European Data Protection Supervisor
European Data Protection Supervisor

Privacy in the EU Institutions

Privacy in the EU Institutions

Regulation (EC) No 45/2001 - which will be adapted in 2018, in order to be brought in line with the General Data Protection Regulation - lays down the data protection obligations for the EU institutions and bodies when they process personal data and develop new policies. The Regulation also sets out the duties of the EDPS including its role as an independent supervisory authority of the EU institutions and bodies when they process personal data and for advising on policies and legislation that affect privacy and cooperating with similar authorities to ensure consistent data protection.

Here you will find EDPS documents about privacy and data protection concerning the processing of personal data by the EU institutions and bodies, such as staff evaluation, accreditation of external visitors, access control.

Filters

Pages

02/07/2020
2
Jul
2020

Outcome of own-initiative investigation into EU institutions’ use of Microsoft products and services

This paper presents the issues raised by the EDPS’ own-initiative investigation into European institutions’, bodies’, offices’ and agencies’ (‘EU institutions’) use of Microsoft products and services. These findings and recommendations from the investigation are likely to be of wider interest than just of the EU institutions: they may be of particular interest to all public authorities in EU/EEA Member States.

PDFPDF icon
EPUBFile
HTMLHTML icon
Tags:
02/07/2020
2
Jul
2020

The Hague Forum: Reinforcing cooperation for fair IT contracts in Europe

The Hague Forum, jointly organised with the Dutch Ministry of Justice and Security and the European Commission, met for the second time, on 2 July. The Hague Forum is a cooperation platform for public authorities in the EU, EU institutions (EUIs) and other international organisations to exchange information and strengthen their negotiation power with ICT service providers, including cloud service and communications providers.

Tags:
03/06/2020
3
Jun
2020

Consultation on relationship with travel agency

Consultation from an European Institution on the relationship with its contractor for providing travel agency services. The contractor considers that it should be a separate controller; the EDPS analyses the relationship at hand, the consequences of different legal constructions, and concludes that a controller-processor relationship is the most appropriate arrangement. 

06/05/2020
6
May
2020

Consultation on agreement for payroll services for local employees in a third country

EDPS Letter Consultation on agreement for payroll services for local employees in a third country

23/03/2020
23
Mar
2020

EDPS closes investigation into European Parliament’s 2019 election activities

The European Data Protection Supervisor (EDPS) has closed its investigation into the European Parliament’s use of a US-based political campaigning company to process personal data as part of its activities relating to the 2019 EU parliamentary elections. The contract between the European Parliament and NationBuilder came to a natural end in July 2019 and all data collected has been transferred to the European Parliament’s servers, the EDPS announced today.

18/03/2020
18
Mar
2020

2019 Annual Report - a year of transition

2019 could be described as a year of transition, across Europe and the world.  With new legislation on data protection in the EU now in place, the greatest challenge moving into 2020 and beyond is to ensure that this legislation produces the promised results. Awareness of the issues surrounding data protection and privacy, and the importance of protecting these fundamental rights, is at an all-time high and this momentum cannot be allowed to decline.

This Annual Report provides an insight into all EDPS activities in 2019, which was the last year of a five-year EDPS mandate. EDPS activities therefore focused on consolidating the achievements of previous years, assessing the progress made and starting to define priorities for the future.

HTML version: EN

Summary (HTML): EN - FR - DE

Full text of Annual Report (PDF):PDF icon
28/11/2019
28
Nov
2019

EDPS investigates European Parliament’s 2019 election activities and takes enforcement actions

The European Data Protection Supervisor (EDPS) is carrying out an investigation into the European Parliament’s use of a US-based political campaigning company to process personal data as part of its activities relating to the 2019 EU parliamentary election, the Assistant EDPS announced today.

21/10/2019
21
Oct
2019

EDPS investigation into IT contracts: stronger cooperation to better protect rights of all individuals

Cooperation between public authorities in the Member States, EU institutions and other international organisations is essential to ensure that contractual arrangements and measures with Microsoft provide the same level of protection for individual rights throughout the European Economic Area (EEA).

13/09/2019
13
Sep
2019

Service of documents and taking of evidence in civil or commercial matters

Opinion on the revision of the EU Regulations on service of documents and taking of evidence in civil or commercial matters

Tags:
03/06/2019
3
Jun
2019

Press Release - EDPS flags data protection issues on EU institutions’ websites

An inspection carried out by the European Data Protection Supervisor (EDPS) on the websites of major EU institutions and bodies revealed data protection and data security issues in seven out of the ten websites inspected. Each of the institutions concerned has received recommendations from the EDPS on how to ensure their websites are fully compliant with data protection rules and the relevant institutions have reacted swiftly to start rectifying the problems identified, the European Data Protection Supervisor said today.

23/05/2019
23
May
2019

Application of data protection clauses in EUI contracts

Letter concerning a consultation on the application of data protection clauses in EUI contracts.

Tags:
26/04/2019
26
Apr
2019

Security Verifications of External Contractors

Security Verifications of External Contractors requiring access to [certain] EU Institutions & Bodies in Belgium (Case 2016-0894)

Tags:
08/04/2019
8
Apr
2019

EDPS investigates contractual agreements concerning software used by EU institutions

As the supervisory authority for all EU institutions, the European Data Protection Supervisor (EDPS) is responsible for enforcing and monitoring their compliance with data protection rules. In this capacity, the EDPS is undertaking an investigation into the compliance of contractual arrangements concluded between the EU institutions and Microsoft, the European Data Protection Supervisor said today.

15/03/2019
15
Mar
2019

Combatting VAT Fraud

EDPS Opinion on two legislative Proposals relating to combatting VAT Fraud.

Tags:
26/02/2019
26
Feb
2019

EDPS launches first Annual Report of new data protection era

2018 was a busy year for the EDPS and a pivotal year for data protection in general. Under new data protection rules, the rights of every individual living in the EU are now better protected than ever, the European Data Protection Supervisor (EDPS) said today, as he presented his 2018 Annual Report to the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs (LIBE).

17/12/2018
17
Dec
2018

La procédure d’invalidité au sein le Médiateur européen

Avis de contrôle préalable concernant la procédure d’invalidité au sein le Médiateur européen (dossier 2016-0451).

Tags:
21/11/2018
21
Nov
2018
21/11/2018
21
Nov
2018

Factsheet 5 - What to expect when we inspect

/file/factsheet5png-0_enfactsheet_5.png

Inspections are one of the tools used by the EDPS to ensure that the EU institutions and bodies comply with the rules set out in Regulation (EU) 2018/1725. EDPS Factsheet 5 provides information on what to expect if the EDPS carries out an inspection at your institution.

12/11/2018
12
Nov
2018

Selection, Recruitment and Administrative Management for international staff

Prior check Opinion on Selection, Recruitment and Administrative Management for international staff in CSDP Missions by the EEAS Civilian Planning and Conduct Capability (CPCC)

Tags:

Pages