In common with all other European institutions, the EDPS is subject to specific legal obligations concerning the protection of personal data. These obligations are laid down in the Data Protection Regulation (Regulation (EC) No 45/2001).
Apart from specifying the legal principles governing the processing of personal data by the EU administration, the Regulation provides that each European institution or body must appoint at least one person as a Data Protection Officer ("DPO").
The main task of the DPO is to ensure, in an independent manner, the internal application of the provisions of the Regulation in his/her institution. The DPO is also required to keep a register of all of the processing operations involving personal data carried out by the institution. The Register, which must contain information explaining the purpose and conditions of the processing operations, should be accessible to any interested person.
The role of DPO at the EDPS presents many challenges: being independent within an independent institution, meeting the high expectations of colleagues who are particularly aware and sensitive about data protection issues, and delivering solutions that can serve as benchmarks for other institutions. The implementing rules reflect these specificities, while taking into account both the EDPS Position paper and the DPOs Network's Paper on Professional Standards for Data Protection Officers.
Data Protection Officer
An ethical approach to fundamental rights - read the latest blogpost by Giovanni Buttarelli
Breaking the rules: conducting administrative inquiries in the EU institutions - read the latest blogpost by Wojciech Wiewiórowski
An ancient city looking to the future: The 38th International Privacy Conference in Marrakech - read the latest blogpost by Giovanni Buttarelli
A smart approach: counteract the bias in artificial intelligence - read the latest blogpost by Giovanni Buttarelli.
Data protection for digital communication - read the latest blogpost by Wojciech Wiewiórowski.
7th Annual Data Protection and Privacy Conference, Speech by Giovanni Buttarelli, Brussels, Belgium
Giovanni Buttarelli meeting with Rob Wainwright, Director of Europol, Brussels, Belgium
Giovanni Buttarelli participates in the meeting of High Level Expert Group on Information Systems and Interoperability, Brussels, Belgium
46th Asia Pacific Privacy Authorities Forum, panel on International Cooperation. Personal Data Protection Agreements. Relevant Experiences and Convention 108, Speech by Wojciech Wiewiórowski, Manzanillo, Mexico
Wojciech Wiewiórowski receives a delegation from Korea Internet Security Agency, Brussels, Belgium
Wojciech Wiewiórowski pays a visit to European Union Intellectual Property Office, Alicante, Spain
Giovanni Buttarelli meeting with Julian King, Commissioner for Security Union, Brussels, Belgium
Giovanni Buttarelli meeting with Jeppe Tranholm-Mikkelsen, Secretary-General of the Council, Brussels, Belgium