Logo European Date Protection Supervisor
RSS Feed EDPS on Twitter
The EDPS Supervision Consultation Cooperation
  Members & Mission
  Data protection
  Press & News
  Publications
  Events
  Human Resources
  Data Protection Officer
  Public procurement
  Contact
  Links
  IPEN
  Legal notice

Strategy 2015-2019
Videos and podcasts
EU Data Protection Reform
Complaints
DPO Corner
Big data
Factsheets
IPEN - Internet Privacy Engineering Network
 
     
 

Welcome to the home page of the European Data Protection Supervisor



 
Giovanni Buttarelli
Supervisor
Wojciech Wiewiórowski
Assistant Supervisor
The EDPS is an independent supervisory authority devoted to protecting personal data and privacy and promoting good practice in the EU institutions and bodies. He does so by:
 
  • monitoring the EU administration's processing of personal data;
  • advising on policies and legislation that affect privacy; and
  • cooperating with similar authorities to ensure consistent data protection.

The EDPS
Giovanni Buttarelli and Wojciech Wiewiórowski are members of the institution. They took office on 4 December 2014. Their mission is to make sure that the fundamental right to protection of personal data is respected by the EU institutions and bodies. A data protection culture needs to be developed in practice. This work towards good administration takes several forms. The news and the press sections as well as the newsletter give a good overview of these activities.
 
Supervision
The supervisory task is to ensure that the EU institutions and bodies process personal data of EU staff and others lawfully. The EDPS oversees Regulation (EC) 45/2001 on data protection, which is based on two main principles:
  1. The responsible data controller needs to respect a number of obligations. For instance, personal data can only be processed for a specific and legitimate reason which must be stated when the data are collected.
  2. The person whose data are processed - the data subject - enjoys a number of enforceable rights. This includes, for instance, the right to be informed about the processing and the right to correct data.
Every institution or body should have an internal Data Protection Officer. The DPO keeps a register of processing operations and notifies systems with specific risks to the EDPS. The EDPS prior checks whether or not those systems comply with data protection requirements. The EDPS also deals with complaints and conducts inquiries.
 
Consultation
The EDPS advises the European Commission, the European Parliament and the Council on proposals for new legislation and a wide range of other issues with data protection impact. In essence, the consultative task is to analyse how policies affect the privacy rights of the citizens. This assessment helps to enable proper political discussions on how new legislation can be effective with due respect and adequate safeguards for citizens' freedoms. The advice makes it possible for the legislators in Europe to adopt better legislation that is in line with European values.
 
Cooperation
The EDPS cooperates with other data protection authorities in order to promote consistent data protection throughout Europe. Data protection laws are built on common principles. Moreover, for an increasing number of European databases, supervision is shared between different data protection authorities (such as the Eurodac database). The central platform for cooperation with national supervisory authorities is the Article 29 Working Party.  
     
22 May 2015

Healthcare on the move. Read the EDPS opinion on mobile health and our press release.

22 May 2015
Second edition of the EDPS IPEN workshop will take place on 5 June 2015 at KU Leuven. Please see the draft programme and register here.
20 May 2015
With the appointment of a new team of Supervisors and the launch of a strategic plan for their five year mandate, the EDPS' new logo reflects a new era in the organisation's history.
19 May 2015

EDPS Priorities 2015 - A strategic approach to legislative consultation. Read more.

13 May 2015

The EDPS has invited NGOs to a meeting on the data protection reform package. The event will take place on 27 May 2015 as part of the EDPS's commitment to ensuring that data flows are regulated in the interest of the individual.