In common with all other European institutions, the EDPS is subject to specific legal obligations concerning the protection of personal data. These obligations are laid down in the Data Protection Regulation (Regulation (EC) No 45/2001).
Apart from specifying the legal principles governing the processing of personal data by the EU administration, the Regulation provides that each European institution or body must appoint at least one person as a Data Protection Officer ("DPO").
The main task of the DPO is to ensure, in an independent manner, the internal application of the provisions of the Regulation in his/her institution. The DPO is also required to keep a register of all of the processing operations involving personal data carried out by the institution. The Register, which must contain information explaining the purpose and conditions of the processing operations, should be accessible to any interested person.
The role of DPO at the EDPS presents many challenges: being independent within an independent institution, meeting the high expectations of colleagues who are particularly aware and sensitive about data protection issues, and delivering solutions that can serve as benchmarks for other institutions. The implementing rules reflect these specificities, while taking into account both the EDPS Position paper and the DPOs Network's Paper on Professional Standards for Data Protection Officers.
Data Protection Officer
Opening address given by Giovanni Buttarelli, EDPS, at the Fifth Workshop on Data Protection in International Organisations
On 2 and 3 February 2016, the Article 29 Working Party (WP29) met to discuss the consequences of the CJEU judgment in the Schrems case for international transfers. Read the statement on the introduction of a "EU-US Privacy Shield".
On 5 February 2016, the EDPS and the International Committee of the Red Cross will host a workshop on data protection within international organisations, which will take place in Geneva. For more information see the EDPS Events page.
EDPS starts work on a New Digital Ethics. Read the press release.
Data Protection Within International Organisations, Geneva, Switzerland, Giovanni Buttarelli chairs the morning session and speaks at the workshop
9th International CPDP Conference, Brussels, Belgium, concluding remarks by Giovanni Buttarelli
9th International CPDP Conference, Brussels, Belgium, Giovanni Buttarelli moderates panel on Transatlantic Discussions: Developing a Sustainable 'Big Data' Ecosystem - Diverse Approaches to the ...
9th International CPDP Conference, Brussels, Belgium, Giovanni Buttarelli chairs panel on Data, Dignity and Technology - Exploring Digital Ethics
Smart Sharing, Data Protection Day conference for trainees at the EU institutions, Brussels, Belgium, Giovanni Buttarelli and Wojciech Wiewiórowski speak at the conference
GDPR: A new chapter for EU data protection - how the new Regulation will empower you to take control of your personal information, Data Protection Day conference for EU officials, ...
9th International CPDP Conference, Brussels, Belgium, Wojciech Wiewiórowski moderates panel on The Data Protection Reform: The Reform in Perspective