EDPS comments on the European Commission's draft decision laying down internal rules concerning the provision of information to data subjects and the restriction of certain of their rights in the context of processing of personal data by the Commission when handling requests and complaints under the Staff Regulations (2021-0758)
Privacy in the EU Institutions
Regulation (EU) 2018/1725 lays down the data protection obligations for the EU institutions, bodies and agencies when they process personal data and develop new policies. This regulation also defines the obligations of the EDPS, including his role as an independent supervisory authority of EU institutions and bodies when they process personal data, and to advise on policies and legislation which affect privacy and cooperate with similar authorities to ensure consistent data protection.
Formal comments of the EDPS on the Commission Implementing Decision laying down a model security plan, a model business continuity and a disaster recovery plan pursuant to Article 59(4) of Regulation (EU) 2018/1240
Audits are one of the tools used by the EDPS to ensure that EUIs comply with data protection rules. When do we conduct audits? Why and which EUIs are audited? What are the three stages of an EDPS audit? This factsheet will help you to learn more on what to expect when we inspect.
Formal comments of the EDPS on the draft Commission Implementing Decisions specifying the technical procedure for the European search portal to query the EU information systems, Europol data and Interpol databases and the format of the European search portal's replies, pursuant to Article 9(7) of Regulation (EU) 2019/817 of the European Parliament and of the Council
EDPS Formal comments on the draft Commission Delegated Regulations supplementing Regulation (EU) 2019/817 and Regulation (EU) 2019/818 of the European Parliament and Council with regard to cases where identity data may be considered as same or similar for the purpose of the multiple identity detection