In common with all other European institutions, the EDPS is subject to specific legal obligations concerning the protection of personal data. These obligations are laid down in the Data Protection Regulation (Regulation (EC) No 45/2001).
Apart from specifying the legal principles governing the processing of personal data by the EU administration, the Regulation provides that each European institution or body must appoint at least one person as a Data Protection Officer ("DPO").
The main task of the DPO is to ensure, in an independent manner, the internal application of the provisions of the Regulation in his/her institution. The DPO is also required to keep a register of all of the processing operations involving personal data carried out by the institution. The Register, which must contain information explaining the purpose and conditions of the processing operations, should be accessible to any interested person.
The role of DPO at the EDPS presents many challenges: being independent within an independent institution, meeting the high expectations of colleagues who are particularly aware and sensitive about data protection issues, and delivering solutions that can serve as benchmarks for other institutions. The implementing rules reflect these specificities, while taking into account both the EDPS Position paper and the DPOs Network's Paper on Professional Standards for Data Protection Officers.
Data Protection Officer
Is your toaster watching you?, Lunchtime conference on the Internet of Things, Speeches by Giovanni Buttarelli and Wojciech Wiewiórowski, Brussels, Belgium
6th Data Protection Forum with Mr Viljar PEEP, Director General, Estonian Data Protection Inspectorate, Participation of Giovanni Buttarelli and Wojciech Wiewiórowski, Brussels, Belgium
e-Privacy Breakfast Debate organised by EIF, Speech by Wojciech Wiewiórowski, European Parliament, Brussels, Belgium
e-Privacy Directive: Combining Modern Marketing & Privacy, Event organised by FEDMA, Speech by Wojciech Wiewiórowski, Brussels, Belgium
109th Plenary meeting of the Article 29 Working Party, Participation of Giovanni Buttarelli, Brussels, Belgium
Workshop on the current trends and practices in biobanking in the light of European and national data protection requirements? Participation of Wojciech Wiewiórowski, Brussels, Belgium
Giovanni Buttarelli speaking on GDPR in panel New rules and what to do next in the conference organised by Confindustria Il nuovo Regolamento europeo sulla protezione dei dati personali, Rome, Italy
Giovanni Buttarelli meeting with Bob Quinn, Senior Executive Vice President, AT&T, Brussels, Belgium