European Data Protection Supervisor
European Data Protection Supervisor

Transfers of data

Transfers of data

The transfer of personal data outside of the EU is only allowed under certain conditions as set out in Directive 95/46/EC and also in the General Data Protection Regulation which will be fully applicable as of May 2018. If a country is deemed by the European Commission to offer an adequate level of protection, it will be subject to the same rules as an EU Member State, which means that the recipient of the data in that state will not be obliged to take specific measures to allow for the transfer. Transferring data to a country without an adequacy decision requires appropriate safeguards, such as standard contractual clauses or binding corporate rules. Derogations to this rule can be obtained in very specific cases. The European Data Protection Board, of which the EDPS is a member, will provide the Commission with Opinions on this subject.

Filters

Pages

06/05/2009
6
May
2009

Personal data transfers by OLAF

Analysis of the EDPS on a consultation on questions concerning the treatment of personal data transfers by OLAF

05/03/2009
5
Mar
2009

Organs donation and transplantation: EDPS calls for enhanced security measures at national and cross-border levels

Today, the European Data Protection Supervisor (EDPS) adopted an opinion on the Commission's proposal for a Directive on standards of quality and safety of human organs intended for transplantation. The proposal provides for national quality programmes to advance organs donation and transplantation, including a traceability mechanism to ensure that all organs can be traced from donation to reception and vice versa.

04/03/2009
4
Mar
2009

Common Fisheries Policy

Opinion on the proposal for a Council Regulation establishing a Community control system for ensuring compliance with the rules of the Common Fisheries Policy, OJ C 151, 03.07.2009, p. 11

12/12/2008
12
Dec
2008
12/11/2008
12
Nov
2008

EDPS Opinion on transatlantic information sharing for law enforcement purposes: progress is welcomed, but additional work is needed

On 10 November, the European Data Protection Supervisor (EDPS) adopted an opinion on the Final Report by the EU-US High Level Contact Group on information sharing and privacy and personal data protection, which was presented by the Presidency of the European Union (EU) in June 2008. The Report defines common principles on privacy and data protection as a first step towards the exchange of information between the EU and the United States (US) to fight terrorism and serious transnational crime.

11/11/2008
11
Nov
2008

EU-US High Level Contact Group on information sharing

Opinion on the Final Report by the EU-US High Level Contact Group on information sharing and privacy and personal data protection, OJ C 128, 06.06.2009, p. 1

Tags:
11/04/2008
11
Apr
2008

Computerised reservation systems

Opinion on the proposal for a Regulation on a code of conduct for computerised reservation systems, OJ C 233, 11.09.2008, p. 1

COM(2007) 709 final of 15.11.2007PDF icon
02/05/2007
2
May
2007

2006 Annual Report - Time for the EU administration to show data protection compliance

During his third year of activities, the EDPS continued to invest in the establishment of an advanced data protection culture within the EC institutions and bodies. Since 2004, almost 150 prior checks of risky processing systems and 25 opinions on proposals for new legislation have been issued. It is now time for the EDPS to broaden his supervisory activities and start to inspect and measure results.

Full text of the Annual Report:PDF icon
Press release:PDF icon
28/11/2005
28
Nov
2005

Data protection and third countries

Letter to the Director General of the European Commission's Justice, Freedom and Security department on the Communication on "A Strategy on the External Dimension of the Area of Freedom, Security and Justice"

15/06/2005
15
Jun
2005

PNR Canada

Opinion on the Proposal for a Council Decision on the conclusion of an agreement between the European Community and the Government of Canada on the processing of Advance Passenger Information (API) / Passenger Name Record (PNR) data, OJ C 218, 6.9.2005, p. 6

Tags:
26/04/2005
26
Apr
2005

Krakow

Declaration of European Data Protection Conference on the need for an adequate data protection framework in the Third PillarPDF icon
Position Paper of European Data Protection Conference on Law Enforcement & Information Exchange in the EUPDF icon

Pages