In common with all other European institutions, the EDPS is subject to specific legal obligations concerning the protection of personal data. These obligations are laid down in the Data Protection Regulation (Regulation (EC) No 45/2001).
Apart from specifying the legal principles governing the processing of personal data by the EU administration, the Regulation provides that each European institution or body must appoint at least one person as a Data Protection Officer ("DPO").
The main task of the DPO is to ensure, in an independent manner, the internal application of the provisions of the Regulation in his/her institution. The DPO is also required to keep a register of all of the processing operations involving personal data carried out by the institution. The Register, which must contain information explaining the purpose and conditions of the processing operations, should be accessible to any interested person.
The role of DPO at the EDPS presents many challenges: being independent within an independent institution, meeting the high expectations of colleagues who are particularly aware and sensitive about data protection issues, and delivering solutions that can serve as benchmarks for other institutions. The implementing rules reflect these specificities, while taking into account both the EDPS Position paper and the DPOs Network's Paper on Professional Standards for Data Protection Officers.
Data Protection Officer
Adopted Resolutions at 38th International Conference of Data Protection and Privacy Commissioners, Marrakesh, Morocco.
Artificial Intelligence, Robotics, Privacy and Data Protection - 38th International Conference of Data Protection and Privacy Commissioners.
Big data rights: Let’s get together- read the latest blogpost by Giovanni Buttarelli.
Giovanni Buttarelli attends the conference New Instruments to Promote the Correct Application of the EU Charter of Fundamental Rights, University of Florence, Florence, Italy
40th DPO meeting hosted by European Union Intellectual Property Office, Introductory speech by Wojciech Wiewiórowski, Alicante, Spain
Giovanni Buttarelli meeting with Andrus Ansip, Vice-President of the European Commission, Commissioner for Digital Single Market, Brussels, Belgium
Giovanni Buttarelli meeting with Ambassador Marlene Bonnici, Permanent Representation of Malta to the European Union, Brussels, Belgium
VII edition of the Diplomacy Festival, The season of uncertainties. In search of new policies for the Coexistence and Integration, Giovanni Buttarelli participates in the debate on Privacy shield: data exchange and trade relations EU-US, Rome, Italy
38th International Conference of Data Protection and Privacy Commissioners: Opening new territories for privacy, Keynote speech by Giovanni Buttarelli, Adequacy, Localization and Cultural Determinism, Marrakesh, Morocco
ISC GDPR Seminar: The Impact of the General Data Protection Regulation on collaborative science in Europe, Speech by Giovanni Buttarelli on Implications of the GDPR on Science and Research (via a video link), Brussels, Belgium
Technology, Challenges and Effective Governance, IAF/FPF Side Event at ICDPPC, Speech by Giovanni Buttarelli on The Future of Technology and Data Governance, Marrakesh, Morocco