Regulation (EU) 2018/1725 lays down the data protection obligations for the EU institutions, bodies and agencies when they process personal data and develop new policies. This regulation also defines the obligations of the EDPS, including his role as an independent supervisory authority of EU institutions and bodies when they process personal data, and to advise on policies and legislation which affect privacy and cooperate with similar authorities to ensure consistent data protection.
Answer to a consultation regarding the launch of new research projects at the European Agency for Fundamental Rights (FRA) (Case 2008-777)
Opinion of 18 May 2009 on the notification for prior checking on the "Mediation Service of the European Commission" (Case 2009-010)
The European Commission has a Mediation Service which provides impartial advice to each official, servant or department that consults it. That Service intervenes if a case is submitted to it by an individual or a Commission department and may hear the persons concerned and request information from the Commission departments concerned. The role of the Mediation Service is to reconcile the administration and the staff. It makes recommendations and gives opinions, but has no power of decision.
The EDPS has examined the processing of personal data in managing absences owing to illnesses and has concluded that it does not seem to involve any infringement of the provisions of Regulation (EC) No 45/2001, provided that certain recommendations are implemented, in particular that the competent department checks the appropriateness of the transfer on a case by case basis and ensures that only relevant data are transferred; reminds data recipients that they may process the data they receive only for the purposes for which they are transmitted; applies the right of access and rectification to anyone whose personal data are processed; makes the specific confidentiality statement available on the Commission intranet site, and, if necessary, informs other persons whose data are being processed.
Opinion of 8 May 2009 on a notification for prior checking regarding the processing operation "TFlow" and "PROFIL" (Case 2009-069)
This notification covers two linked applications (TFlow and PROFIL).
The purpose of the processing is the management of workload in the translation units of the European Parliament. Moreover, while the primary purpose of the use of the data is for allocation and practical workflow management, including assessing workload and capacity, the notification states that the data may be taken into account for staff assessment and appraisal purposes.
Analysis of the EDPS on a consultation related to the draft implementing rules of Eurofound
Analysis of the EDPS on a consultation related to the draft implementing rules of Cedefop