European Data Protection Supervisor
European Data Protection Supervisor

Search

Search

Publication Access to buildings - Commission

Wednesday, 21 November, 2007
21
Nov
2007

Answer to a notification of prior checking of a processing for the issuing and checking of passes giving access to the European Commission's buildings in Brussels and Luxembourg (Case 2004-235)

Topics:

Publication SECPAC - Commission

Wednesday, 28 November, 2007
28
Nov
2007

Answer to a notification for prior checking concerning "SECPAC" at the Joint Research Centre (Case 2007-381)

Topics:

Publication Management of incident or technical fault reports - EP

Thursday, 24 July, 2014
24
Jul
2014

Letter on the notification for prior-checking concerning "Management of incident or technical fault reports" within the European Parliament (Case 2014-0643)

Publication Site management and security - ETF

Tuesday, 10 March, 2009
10
Mar
2009

Answer to a notification for prior checking on site management and security (Case 2009-036)

Publication Security Support System - Parliament

Tuesday, 29 September, 2009
29
Sep
2009

Opinion of 29 September 2009 on a notification for prior checking concerning the "Security Support System" (Case 2009-225)

The collection of data in the Security Support System has the purpose to provide support to missions outside the three places of work of the EP in case of medical emergencies. The information is provided by the data subject on a voluntary basis. Data will only be used in emergency situations and only given to local health staff if needed.

Topics:

Publication Participatory surveillance research project - JRC/IPSC

Wednesday, 5 February, 2014
5
Feb
2014

Opinion of 5 February 2014 on a notification for prior checking received from the Data Protection Officer of the European Commission related to the "Participatory surveillance research project with evacuation exercise at the JRC/IPSC institute" (Case 2012-0824)

Publication Voice logging at JRC-IE - Commission

Wednesday, 29 April, 2009
29
Apr
2009

Opinion of 29 April 2009 on a notification for prior checking on Voice Logging at the Joint Research Centre Institute for Energy (JRC-IE) in Petten (Case 2008-014)

This case concerned the recording of incoming and outgoing calls as well as records the calling telephone number, the called telephone number, date, time and length of the conversation at the JRC-IE in Petten the purpose of being able to check the content of the calls to the lines concerned in the event of an operational incident, emergencies and to be able to evaluate emergency training exercises at a later stage. These calls may also furnish evidence for investigations into potential threats to the institution.

The EDPS opinion particularly examines the lawfulness of the processing operation as the recording of calls is a violation to the principle of confidentiality of communications. The EDPS acknowledged that the processing was lawful as based on mandatory national legislation applicable in the field of nuclear facilities. The EDPS also made recommendations on the information to the persons concerned notably to external persons calling the switchboard and who must be informed that the communication will be recorded for security purposes at the start of the call.

Topics:

Publication Security clearance management - EDA

Tuesday, 10 September, 2013
10
Sep
2013

Letter on the prior checking notifications concerning the management of Facility Security Clearances (FSC) and Personnel Security Clearance (PSC) at the European Defence Agency (Cases 2013-0763 and 2013-0764)

Publication Selection of confidential counsellors and informal procedures for cases of harassment

Wednesday, 19 September, 2018
19
Sep
2018

Prior-checking Opinion regarding the selection of confidential counsellors and informal procedures for cases of harassment at EIF (EDPS cases 2017-1042 and 2017-1043)

Publication Biometric verification device case - EP

Thursday, 15 May, 2014
15
May
2014

Opinion of 15 May 2014 on the notification for prior checking received from the Data Protection Officer (DPO) of the European Parliament (EP) concerning the processing of personal data in the context of the Parliament’s biometric verification device (Case 2013-1110)

Topics:

Publication Security clearance procedure - ESA

Tuesday, 18 September, 2018
18
Sep
2018

Prior Checking Opinion on security clearance procedure at the EFTA Surveillance Authority (Case 2017-1004)

Topics:

Publication Database ARDOS - Commission

Monday, 15 December, 2008
15
Dec
2008

Opinion of 15 December 2008 on a notification for prior checking regarding the database ARDOS (Case 2007-380)

The Security Service of the Joint Research Centre (JRC) at Ispra put in place a processing operation called "nulla osta". The purpose of the "nulla osta" procedure is to ascertain and confirm a selected candidate's good conduct. Information collected through this procedure is stored in a database called ARDOS with all documents requested by and presented to the Security Service of the JRC Ispra. It has to be noted that the "nulla osta" processing operation concern the candidates of all JRC sites except Karlsruhe.

The EDPS examined the processing operation and in particular the legal basis provided by the JRC Ispra to conduct such assessment of the candidate's good conduct. The EDPS concluded that the processing operation appears to be in breach of the provisions of Regulation (EC) No 45/2001 unless a clear legal basis is identified, produced or established by the institution. Indeed the processing operation described by the Security Service goes far beyond a checking of the candidate's good conduct, notably by collecting excessive and non relevant data (data quality principle).

The EDPS moreover recommended that in order to ensure compliance with the Regulation, the JRC Ispra should made several amendments to the privacy statement to fully respect the information that should be given to the data subject following Article 12 of the Regulation. The EDPS also insisted on the fact that the retention period foreseen by the institution should be implemented as soon as possible.

Topics:

Publication Security Investigations - Joint Research Centre Petten

Tuesday, 19 March, 2013
19
Mar
2013

Opinion of 19 March 2013 on a notification for Prior Checking received from the Data Protection Officer of the Commission on the Security Investigations at the Joint Research Centre Petten (Case 2012-0782)

Publication Security Trustworthiness Check - JRC

Wednesday, 19 June, 2013
19
Jun
2013

Opinion of 19 June 2013 on a notification for Prior Checking received from the Data Protection Officer of the Commission on the Security Trustworthiness Check at the Joint Research Centre Ispra (Case 2012-1090)

Topics:

Publication Conduct of investigations - Council

Wednesday, 25 April, 2018
25
Apr
2018

Prior Checking Opinion regarding the conduct of investigations by the Security Office of the General Secretariat of the Council of the European Union (Case 2017-0216)

Press Release Credible cyber security strategy in the EU needs to be built on privacy and trust

17/06/2013
17
Jun
2013

Cyber security is not an excuse for the unlimited monitoring and analysis of the personal information of individuals, said the European Data Protection Supervisor (EDPS) today following the publication of his opinion on the EU's strategy on cyber security.

Publication Leading by Example: EDPS 2015-2019

Tuesday, 3 December, 2019
3
Dec
2019

This report provides an overview of the activities carried out by the EDPS from 2015-2019. In particular, it focuses on how the EDPS has worked towards implementing the objectives set out in the EDPS Strategy 2015-2019, which relate to digitisation, global partnerships and the modernisation of data protection. This involved not only contributing historical pieces of legislation, such as the General Data Protection Regulation and Regulation 2018/1725, but also bringing the concepts of ethics and accountability to the forefront of data protection discourse and application.

HTML:    EN

HTML (Summary):    DE    EN    FR

Full text of Leading by Example: EDPS 2015-2019:PDF icon
Summary (PDF):PDF icon

Pages