Print

Événements

Dans cette session, vous pouvez trouver un aperçu des événements, conférences et réunions que le CEPD organise ou auquel il participe. Veuillez consulter notre politique d’interventions si vous souhaitez nous inviter à prendre la parole lors d'un événement.

15
Oct
2019

Data Protection Certification Model - From risk management to accountability tools. The European transposition of the GDPR

The European Commission study on certifications provided national authorities and the EDPB with indications and clarifications on methodologies, rules, roles and responsibilities and on international standardization norms.

With the principles of awareness and accountability, strongly recalled by the GDPR, the Controller is called to "ensure" and be able to "demonstrate" that the processing operation is compliant with the regulation. What to do to achieve that? What elements should be considered? How to manage the implied risks?

Risk is a crosscutting concept in the Regulation, embracing the risk for rights and freedom and the risk for processing operations. How can it be managed? Are Risk assessment and DPIA models consistent?

The certification, introduced by the articles 42 and 43 and indicated by the above mentioned Commission study, provided powerful tools for demonstrating compliance with the GDPR. Regulation 2016/679 has identified ISO/IEC 17065: 2012 as the norm for accreditation of certification bodies, supported by the EDPB guidelines 4/2018. Why this standard and not another?

With the newly defined EU Wide Certification Models, the issue has affected the entire European panorama, placing institutions in front of a cultural and operational transposition problem: how to certify? What controls for those who certify? Which competences for auditors?

The debate analysed the current opportunities at European level in the area of certifications, through the words of the Tilburg researchers, the representatives of the EDPB, the EDPS and of the Osservatorio 679 board.

Programme

Moderators:

Patrizia Toia, MEP, IT S&D
Nicola Danti, MEP, IT S&D

Speakers:
10:00 – 10:10 Opening remarks by Roberto Viola, Director General DG Connect, European Commission
10:10 – 10:20 A memory of Giovanni Buttarelli by Gianluca Buttarelli
10:20 – 10:30 Introduction, Riccardo Giannetti, Osservatorio679 President

Part 1: From risk assessment to accountability tools

10:30 – 10:50 | Eric Lachaud University of Tilburg, the Commission Study on Art.42 and 43 of the GDPR EC Study on article 42/43 – Main takeaways from market scan

10:50 – 11:10 | Marco Moreschini, Osservatorio 679 member EC study: EuroPriSe and ISDP10003, two operational examples in scope Art. 42

11:10 – 11:30 | Rosario Imperiali - Lawyer, expert on privacy and data protection law
The demonstration process and tools to demonstrate the accountability

11:30 – 11:50 | Riccardo Giannetti – Osservatorio 679 President
GDPR Risk based - specific and non-specific certifications

Part 2: Debate on Guidelines 1 - 4/2018 and Annex 1 - 2 from theory to practice

12:00 – 13:00
Riccardo Giannetti, Osservatorio679 President
Bruno Gencarelli, Head of Data Protection Unit, DG Justice, European Commission
Massimo Attoresi - Data Protecion Officer, EDPS
Rosario Imperiali - Lawyer, expert on privacy and data protection law

EC Data Protection Certification Mechanisms
Langues disponibles: anglais
EuroPriSe and ISDP10003:2015 - Presentation by Marco Moreschini
Langues disponibles: anglais
Tilburg Institute of Law, Technology and Society - Presentation by Eric Lachaud
Langues disponibles: anglais
Data Protection Certification - Presentation by Riccardo Giannetti
Langues disponibles: anglais
Accountability - Presentation by Rosario Imperiali
Langues disponibles: anglais
11
Jul
2019

Can We Trust Our Artificial Eyes? Data Protection in the Age of Human Enhancement

The European Data Protection Supervisor and European Data Protection Board hold their trainee conference on 11 July 2019 at 12:00 - 14:00 in room 01P100 of the Wilfried Martens Building in Brussels.

In the face of technological innovations that could transform the human body and mind, debates over the future of data protection and privacy are more important than ever. Bio-implants and body-integrated microchips have the potential to enhance and extend human capabilities, while the growth of the Internet of Things could link these devices with human beings as part of a global interconnected system. A primary issue around the debate on enhancement technologies relates to surveillance, control and profiling of individuals.

The European Data Protection Supervisor, Giovanni Buttarelli, and the Assistant Supervisor, Wojciech Wiewiórowski, will give their views, alongside an expert panel discussing how these technical developments affect our conception of humanity and possible issues relating to privacy and data protection.

Agenda

9
Jul
2019

Data Protection and Competitiveness in the Digital Age

The European Data Protection Supervisor and Federal Commissioner for Data Protection and Freedom of Information of Germany jointly organize the panel discussion on "Data Protection and Competitiveness in the Digital Age" on the 9th of July 2019 in Brussels.

The digital economy has brought to the forefront the role of data which represent value for the tech industry but raise issues in terms consumer protection. As business models increasingly rely on large amount of personal data the discussion will look at the intersection between data protection and competition policy.

This initiative is hosted by the Representation of the Free State of Bavaria to the European Union.

By invitation only.

Link to the video recording (on YouTube).

Joint Press Statement

4
May
2019

Journée portes ouvertes des institutions européennes 2019 - Bruxelles

Tous les jours, vos informations personnelles sont collectées, partagées, utilisées et stockées par des personnes, des organisations et des pouvoirs publics. Les procédures de recrutement, la vidéosurveillance et la collecte de données de santé n’en sont que quelques exemples. La tâche du contrôleur européen de la protection des données (CEPD) est de veiller à ce que les institutions et organes européens respectent vos droits lorsqu'ils traitent vos données personnelles. Le Comité Européen de la Protection des Données (EDPB) est un organe européen indépendant qui contribue à l’application cohérente des règles en matière de protection des données au sein de l’Union européenne et encourage la coopération entre autorités de l’UE chargées de la protection des données.

Le CEPD tiendra un stand au sein de la Commission européenne dans le cadre des célébrations de la Journée de l’Europe, au rez-de-chaussée du Berlaymont.

Le personnel du CEPD et EDPB y répondra aux questions que vous vous posez sur vos droits à la vie privée et la façon de protéger vos informations personnelles. Des gadgets utiles et de la documentation vous attendent, ainsi que des activités ludiques et interactives pour enfants et adultes. Vous aurez également la chance de gagner l'une de nos 20 clés USB originales, en prenant part à notre quiz, facile et instructif!

La protection des données personnelles nous concerne tous, que ce soit lors d’achats en ligne, de l’utilisation de son smartphone ou de la recherche d'emploi. Rendez-nous donc visite sur notre stand pour en savoir plus!

Pour plus d'infos: http://europeday.europa.eu et http://ec.europa.eu/belgium/events/europe-day_fr

11
Mar
2019

EDPS-ENISA Conference: Towards accessing the risk in personal data breaches

The European Data Protection Supervisor and ENISA organize a conference in Brussels on the 4th of April 2019 in personal data breach notification.

The conference aims to address the aspect of assessing the risk of personal data breaches under the General Data Protection Regulation (GDPR) - (EU) 2016/679 and the Regulation (EU) 2018/1725 for the processing of personal data by EU Institutions and bodies. 

For more information and registration please follow this link.