Print

Privatsphäre in den EU-Organen

Die Verordnung (EU) 2018/1725 legt die Datenschutzverpflichtungen für die Organe, Einrichtungen und Agenturen der EU fest, wenn sie personenbezogene Daten verarbeiten und neue Strategien entwickeln. Darüber hinaus führt die Verordnung die Pflichten des EDSB auf. Diese umfassen seine Aufgaben als unabhängige Kontrollbehörde für die Organe und Einrichtungen der EU, wenn diese personenbezogene Daten verarbeiten, die Beratung zu politischen Maßnahmen und Rechtsvorschriften, die sich auf den Schutz der Privatsphäre auswirken, und die Zusammenarbeit mit vergleichbaren Behörden zur Gewährleistung eines kohärenten Datenschutzes.

Hier finden sich die EDSB-Dokumente über Privatsphäre und Datenschutz in Bezug auf die Verarbeitung personenbezogener Daten durch die Einrichtungen und Organe der EU, z. B. bei Mitarbeiterbewertung, Akkreditierung externer Besucher oder Zugangskontrolle.

Filters

12
Nov
2007
Opinions Prior Check and Prior Consultations

Evaluation of the members of the linguistic team - OHIM

Opinion of 12 Novembre 2007 on a notification for prior checking on the evaluation of the members of the linguistic team (Case 2007-475)

Members of the Linguistic Team of the Office for Harmonisation in the Internal Market (OHIM) are subject to evaluation of their translation or revision work by means of two processing operations of personal data aiming at making, on the one hand, a qualitative assessment, and on the other hand, a quantitative assessment. Those processing operations pursue the same purpose of evaluating both the team's performance and the individuals' work.
 

The EDPS has issued an opinion on the evaluation of the members of the linguistic team. The EDPS concludes that on a general basis the procedure complies with the principles established in the data protection regulation. However the EDPS did make some recommendations mainly as concerns the information of the persons concerned and the security measures. In particular, the EDPS suggested that the controller must inform the evaluated staff and provide them with the Data Protection Statement at the time of undertaking the evaluation procedure. Concerning the security measures, the EDPS recommended implementing measures to ensure an appropriate level of security in case of transfer of data.

Verfügbare Sprachen: Englisch, Französisch
Topics
Privacy in the EU Institutions
Staff Evaluation
8
Nov
2007
Opinions Prior Check and Prior Consultations

Processing of personal data by social services - Court of Auditors

Opinion of 8 November 2007 on a notification for prior checking on processing of personal data by the social services (Case 2007-302)

The Social Service of the Court of Auditors is provided by a professionally qualified social worker who is responsible for the provision of social financial assistance and psychosocial support. Types of assistance include home help, assistance for disabled officials or disabled dependents of officials, loans and aid granted on social grounds (special assistance in extreme circumstances). The social worker also offers psychosocial support to officials and their families, retired officials, and the surviving family members of deceased officials. The social worker also provides practical assistance chiefly in the form of information as to the availability of resources and services in specific areas.
 
As a rule, the relevant data are compiled by the social worker in an interview with the applicant. In certain cases, the applicant is requested to complete certain forms. If need be, medical approval is sought from the Medical Service or from the JSIS's medical officer. A decision, drawn up by the social worker, is submitted to the Appointing Authority (Head of Division, Human Resources) for signature and the beneficiary is informed of the decision.
 
When the social worker meets with the client, personal and private data are compiled in a personal record, which is only accessible to the social worker. The social worker is bound by professional secrecy and that all conversations will be confidential. The social worker may make personal notes concerning the client's situation as a memory aid and for future reference. Any documentation in the file supplied by the applicant remains the property of the applicant and, on request, may be returned to the persons concerned.
 

The EDPS opinion concluded that the processing proposed does not seem to involve any infringement of Regulation (EC) No 45/2001, as long certain recommendations are taken into account and notably that the Court of Auditors assesses the period of conservation of short term assistance; that the Court of Auditors ensures, in compliance with Article 4(1)(e) that the data stored in Excel tables for statistical and record-keeping purposes are kept in an anonymous form or with the identity of the data subject encrypted; and that further information must be provided to data subjects in accordance with Articles 11 and 12.

Verfügbare Sprachen: Englisch, Französisch
Topics
Privacy in the EU Institutions
Working Conditions
26
Oct
2007
Opinions Prior Check and Prior Consultations

National experts - EMEA

Opinion of 26 October 2007 on a notification for prior checking regarding national expert's expression of interest (Case 2007-423)

The European Medicines Agency (EMEA) collects expressions of interest from national experts to be seconded to the institution. The processing in this framework implies operations such as collection, organisation, storage, consultation and distribution of CVs in order to set up a reserve list of potential candidates. A curriculum vitae must be attached to the applications. The applications received are used for selecting suitable candidates.
On the facts, the collection and further processing of personal data of job applicants is carried out in the legitimate exercise of EMEA's activities and authority. An EMEA Executive Director's Decision laying down the rules on the secondment of national experts constitutes the legal basis of the processing operation.
After examination of EMEA's notification EDPS concludes there is no reason to believe that there is a breach of the provisions of Regulation 45/2001. However, EDPS recommends EMEA should:
  • if candidates include data which are irrelevant and excessive in relation with the purposes of the processing, EMEA has to make sure that they are deleted in the most appropriate way.
  • publish the Executive Director's Decision on the adoption of implementing rules relating to the protection of individuals with regard to the processing of personal and the free movement of such data of 12 June 2007 on its website,
  • adopt and publish a specific policy statement concerning this processing operation which should refer to all the provisions of Article 11.
Verfügbare Sprachen: Englisch, Französisch
Topics
Privacy in the EU Institutions
Procurements, Grants, Experts