European Data Protection Supervisor
European Data Protection Supervisor

Cybersecurity

Cybersecurity

Filters

15/12/2017
15
Dec
2017

Cybersecurity Package

EDPS formal comments in response to the 'Cybersecurity Package' adopted by the Commission

Topics:
Wednesday, 27 September, 2017
27
Sep
2017

Newsletter (N°
53
)

In the September 2017 edition of the EDPS Newsletter we cover the EDPS Opinion on the digital single gateway, the investigation of complaints relating to medical data and the latest developments in privacy engineering.
15/12/2015
15
Dec
2015

EDPS issues an alert on intrusive surveillance

Today, as the European Data Protection Supervisor (EDPS) published his Opinion on Intrusive surveillance technology, he said he was issuing an alert about the risks posed by the unregulated growing market for the selling, distribution and (dual) use of spyware.

15/12/2015
15
Dec
2015

Intrusive surveillance technologies

Dissemination and use of intrusive surveillance technologies

28/04/2015
28
Apr
2015

Cybersecurity and Privacy Innovation Forum 2015

Keynote address by Giovanni Buttarelli given at the Cybersecurity and Privacy Innovation Forum 2015, Brussels

10/03/2015
10
Mar
2015

Washington Meetings Program and the Digital and Cyberspace Policy Program

"Washington Meetings Program and the Digital and Cyberspace Policy Program: A Conversation with Giovanni Buttarelli", Council on Foreign Relations, Washington DC

Topics:
07/07/2014
7
Jul
2014

Newsletter Nr. 42

The July 2014 edition of the EDPS Newsletter covers EDPS Opinions on asset freezing and Big Data and many other EDPS activities.

27/02/2014
27
Feb
2014

Data Security Breaches

In October 2013, the EDPS was notified of a data security breach involving unauthorised access to an EU Agency database which is operated by an external contractor. This database contained the names and email addresses of approximately 70 individuals. The Agency asked the EDPS for advice on how best to handle this breach, and has now implemented all our suggested remedial measures. These included carrying out a full investigation with the contractor, implementing amendments to the contract, and notifying affected data subjects.

Some EU institutions may already have their own rules in place about reporting security breaches to the relevant internal departments. Whilst we welcome this type of proactive approach, we are presently unable to provide a direct or definitive instruction on any obligations to notify security breaches to the controller or the EDPS, under current data protection law. However, the contractual changes that the Agency has implemented in this particular case indicate a positive and practical approach to data breach management, by obligating contractors to promptly notify any such breaches to the controller. This will enable the Agency to deal with any future incident in a timely and effective manner.

Topics:
17/06/2013
17
Jun
2013

Credible cyber security strategy in the EU needs to be built on privacy and trust

Cyber security is not an excuse for the unlimited monitoring and analysis of the personal information of individuals, said the European Data Protection Supervisor (EDPS) today following the publication of his opinion on the EU's strategy on cyber security.

14/06/2013
14
Jun
2013

Cyber Security Strategy of the European Union: an Open, Safe and Secure Cyberspace

Opinion on the Joint Communication of the Commission and of the High Representative of the European Union for Foreign Affairs and Security Policy on a 'Cyber Security Strategy of the European Union: an Open, Safe and Secure  Cyberspace', and on the Commission proposal for a Directive concerning measures to ensure a high common level of network and information security across the Union

Proposal for a Directive of the European Parliament and of the Council concerning measures to ensure a high common level of network and information security across the Union

Joint Communication to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions. Cybersecurity Strategy of the European Union: An Open, Safe and Secure Cyberspace

10/10/2012
10
Oct
2012

Improving network and information security (NIS) in the EU

EDPS comments on DG Connect's public consultation on improving network and information security (NIS) in the EU

20/12/2010
20
Dec
2010

European Network and Information Security Agency (ENISA)

Opinion on the Proposal for a Regulation of the European Parliament and of the Council concerning the European Network and Information Security Agency (ENISA)

09/01/2009
9
Jan
2009

Second opinion on ePrivacy

Second opinion on the review of Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications), OJ C 128, 06.06.2009, p. 28