European Data Protection Supervisor
EDPS Guidance on Article 25 of the Regulation 2018/1725 and internal rules
New data protection rules for the EU institutions provide EU citizens with the reassurance that they can enjoy the same strengthened rights when dealing with the EU institutions as they do when dealing with other companies, organizations or public bodies under the GDPR. This Factsheet will help you find out what are your rights in the digital era.
Personal data protection is about people. It is a fundamental right. The new data protection rules for EU Institutions, agencies and bodies give people more control over their personal data. They are designed to ensure that personal information is protected no matter where it is sent, processed or stored. This factsheet explains how the new data protection rules for EU institutions affect you.
The key word of the new data protection rules for EU institutions, bodies and agencies is accountability. If you are responsible for processing personal data on behalf of your institution, you are accountable for what you do, why you do it and the way you do it. This means that you need to make sure that you not only comply with data protection law, but that you can demonstrate this compliance. This factsheet will guide you in ensuring accountability.
EDPS guidelines on personal data breach notification for the European Union Institutions and Bodies.
User guide for compiling the web form on personal data breach notification.
Inspections are one of the tools used by the EDPS to ensure that the EU institutions and bodies comply with the rules set out in Regulation (EU) 2018/1725. EDPS Factsheet 5 provides information on what to expect if the EDPS carries out an inspection at your institution.
Inspections conducted by the EDPS - Policy paper