European Data Protection Supervisor
European Data Protection Supervisor



Press Release EDPS welcomes 500th prior-check notification and introduces online public register of notifications for greater transparency


On 30 April, in his sixth year of activity, the European Data Protection Supervisor (EDPS) received the 500th prior-check notification on a processing of personal data in the EU administration. For reasons of transparency, a register of all notifications for prior checking received by the EDPS is now publicly available on the EDPS website.

Press Release EDPS Guidelines on conflicts of interest: data protection strengthens good public administration


The European Data Protection Supervisor (EDPS) encourages EU institutions and bodies (EU institutions) to balance transparency in the interests of the public and the data protection rights of individuals when managing the declarations of the conflicts of interest of people working for them. This balancing exercise can strengthen their efforts to foster the trust of the public as well as those who work for them.

Press Release Rebuilding trust in financial services markets: 10 steps for responsible handling of personal information


Data protection can support the European economy, said the European Data Protection Supervisor (EDPS) today, following the publication of his Guidelines on data protection in EU financial services regulation.

Publication Leading by Example: EDPS 2015-2019

Tuesday, 3 December, 2019

This report provides an overview of the activities carried out by the EDPS from 2015-2019. In particular, it focuses on how the EDPS has worked towards implementing the objectives set out in the EDPS Strategy 2015-2019, which relate to digitisation, global partnerships and the modernisation of data protection. This involved not only contributing historical pieces of legislation, such as the General Data Protection Regulation and Regulation 2018/1725, but also bringing the concepts of ethics and accountability to the forefront of data protection discourse and application.


HTML (Summary):    DE    EN    FR

Full text of Leading by Example: EDPS 2015-2019:PDF icon
Summary (PDF):PDF icon

Publication 2008 Annual Report - First mandate concludes with substantial progress in data protection compliance

Thursday, 24 September, 2009

This Report, which covers 2008 as the fourth full year of activity of the EDPS, concludes the first EDPS mandate and provides an opportunity to take stock of developments since the start.

The report shows that significant progress was achieved both in the EDPS supervisory and advisory tasks. Most Community institutions and bodies are making good progress in ensuring compliance with data protection rules, but there are still great challenges ahead. The EDPS supervision work is therefore putting more emphasis on measuring the level of compliance in practice, in particular through more systematic verifications on the spot, and on monitoring the implementation of recommendations in prior checking.

The EDPS also further improved his performance as an advisor to the European institutions and submitted opinions on an increasing number of legislative proposals. The majority of the EDPS opinions continued to concern issues related to the area of freedom, security and justice. Other subjects, such as e-privacy, public access to documents, the establishment of information systems and access to those systems, cross-border healthcare and new technologies were also quite prominent.

You can obtain a paper version of this Annual Report on EU Bookshop.

Full text of the Annual Report:PDF icon

Publication 2009 Annual Report - A year of major importance for the fundamental right to data protection

Friday, 3 December, 2010

The report shows that 2009 was of major importance for the fundamental right to data protection.

This is due to a number of key developments: the entering into force of the Lisbon Treaty, ensuring a strong legal basis for comprehensive data protection in all areas of EU policy; the start of a public consultation on the future of the EU legal framework for data protection; and the adoption of a new five-year policy programme for the area of freedom, security and justice ("Stockholm Programme") with the emphasis on the importance of data protection in this area.

The EDPS has been highly involved in these fields and is determined to pursue this course in the near future. 

You can obtain a paper version of this Annual Report on EU Bookshop

Full text of the Annual Report:PDF icon

Publication 2006 Annual Report - Time for the EU administration to show data protection compliance

Wednesday, 2 May, 2007

During his third year of activities, the EDPS continued to invest in the establishment of an advanced data protection culture within the EC institutions and bodies. Since 2004, almost 150 prior checks of risky processing systems and 25 opinions on proposals for new legislation have been issued. It is now time for the EDPS to broaden his supervisory activities and start to inspect and measure results.

Full text of the Annual Report:PDF icon
Press release:PDF icon

Publication Financial Regulation

Tuesday, 12 December, 2006

Opinion on proposals for amending the Financial Regulation applicable to the general budget of the European Communities and its Implementing Rules (COM(2006) 213 final and SEC(2006) 866 final), OJ C 94, 28.04.2007, p. 12

One of the main points of the proposals is that they foresee the set-up and organisation of a central database common to all institutions and bodies, operated by the Commission, of candidates and tenderers under specific situations of exclusions in case of fraud and allow the exchange of the information contained in the database with authorities at different levels.
Although the EDPS agrees to the principle of a central database in the light of the foreseen purposes of data processing, he underlined that a proactive approach to the rights of the data subjectsshould be respected. Data subjects must be informed beforehand that these data might be made public, and it must be ensured that the data subject's right of access and right to object are respected. Other concerns relate to: 
  • The need for a precise timeframe regarding the update of the information as well as an adequate security protection of the database.
  • The need for specific safeguards in the context of transfers of personal data from the central database and receiving personal data from third countries and international organisations.

Time limits for storage and budgetary control.

Publication Common Fisheries Policy

Wednesday, 4 March, 2009

Opinion on the proposal for a Council Regulation establishing a Community control system for ensuring compliance with the rules of the Common Fisheries Policy, OJ C 151, 03.07.2009, p. 11

There are different reasons why data protection provisions in the context of this proposal are relevant. First, the proposal foresees the processing of various data, which in certain cases, can be considered as personal data. Moreover, the proposal also foresees transfers of these data and exchanges of information, both between Member States and with the Commission or the Community Fisheries Control Agency. The EDPS also notes that the proposal foresees the use of aggregated data in certain circumstances. All these aspects require respecting the data protection legal framework.

The EDPS welcomes that reference to privacy and data protection is made within the current proposal. However, some amendments are needed in order to provide clear requirements, both for the Member States and for the Commission to address the data protection aspects of the system.