European Data Protection Supervisor
European Data Protection Supervisor

Regulation 45/2001

Regulation 45/2001

Regulation 45/2001 lays down the obligations for the EU institutions when they process personal data such as the obligation for each of them to appoint a Data Protection Officer. It is also the Regulation that established the European Data Protection Supervisor to be the independent data protection authority who is tasked to ensure that the right to privacy is respected by European institutions and bodies and advise the EU legislator on subjects that have data protection implications. This Regulation is currently under review in order to be brought in line with the General Data Protection Regulation. The European Commission published a proposal on 10 January 2017

Filters

Pages

19/07/2018
19
Jul
2018

Procedure for avoiding conflicts of interests - Ombudsman

Prior-checking Opinion regarding a procedure for avoiding conflicts of interest at the European Ombudsman (EDPS case 2017-1064)

30/05/2018
30
May
2018

EDPS Comments on European Labour Authority

Formal comments of the EDPS on the Proposal for a Regulation of the European Parliament and of the Council establishing European Labour Authority.

23/05/2018
23
May
2018

EDPS welcomes agreement on new data protection rules for the EU institutions and bodies

Just two days from now, the General Data Protection Regulation (GDPR) will become fully applicable to all companies and organisations operating within the EU.

14/05/2018
14
May
2018

Phase-out of prior checks under Article 27 of Regulation (EC) No. 45/2001

In preparation for the 'new Regulation 45', many DPOs ask about the 'phase-out' of prior checks under Article 27 of the 'old' Regulation 45. This letter, sent in reply to a request from the DPOs of the Executive Agencies, sets out the current EDPS approach on this topic.

26/03/2018
26
Mar
2018

EDPS helping EU institutions to prepare for new chapter in EU data protection

Two months before the new data protection rules set out in the General Data Protection Regulation (GDPR) become applicable, the European Data Protection Supervisor (EDPS) has published two new sets of Guidelines. The Guidelines provide advice to the EU institutions on how to adapt to this new chapter in EU data protection, which is notable for the emphasis it places on the principle of accountability.

01/03/2018
1
Mar
2018

Erasmus+ Online Linguistic Support Scheme - EACEA

Prior-checking Opinion regarding the “Erasmus+ Online Linguistic Support scheme” at EACEA (Case 2014-1154)

06/02/2018
6
Feb
2018

Accountability on the ground: Provisional guidance on documenting processing operations for EU institutions, bodies and agencies

Accountability on the ground: Provisional guidance on documenting processing operations for EU institutions, bodies and agencies (EUIs). These documents provide provisional guidance for controllers and DPO in the EUIs on how to generate records for their processing operations, how to decide whether they need to carry out data protection impact assessments (DPIAs), how to do DPIAs and when to do prior consultations to the EDPS. As the text of the 'new Regulation 45' on data protection in the EU institutions  is not formally adopted yet, this guidance is provisional and will be updated once a final text will be published in the Official Journal.  Nonetheless, it can already be helpful for the EUIs to prepare for their new obligations (Articles 31, 39 and 40 of the 'new Regulation 45').


This text was updated in July 2018 to adapt it to the politically agreed text for the 'new Regulation 45' (Council Document 9296/18), add a few clarifications, as well as to correct a number of errors.

SummaryPDF icon
Part IPDF icon
Part IIPDF icon
30/11/2017
30
Nov
2017

Training on the new Regulation at EUSA

On 30 November 2017, the EDPS Supervision & Enforcement Unit has provided a training on the new Regulation to managers/heads of Units/sectors at the EUSA, in Brussels.

Link to video presentation.
Password to access the video: EDPS-301117
Please note: Internet Explorer may not work correctly, we recommend using a different web browser.
 

 

28/11/2017
28
Nov
2017

EU institutions a predominantly safe pair of hands for handling personal information, according to EDPS Survey

EU institutions and bodies deal with a wide variety of personal data, and often in complex ways. EU law requires that they are able to ensure, verify and demonstrate compliance with data protection rules when handling this data. According to a report published today by the European Data Protection Supervisor (EDPS), there has been continuous and steady progress in the way that they deliver on this obligation.

21/11/2017
21
Nov
2017

Press Statement: EDPS calls for swift agreement on new Regulation

Eleven months have passed since the Commission issued its proposal for the new Regulation governing data protection in the EU institutions and bodies. The proposal aims to align the provisions of the current Regulation (EC) 45/2001 with the rules of the General Data Protection Regulation (GDPR) to achieve a stronger and more coherent data protection framework in the Union.

12/05/2017
12
May
2017

Newsletter Nr. 51

The May 2017 edition of the EDPS Newsletter covers recently adopted Opinions on data protection and the EU institutions, digital content and the European Travel Information and Authorisation System (ETIAS), as well as many other EDPS activities.

15/03/2017
15
Mar
2017

Upgrading data protection rules for EU institutions and bodies

EDPS Opinion on the proposal for a Regulation on the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC

15/02/2017
15
Feb
2017
09/12/2016
9
Dec
2016

Factsheet 5 - What to expect when we inspect

/file/factsheet5png-0_enfactsheet_5.png

Inspections are one of the tools used by the EDPS to ensure that the EU institutions and bodies comply with the rules set out in Regulation (EC) No. 45/2001. EDPS Factsheet 5 provides information on what to expect if the EDPS carries out an inspection at your institution.

07/04/2016
7
Apr
2016

Newsletter Nr. 47

The April 2016 edition of the EDPS Newsletter covers the EDPS Opinion on the EU-US "Umbrella Agreement", the launch of the EDPS Reference Library and the EDPS initiative on digital ethics and many other EDPS activities.

21/01/2016
21
Jan
2016

General Report "Survey 2015"

General Report on "Measuring compliance with Regulation (EC) 45/2001 in EU institutions ("Survey 2015")

07/01/2016
7
Jan
2016

Priorities for 2016: The EDPS as an advisor to the EU Institutions

As 2015 drew to a close, the European Data Protection Supervisor (EDPS) published his Priorities for the policy and consultation activities of the organisation for 2016.

08/10/2015
8
Oct
2015

Europe’s big data protection opportunity

Keynote address of Giovanni Buttarelli given at the Banking and Payments Federation, Ireland

21/05/2015
21
May
2015

The Digital Single Market, data protection and the role of the EDPS to 2020

Speech given by Giovanni Buttarelli at Brussels Matters, Brussels

Pages