Processing of personal data - be it collection, storage, use or disclosure - constitutes a limitation on the right to the protection of personal data and must comply with EU law. This requires ensuring that it is both necessary and proportional.

The 8 steps outlined in "The EDPS quick-guide to necessity and proportionality" will help you assess the compatibility of measures impacting the fundamental rights to privacy and to the protection of personal data with the EU Charter of Fundamental Rights.

Available languages: English

Topics

Necessity & Proportionality

Sep

2019

Factsheets

Checklists and flowcharts on data protection

Administrative fines and sanctions under Regulation EU 2018/1725

Available languages: English

Checklist 1: What are the duties of the controller?

Available languages: English

Checklist 2: What are the duties of the processor?

Available languages: English

Checklist 3: What is required in a processing agreement?

Available languages: English

Flowchart: data transfers in the context of Brexit

Available languages: English

Flowchart: Are you a processor, controller, or joint controller?

Available languages: English

Powers of the EDPS under Regulation (EU) 2018/1725

Available languages: English

Useful points and questions on data protection

Available languages: English

Topics

Regulation 2018/1725

Factsheets

EDPS Enforcement Powers

Data Protection Impact Assessment - Infographics

Flowcharts and Checklists on Data Protection - Brochure

The EDPS quick-guide to necessity and proportionality

Checklists and flowcharts on data protection

Data for the public good: Building a healthier digital future

EU data protection authorities adopt joint opinion on the Digital Green Certificate Proposals

EDPS Formal Comments on the proposed European Health Union package