Privacy in the EU Institutions

Opinion of 1 July 2009 on a notification for prior checking regarding training evaluation (Case 2009-220)

Opinion of 30 June 2009 on the call for tender procedures and management of contracts (Case 2009-323)

See EDPS prior checking opinion (2008-346) of 15 September 2008.

Opinion of 22 June 2009 on the notification for prior checking concerning "Time and absence management" (Case 2009-072)
On 22 June 2009, the EDPS adopted an opinion on time and absence management at the European Center for Disease Prevention and Control (ECDC). The EDPS considers that the processing is lawful to the extent that it is limited to the purpose of time and absence management and that it does not lead to monitor on a regular basis the staff to evaluate personal aspects of the data subject, such as his/her ability, efficiency or conduct. Specific guarantees should be implemented as regards the processing of sensitive data, and in particular the ECDC should ensure that certificates containing medical data are sent by data subjects to an external medical service. The EDPS stresses that the right of an individual to access and rectify personal data concerning him or her should be ensured to all data subjects whom data are processed including trainees and family members, whatever the format in which such data are processed. The EDPS insists that ECDC must determine appropriate periods for the conservation of personal data.

Answer to a notification for prior checking concerning the management of medical certificates (Case 2009-201)

Rapport général concernant l'"évaluation du respect du règlement (CE) n° 45/2001 au sein des institutions et organes de l'UE"