Accessibility Tools

Legal notice

Protection of personal data

The policy on the protection of individuals with regard to the processing of personal data by the Community institutions and bodies is thus based on Regulation (EC) No. 45/2001 of the European Parliament and of the Council of 18 December 2000.

In principle access to the information available on or via the website of the EDPS does not require any personal data to be supplied by the user. 'Personal data' means any information relating to an identified or identifiable natural person; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his or her identity (see Article 2 of Regulation (EC) No. 45/2001). However, in order to use certain online services, for example to request a visit to the EDPS, to lodge a complaint or to send a information request, you may be asked to supply some information about yourself, such as contact details (name and first name, postal address, e-mail address, telephone number or nationality) when filling in a form. The data controller (the entity responsible for processing the data collected about you) appears on a public register of data processing operations maintained by the Data Protection Officer.

In this regard:

  • The EDPS will collect personal information only to the extent necessary to fulfil a precise purpose specified by the data controller for each online service. The information will not be reused for a purpose incompatible with the original purpose.
  • The EDPS will disclose information to third parties only if that is necessary for the purposes specified and only to the categories of recipients mentioned. The EDPS will not divulge your personal data for direct marketing purposes. The EDPS furthermore undertakes to take appropriate security measures to safeguard these data from misuse by third parties.
  • The data are kept for no longer than is necessary for the purposes for which they were collected.
  • These data may, however, be kept for a longer period for historical, statistical or scientific purposes, without prejudice to any other provision of Regulation (EC) No. 45/2001 of the European Parliament and of the Council of 18 December 2000.
  • Any individual concerned (data subject) has the right to obtain access to and rectification of his or her personal data. Data subjects may also under certain circumstances ask to have these data blocked and for the erasure of data about them which they consider to have been unlawfully processed. Finally, they have the right to object, on compelling grounds, to the processing of their data.
  • To exercise your rights or to obtain any further information, you can apply directly to the data controller involved.
  • The EDPS website sometimes provides links to other internet sites. Since EDPS has no control over such sites, we suggest that you review their privacy policies.
  • The EDPS website uses two session cookies which are essential for the website to operate. The first cookie contains the username 'guest' used by each visitor on the site and the second cookie contains a hash key to allow the server to bind the visitor to the session on the server. Both session cookies are deleted when the visitor closes his Internet browser.
  • For further information, please consult the leaflet about personal data protection.


The content of this website includes text data and multimedia items such as texts, drawings, graphics, logos, icons, images, audio and video material, photographs, programmes and the technology described, which are protected by the provisions of national and international law applying to intellectual property.

These textual data and multimedia items are the exclusive property either of the European Data Protection Supervisor and/or of their authors and beneficiaries. The intellectual property right holders waive their right to have their name or any other indication appear on the items which they supply for this website.

The user undertakes to respect the intellectual property rights held by the European Data Protection Supervisor and third parties without prejudice to the rights and exceptions provided for by any binding provisions.

The reuse of any information of this website is authorised for commercial and non-commercial purposes, under the following conditions:

  • The re-user is obliged to acknowledge the source of the document;
  • The original meaning or the message of the documents should not be distorted;
  • The European Data Protection Supervisor cannot be held liable for any consequence stemming from the reuse.

Reuse is understood as: "reproduction of textual data and multimedia items which are the property of the European Data Protection Supervisor or of third parties and for which the EDPS holds the rights of use".

The user undertakes not to delete or change the indications of the author or the source and not to seek to circumvent the technical measures put in place to protect documents and multimedia items, such as print or download restrictions and visible or invisible tagging. Any infringement may lead to civil and criminal proceedings.

In cases of doubt as to the identity of the right holders or as to the conditions of use of a particular item, a request for information may be sent to the webmaster.

Despite extensive research, it may be that the European Data Protection Supervisor has not been able to identify certain authors or right holders of documents appearing on the site. If you are such a right holder, or if you have identified such a right holder, or if there is a mistake on our part, we should be grateful if you would kindly contact the webmaster.


The European Data Protection Supervisor maintains this website to enhance public access to information about the institution and its activities.

Our goal is to keep this information as complete, accurate and up to date as possible. If errors are brought to its attention, the EDPS will take all possible steps to make any necessary corrections without delay.

The EDPS cannot be held liable for direct or indirect damage which may result from use of this site. We take all possible steps to minimise disruption caused by technical errors. Some data or information on this site may have been created or structured in files or formats that are not error-free. We cannot in such cases guarantee that our service will not be interrupted or otherwise affected by such problems. The EDPS accepts no responsibility in case of defective transmission of data due to the various networks of the internet or to incompatibilities due to the user's web browser.

The EDPS cannot guarantee that information from external sources contained on this site is reliable or up to date. The information on this  site may link to external sites over which the EDPS services have no control and for which the EDPS can accept no responsibility.

  • 25 March 2017

    60th anniversary of the Rome Treaties. Giovanni Buttarelli to participate in the meeting of the 27 EU heads of state and heads of European Union institutions in Rome, Italy.

  • 15 March 2017

    Data Protection and the EU institutions. Read the latest blogpost by Giovanni Buttarelli and the EDPS Opinion.

  • 15 March 2017

    EDPS sees opportunity for stronger consumer and data protection. Read the EDPS Opinion and the press release.

  • 13 March 2017

    2018 International Conference of Data Protection and Privacy Commissioners to be hosted in Brussels. Read the press statement.

  • 07 March 2017

    EDPS calls for consistent improvements in the approach to EU border policy. Read the EDPS Opinion and the press release.

  • 28 March 2017

    Giovanni Buttarelli meeting with Greg Nojeim, Senior Counsel and Director, Freedom, Security and Technology Project, Center for Democracy & Technology (CDT), Brussels, Belgium

  • 28 March 2017

    Giovanni Buttarelli meeting with Cornelia Ernst, MEP, Brussels, Belgium

  • 27 March 2017

    Processing of personal data  by the Union institutions, bodies, offices and agencies, Study group meeting, EESC, Participation of Giovanni Buttarelli, Brussels Belgium

  • 25 March 2017

    60th anniversary of the Rome Treaties, Participation of Giovanni Buttarelli in the meeting of the 27 EU heads of state and heads of European Union institutions, Rome, Italy

  • 23 March 2017

    Forum on International Privacy Law, Participation of Wojciech Wiewiórowski, Königstein, Germany

  • 23 March 2017

    Participation of Giovanni Buttarelli in DAPIX, Brussels, Belgium

  • 23 March 2017

    Concurrences Review, Law & Economics Workshop: Big Data, Speech by Giovanni Buttarelli, Brussels, Belgium

  • 13 March 2017

    Regulating Privacy through Ethical Standards and Accountability Principles in the era of Big Data, Keynote speech of Wojciech Wiewiórowski: Towards a new digital ethics – data, dignity and technology: How to ensure accountability in personal data management?, Brussels, Belgium