European Data Protection Supervisor

Just two days from now, the General Data Protection Regulation (GDPR) will become fully applicable to all companies and organisations operating within the EU.

14/05/2018

May

2018

DPO News

Phase-out of prior checks under Article 27 of Regulation (EC) No. 45/2001

In preparation for the 'new Regulation 45', many DPOs ask about the 'phase-out' of prior checks under Article 27 of the 'old' Regulation 45. This letter, sent in reply to a request from the DPOs of the Executive Agencies, sets out the current EDPS approach on this topic.

26/03/2018

Mar

2018

Press Release

EDPS helping EU institutions to prepare for new chapter in EU data protection

Two months before the new data protection rules set out in the General Data Protection Regulation (GDPR) become applicable, the European Data Protection Supervisor (EDPS) has published two new sets of Guidelines. The Guidelines provide advice to the EU institutions on how to adapt to this new chapter in EU data protection, which is notable for the emphasis it places on the principle of accountability.

01/03/2018

Mar

2018

Opinions Non Prior Check

Erasmus+ Online Linguistic Support Scheme - EACEA

Prior-checking Opinion regarding the “Erasmus+ Online Linguistic Support scheme” at EACEA (Case 2014-1154)

06/02/2018

Feb

2018

Guidelines

Accountability on the ground: Provisional guidance on documenting processing operations for EU institutions, bodies and agencies

Accountability on the ground: Provisional guidance on documenting processing operations for EU institutions, bodies and agencies (EUIs). These documents provide provisional guidance for controllers and DPO in the EUIs on how to generate records for their processing operations, how to decide whether they need to carry out data protection impact assessments (DPIAs), how to do DPIAs and when to do prior consultations to the EDPS. As the text of the 'new Regulation 45' on data protection in the EU institutions is not formally adopted yet, this guidance is provisional and will be updated once a final text will be published in the Official Journal. Nonetheless, it can already be helpful for the EUIs to prepare for their new obligations (Articles 31, 39 and 40 of the 'new Regulation 45').

This text was updated in July 2018 to adapt it to the politically agreed text for the 'new Regulation 45' (Council Document 9296/18), add a few clarifications, as well as to correct a number of errors.

Summary

Part I

Part II

30/11/2017

Nov

2017

DPO News

Training on the new Regulation at EUSA

On 30 November 2017, the EDPS Supervision & Enforcement Unit has provided a training on the new Regulation to managers/heads of Units/sectors at the EUSA, in Brussels.

Link to video presentation.
Password to access the video: EDPS-301117
Please note: Internet Explorer may not work correctly, we recommend using a different web browser.

28/11/2017

Nov

2017

Press Release

EU institutions a predominantly safe pair of hands for handling personal information, according to EDPS Survey

EU institutions and bodies deal with a wide variety of personal data, and often in complex ways. EU law requires that they are able to ensure, verify and demonstrate compliance with data protection rules when handling this data. According to a report published today by the European Data Protection Supervisor (EDPS), there has been continuous and steady progress in the way that they deliver on this obligation.

21/11/2017

Nov

2017

Press Release

Press Statement: EDPS calls for swift agreement on new Regulation

Eleven months have passed since the Commission issued its proposal for the new Regulation governing data protection in the EU institutions and bodies. The proposal aims to align the provisions of the current Regulation (EC) 45/2001 with the rules of the General Data Protection Regulation (GDPR) to achieve a stronger and more coherent data protection framework in the Union.

25/10/2017

Oct

2017

Inspections

EDPS Inspection Guidelines

12/05/2017

May

2017

Newsletters

Newsletter Nr. 51

The May 2017 edition of the EDPS Newsletter covers recently adopted Opinions on data protection and the EU institutions, digital content and the European Travel Information and Authorisation System (ETIAS), as well as many other EDPS activities.

15/03/2017

Mar

2017

Opinions

Upgrading data protection rules for EU institutions and bodies

EDPS Opinion on the proposal for a Regulation on the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC

Executive summary

15/02/2017

Feb

2017

Priorities

Priorities 2017

Note

Annex

09/12/2016

Dec

2016

Factsheets

Factsheet 5 - What to expect when we inspect

/file/factsheet5png-0_enfactsheet_5.png

Inspections are one of the tools used by the EDPS to ensure that the EU institutions and bodies comply with the rules set out in Regulation (EC) No. 45/2001. EDPS Factsheet 5 provides information on what to expect if the EDPS carries out an inspection at your institution.

07/04/2016

Apr

2016

Newsletters

Newsletter Nr. 47

The April 2016 edition of the EDPS Newsletter covers the EDPS Opinion on the EU-US "Umbrella Agreement", the launch of the EDPS Reference Library and the EDPS initiative on digital ethics and many other EDPS activities.

21/01/2016

Jan

2016

Inquiries

General Report "Survey 2015"

General Report on "Measuring compliance with Regulation (EC) 45/2001 in EU institutions ("Survey 2015")

07/01/2016

Jan

2016

Press Release

Priorities for 2016: The EDPS as an advisor to the EU Institutions

As 2015 drew to a close, the European Data Protection Supervisor (EDPS) published his Priorities for the policy and consultation activities of the organisation for 2016.

08/10/2015

Oct

2015

Speeches & Articles

Europe’s big data protection opportunity

Keynote address of Giovanni Buttarelli given at the Banking and Payments Federation, Ireland

21/05/2015

May

2015

Speeches & Articles

The Digital Single Market, data protection and the role of the EDPS to 2020

Speech given by Giovanni Buttarelli at Brussels Matters, Brussels

Regulation 45/2001

Regulation 45/2001

Filters

Pages

Procedure for avoiding conflicts of interests - Ombudsman

EDPS Comments on European Labour Authority

EDPS welcomes agreement on new data protection rules for the EU institutions and bodies

Phase-out of prior checks under Article 27 of Regulation (EC) No. 45/2001

EDPS helping EU institutions to prepare for new chapter in EU data protection

Erasmus+ Online Linguistic Support Scheme - EACEA

Accountability on the ground: Provisional guidance on documenting processing operations for EU institutions, bodies and agencies

Training on the new Regulation at EUSA

EU institutions a predominantly safe pair of hands for handling personal information, according to EDPS Survey

Press Statement: EDPS calls for swift agreement on new Regulation

EDPS Inspection Guidelines

Newsletter Nr. 51

Upgrading data protection rules for EU institutions and bodies

Priorities 2017

Factsheet 5 - What to expect when we inspect

/file/factsheet5png-0_enfactsheet_5.png

Newsletter Nr. 47

General Report "Survey 2015"

Priorities for 2016: The EDPS as an advisor to the EU Institutions

Europe’s big data protection opportunity

The Digital Single Market, data protection and the role of the EDPS to 2020

Pages

DPO Meetings and Trainings
Memorandum of Understanding
Resolutions
Reference Library
European Conferences
DPO News
Events
International Conferences
Legislation
Reports
Priorities
Press Releases
Opinions Prior Check
Other Documents
Papers
SCG Documents
Speeches & Articles
Strategy
Opinions Non Prior Check
Opinions
Code of Conducts
Comments
Consultations
Call for Tenders
Brochures
Annual Activity Reports
Annual Reports
Court Cases
Inquiries
Inspections
Newsletters
Guidelines
Forms
Ethical Framework
Factsheets
Administrative Measures

Agency for the Cooperation of Energy Regulators (ACER)
Body of European Regulators for Electronic Communications (BEREC)
Clean Sky Joint Undertaking (CSJU)
Committee of the Regions (CoR)
Community Plant Variety Office (CPVO)
Consumers, Health and Food Executive Agency (CHAFEA)
Council of the European Union
Court of Justice of the European Union (CJEU)
ECSEL Joint Undertaking (ECSEL)
Education, Audiovisual and Culture Executive Agency (EACEA)
eu-LISA
European Agency for Safety and Health at Work (EU-OSHA)
European Agency for the Management of Operational Cooperation at the External Border (FRONTEX)
European Anti-Fraud Office (OLAF)
European Asylum Support Office (EASO)
European Aviation Safety Agency (EASA)
European Banking Authority (EBA)
European Central Bank (ECB)
European Centre for Desease Prevention and Control (ECDC)
European Centre for the Development of Vocational Training (Cedefop)
European Chemicals Agency (ECHA)
European Commission
European Court of Auditors (ECA)
European Data Protection Supervisor (EDPS)
European Defence Agency (EDA)
European Economic and Social Committee (EESC)
European Environment Agency (EEA)
European External Action Service (EEAS)
European Fisheries Control Agency (EFCA)
European Food Safety Authority (EFSA)
European Foundation for the Improvement of Living and Working Conditions (Eurofound)
European GNSS Agency (GSA)
European Institute for Gender Equality (EIGE)
European Institute of Innovation and Technology (EIT)
European Insurance and Occupations Pensions Authority (EIOPA)
European Investment Bank (EIB)
European Investment Fund (EIF)
European Maritime Safety Agency (EMSA)
European Medicines Agency (EMA)
European Monitoring Centre for Drugs and Drug Addiction
European Ombudsman (Ombudsman)
European Parliament
European Personnel Selection Office (EPSO)
European Police College (CEPOL)
European Police Office (EUROPOL)
European Public Prosecutor's Office (EPPO)
European Railway Agency (ERA)
European Research Council Executive Agency (ERCEA)
European Securities and Markets Authority (ESMA)
European Systemic Risk Board (ESRB)
European Training Foundation (ETF)
European Union Agency for Fundamental Rights (FRA)
European Union Agency for Network and Information Security (ENISA)
European Union Institute for Security Studies (EUISS)
European Union Intellectual Property Office (EUIPO)
European Union Satellite Centre (EUSC)
Executive Agency for Small and Medium-sied Enterprises (EASME)
Fuel Cells & Hydrogen Joint Undertaking (FCHJU)
Fusion for Energy (F4E)
Innovation and Networks Executive Agency (INEA)
Innovative Medicines Initiative Joint Undertaking (IMI JU)
Joint Research Centre (JRC)
Office for Harmonisation in the Internal Market (OHIM)
Other
Research Executive Agency (REA)
SESAR Joint Undertaking (SESAR JU)
Single Resolution Board (SRB)
The European Union's Judicial Cooperation Unit (EUROJUST)
Translation Centre for the Bodies of the European Union (CdT)