name Record - PNR) à des fins répressives, JO C 110, 01.05.2008, p. 1

The European Data Protection Supervisor (EDPS) has issued an Opinion on 20 December 2007 onthe proposal of the Commission for a Council Framework Decision on the use of Passenger Name Record (PNR) data for law enforcement purposes. The proposal involves obligations for air carriers to transmit data about all passengers on flights to or from an EU Member State.

The Opinion emphasizes the major impact the proposal would have on privacy and data protection rights of air passengers. While acknowledging that the fight against terrorism is a legitimate purpose, the EDPS expresses serious concerns about the necessity and proportionality of the proposal which, in his view, are not sufficiently established in the proposal. In addition, the EDPS takes a critical stance on the lack of clarity in relation to various aspects of the proposal, in particular the applicable legal framework, the identity of the recipients of personal data, and the conditions of transfer of data to third countries.

The Opinion focuses on four key issues and draws the following conclusions:

legitimacy of the processing: the proposal does not provide for sufficient elements of justification to support and demonstrate the legitimacy of the processing of data;
applicable legal framework: a significant lack of legal certainty is noted as regards the regime applicable to the different actors involved in the matter;
the identity of data recipients: the draft Decision does not provide for any specification concerning the identity of the recipients of personal data collected by airlines companies;
transfer of data to third countries: it is imperative that conditions of transfer of PNR data to third countries be coherent and subject to a harmonised level of protection.

Finally, the EDPS advises not to adopt the draft Decision before the new Lisbon Treaty's entry into force, so that it can follow the co-decision procedure foreseen by the new Treaty and the European Parliament is fully involved.

COM(2007) 654 final du 06.11.2007

Langues disponibles: anglais, français

Topics

Accords internationaux

PNR

Coopération policière

Sécurité

Système PNR de l'UE

Dec

2007

Opinions

Mise en oeuvre de l'initiative de Prüm

Avis sur l'initiative de la République fédérale d'Allemagne, en vue de l'adoption d'une décision du Conseil concernant la mise en oeuvre de la décision 2007/.../JAI relative à l'approfondissement de la coopération transfrontière, notamment en vue de lutter contre le terrorisme et la criminalité transfrontière, JO C 89, 14.4.2008, p. 1

On 19 December 2007, the EDPS issued his Opinion on the German initiative establishing implementing rules which are necessary for the functioning of the Council Prüm initiative. This initiative aims to step up cross-border cooperation, particularly for fighting terrorism and cross-border crime, by establishing mechanisms to exchange personal data such as DNA profiles and fingerprints.

In his Opinion, the EDPS holds the view that a clear, effective and comprehensive legal framework - combining general provisions and specific tailored rules on data protection - should be in place before the current Prüm initiative enters into force. He also points out that the initiative's implementing rules and their annex are of particular importance since they define crucial aspects and tools of the exchanges of data that are essential to ensure guarantees for concerned persons.

More specifically, the EDPS recommends the following:

the initiative and its annex should benefit from a broad and open discussion involving all relevant actors, such as the European Parliament and Data Protection Authorities;
the accuracy in searches and comparisons of DNA profiles and fingerprints should be duly taken into account and constantly monitored, also in the light of the larger scale of the exchange;
relevant data protection authorities should be put in a position to properly carry out their supervisory and advisory role throughout all the different stages of the implementation.

Initiative publiée dans le JO C 267, 9.11.2007, p. 4

Langues disponibles: anglais, français

Topics

Coopération judiciaire

Coopération policière

Sécurité

Technologies

Données biométriques

Sep

2007

Opinions

Transporteur par route

Avis sur la proposition de règlement établissant des règles communes sur les conditions à respecter pour exercer la profession de transporteur par route, JO C 14, 19.01.2008, p. 1

On 12 September 2007, the European Data Protection Supervisor (EDPS) issued his opinion on the Proposal for a Regulation of the European Parliament and of the Council establishing common rules concerning the conditions to be complied with to pursue the occupation of road transport operator.

The regulation establishes conditions relating to good repute, financial standing and professional competence which road transport companies have to satisfy. The proposal introduces national electronic registers that will have to be interconnected between all member states, facilitating the exchange of information between Member States. It contains a specific provision on data protection.

The EDPS advises that the proposed Regulation is amended to:

ensure greater definition of terms such as "good repute";
clarify ambiguities in the role of national authorities; and
ensure the requirements of Directive 95/46/EC are respected.

COM(2007) 263 final du 06.07.2007

Langues disponibles: anglais, français

Topics

Transports

Sep

2007

Opinions

Statistiques communautaires sur la santé

Avis sur la proposition de règlement du Parlement européen et du Conseil relatif aux statistiques communautaires de la santé publique et de la santé et de la sécurité au travail (COM(2007) 46 final), JO C 295, 7.12.2007, p. 1

On 5 September, the EDPS adopted an Opinion on a proposal for a Regulation of the European Parliament and of the Council on Community statistics on public health and health and safety at work.

The proposal aims at establishing the framework for all current and foreseeable activities in the field of Public health and Health and Safety at Work statistics carried out by the European Statistical System (i.e. Eurostat), the national statistical institutes and all other national authorities responsible for the provision of official statistics in these areas.

The main recommendations refer to the necessity to address the differences between Data Protection and Statistical Confidentiality and the notions which are specific to each area. Transfers of personal data to third countries as well as conservation periods of statistical data are also analysed.

Following discussion between the services of Eurostat and the EDPS, a common review of the processes put in place in Eurostat when dealing with individual records for statistical purposes will be conducted and may lead to the need for prior-checking.

COM(2007) 46 final du 07.02.2007

Langues disponibles: anglais, français

Topics

Santé

Access to documents
Administrative and Human Resources
Article 7 - droit à la vie privée
Règles d'entreprise contraignantes
Données biométriques
Blanchiment d'argent
Systèmes de transport intelligent
Case Management System
CEDH
CJUE
Communication
Recherche de preuves informatiques
Conseil de l'Europe
Conservation des données
COVID-19
Violation de données à caractère personnel
Droit d'information
Système PNR de l'UE
Europol
Finance
Informatique au travail
IT
Localisation
Management of the EDPS
Santé mobile
Technologies renforçant la protection de la vie privée
Physical Security
Public Events
Règlement (UE) 2018/1725
Safe Harbour
Système d’information Schengen
SIS SCG
Staff Committee
Supervision by EDPS
Surveys
Article 8 - Droit à la protection des données
Droit d'accès
Chaîne de blocs
Chiffrement
Clauses contractuelles types
Essais cliniques
Convention 108
Coopération fiscale
CrEDH
Cybersécurité
Discipline, Enquêtes
eCall
Système européen d'information sur les casiers judiciaires
PNR
OCDE
Profilage
Système d’information sur les visas
VIS SCG
Adequacy Decision
Anti-fraude
Informatique en nuage
Comité européen de la protection des données - Groupe de travail «Article 29»
Convention sur la cybercriminalité
Lutte contre le terrorisme
Drones
Droit de rectification
Eurodac
Eurodac SCG
Evasion fiscale
Privacy Shield
Appareils mobiles et applications
Système d’information douanier
CIS SCG
Umbrella Agreement
Droit à l'effacement
Marchés financiers
Nations Unies
Recrutement
Système d’information du marché intérieur
Données ouvertes
Droit à la limitation du traitement
Évaluation du personnel
IMI SCG
TTIP
Conditions de travail
Compteurs intelligents
Droit à la portabilité des données
Système d'entrée/sortie
Marchés, Subventions, Experts
Droit d'opposition
Réseaux sociaux
Prise de décision individuelle automatisée
Données concernant la santé au travail
Anti-harcèlement
Délégué à la protection des données
Conflits d'intérêts
Sécurité et accès aux locaux
Neutralité du réseau
Encryption
Intelligence artificielle
Etique
Robotique
Charte des droits fondamentaux de l’Union européenne
Règlement général sur la protection des données
Directive sur la police
Directive «vie privée et communications électroniques»
Règlement (CE) n° 45/2001
Droits de l'individu
Nécessité et Proportionalité
Protection des données dès la conception
Interopérabilité
Protection des données par défaut
Responsabilité du responsable du traitement
Accords internationaux
Normes internationales
Coopération internationale
Jurisprudence et litiges
Transferts de données
Coordination de la Supervision
Systèmes Informatiques à Grande échelle
Sécurité de l’information
Mégadonnées et "Digital Clearinghouse"
Internet des objets
Système de gestion des informations personnelles
IPEN (Réseau d'ingénierie de la vie privée sur Internet)
Administration en ligne
Frontières, asile, migration
Politique étrangère et de sécurité commune
Concurrence
Consommateurs
Finance et économie
Santé
Marché intérieur
Marché unique numérique
Coopération judiciaire
Coopération policière
Communications électroniques, société de l’information
Recherche et science
Transports
Respect de la vie privée dans les institutions de l'UE
Transparence
Lancement d'alerte
Surveillance
Sécurité
Technologies

Agency for the Cooperation of Energy Regulators (ACER)
Body of European Regulators for Electronic Communications (BEREC)
Clean Sky Joint Undertaking (CSJU)
Committee of the Regions (CoR)
Community Plant Variety Office (CPVO)
Consumers, Health and Food Executive Agency (CHAFEA)
Council of the European Union
Court of Justice of the European Union (CJEU)
ECSEL Joint Undertaking (ECSEL)
eu-LISA
European Agency for Safety and Health at Work (EU-OSHA)
European Anti-Fraud Office (OLAF)
European Asylum Support Office (EASO)
European Aviation Safety Agency (EASA)
European Banking Authority (EBA)
European Border and Coast Guard Agency (FRONTEX)
European Central Bank (ECB)
European Centre for Desease Prevention and Control (ECDC)
European Centre for the Development of Vocational Training (Cedefop)
European Chemicals Agency (ECHA)
European Climate, Infrastructure and Environment Executive Agency (CINEA)
European Commission
European Court of Auditors (ECA)
European Data Protection Board (EDPB)
European Data Protection Supervisor (EDPS)
European Defence Agency (EDA)
European Economic and Social Committee (EESC)
European Education and Culture Executive Agency (EACEA)
European Environment Agency (EEA)
European External Action Service (EEAS)
European Fisheries Control Agency (EFCA)
European Food Safety Authority (EFSA)
European Foundation for the Improvement of Living and Working Conditions (Eurofound)
European GNSS Agency (GSA)
European Health and Digital Executive Agency (HaDEA)
European Innovation Council and SMEs Executive Agency (EISMEA)
European Institute for Gender Equality (EIGE)
European Institute of Innovation and Technology (EIT)
European Insurance and Occupations Pensions Authority (EIOPA)
European Investment Bank (EIB)
European Investment Fund (EIF)
European Labour Authority (ELA)
European Maritime Safety Agency (EMSA)
European Medicines Agency (EMA)
European Monitoring Centre for Drugs and Drug Addiction
European Ombudsman (Ombudsman)
European Parliament
European Personnel Selection Office (EPSO)
European Police College (CEPOL)
European Police Office (EUROPOL)
European Public Prosecutor's Office (EPPO)
European Research Council Executive Agency (ERCEA)
European Research Executive Agency (REA)
European Securities and Markets Authority (ESMA)
European Systemic Risk Board (ESRB)
European Training Foundation (ETF)
European Union Agency for Fundamental Rights (FRA)
European Union Agency for Network and Information Security (ENISA)
European Union Agency for Railways (ERA)
European Union Institute for Security Studies (EUISS)
European Union Intellectual Property Office (EUIPO)
European Union Satellite Centre (EUSC)
Fuel Cells & Hydrogen Joint Undertaking (FCHJU)
Fusion for Energy (F4E)
Innovative Medicines Initiative Joint Undertaking (IMI JU)
Joint Research Centre (JRC)
Office for Harmonisation in the Internal Market (OHIM)
Other
SESAR Joint Undertaking (SESAR JU)
Single Resolution Board (SRB)
The European Union's Judicial Cooperation Unit (EUROJUST)
Translation Centre for the Bodies of the European Union (CdT)