Print

Privacy in the EU Institutions

Regulation (EC) No 45/2001 - which will be adapted in 2018, in order to be brought in line with the General Data Protection Regulation - lays down the data protection obligations for the EU institutions and bodies when they process personal data and develop new policies. The Regulation also sets out the duties of the EDPS including its role as an independent supervisory authority of the EU institutions and bodies when they process personal data and for advising on policies and legislation that affect privacy and cooperating with similar authorities to ensure consistent data protection.

Here you will find EDPS documents about privacy and data protection concerning the processing of personal data by the EU institutions and bodies, such as staff evaluation, accreditation of external visitors, access control.

Filters

31
Aug
2020

Informal Consultation on the application of Article 39(3)(b) of Regulation (EU) 2018/1725

Informal consultation from an EU Agency on whether a particular number of data subjects concerned by a processing should be considered as “large scale” in the sense of Article 39(3)(b) of the Regulation.

The EDPS notes that the Regulation itself does not define what constitutes “large-scale”, analyses existing guidance on the matter and concludes that in the case of the processing underlying the informal consultation, the proportion of the relevant population as well as the nature of the personal data processed and possible resulting risks cumulatively advocate for conducting a DPIA in the case at hand.

Available languages: German, English, French
23
Jul
2020

Comprehensive Union policy on preventing money laundering and terrorism financing

EDPS Opinion on  the European Commission’s action plan for a comprehensive Union policy on preventing money laundering and terrorism financing

Available languages: German, English, French
23
Jul
2020

EDPS reply on EIF's DPO informal consultation on broad access requests (Case 2020-0576)

EDPS reply on an informal consultation by the Data Protection Officer from the European Investment Fund on broad access requests.

Available languages: German, English, French
17
Jul
2020

Newsletter (81)

In this newsletter, we cover the EDPS Strategy 2020-2024 focusing on Digital Solidarity. As well as, in the context of The Hague Forum, a report on the use of Microsoft products and services by the EUIs. Finally, the EDPS published a report accompanied by a factsheet and video on Data Protection Impact Assessments and the EDPS/EDPB trainees organised a conference on Data Protection in times of COVID-19. 

15
Jul
2020

Orientations from the EDPS: Reactions of EU institutions as employers to the COVID-19 crisis

The European institutions, bodies and agencies have had to react to the COVID-19 crisis not only in their policy roles, but also in their roles as employers. Changes in operations, such as moving the vast majority of staff to remote working have raised numerous questions on which EUIs consulted the EDPS. 

This document compiles the advice given on questions such as teleworking tools, staff management, health data aspects and replying to data subject access requests. 

This document builds on the experience of the past months and addresses the issues that were raised to us or encountered by us and is still relevant because telework will most likely be a big part of the ‘new normal’ for EUIs work. 

Available languages: German, English, French