Print

Privacy in the EU Institutions

Regulation (EC) No 45/2001 - which will be adapted in 2018, in order to be brought in line with the General Data Protection Regulation - lays down the data protection obligations for the EU institutions and bodies when they process personal data and develop new policies. The Regulation also sets out the duties of the EDPS including its role as an independent supervisory authority of the EU institutions and bodies when they process personal data and for advising on policies and legislation that affect privacy and cooperating with similar authorities to ensure consistent data protection.

Here you will find EDPS documents about privacy and data protection concerning the processing of personal data by the EU institutions and bodies, such as staff evaluation, accreditation of external visitors, access control.

Filters

17
Sep
2020

EDPS comments on the EPPO’s draft internal rules of procedure (Case 2020-0781)

These comments from the EDPS refer to the draft internal rules of procedure of the European Public Prosecutor's Office (EPPO).

 

DisclaimerPlease note that parts of this document were redacted to protect the internal decision making process of the EPPO. The full text of the final document referred to in this opinion, as adopted by the EPPO College, can be found at: https://ec.europa.eu/info/law/cross-border-cases/judicial-cooperation/networks-and-bodies-supporting-judicial-cooperation/european-public-prosecutors-office_en#decisions-of-the-college-of-the-eppo.

17
Sep
2020

EDPS comments on the EPPO’s draft revised rules on processing of personal data (Case 2020-0782)

The present comments from the EDPS refer to the draft revised rules on processing of personal data by the European Public Prosecutor's Office (EPPO).

 

DisclaimerPlease note that parts of this document were redacted to protect the internal decision making process of the EPPO. The full text of the final document referred to in this opinion, as adopted by the EPPO College, can be found at: https://ec.europa.eu/info/law/cross-border-cases/judicial-cooperation/networks-and-bodies-supporting-judicial-cooperation/european-public-prosecutors-office_en#decisions-of-the-college-of-the-eppo.

1
Sep
2020

Orientations from the EDPS: Body temperature checks by EU institutions in the context of the COVID-19 crisis

A number of European institutions, agencies and bodies (EUIs) have implemented body temperature checks as part of the health and safety measures adopted in the context of their “return to the office” strategy as an appropriate complementary measure, among other necessary health and safety measures, to help prevent the spread of COVID-19 contamination.

At the same time, systematic body temperature checks of staff and other visitors to filter access to EUIs premises may constitute an interference into individuals’ rights to private life and/or personal data protection. The EDPS observes that body temperature checks can be implemented through a variety of devices and processes that should be subject to careful assessment. The EDPS has decided to issue the present orientations to help EUIs and Data Protection Officers (DPOs) meet the requirements of Regulation (EU) 2018/1725 (the Regulation), where applicable.

31
Aug
2020

Informal Consultation on the application of Article 39(3)(b) of Regulation (EU) 2018/1725

Informal consultation from an EU Agency on whether a particular number of data subjects concerned by a processing should be considered as “large scale” in the sense of Article 39(3)(b) of the Regulation.

The EDPS notes that the Regulation itself does not define what constitutes “large-scale”, analyses existing guidance on the matter and concludes that in the case of the processing underlying the informal consultation, the proportion of the relevant population as well as the nature of the personal data processed and possible resulting risks cumulatively advocate for conducting a DPIA in the case at hand.

Available languages: German, English, French
23
Jul
2020

EDPS reply on EIF's DPO informal consultation on broad access requests (Case 2020-0576)

EDPS reply on an informal consultation by the Data Protection Officer from the European Investment Fund on broad access requests.

Available languages: German, English, French