Activities of Mikuláš PEKSA related to 2022/0084(COD)
Shadow opinions (1)
OPINION on the proposal for a regulation of the European Parliament and of the Council Proposal for a regulation of the European Parliament and of the Council on information security in the institutions, bodies, offices and agencies of the Union
Amendments (9)
Amendment 25 #
Proposal for a regulation
Recital 5 a (new)
Recital 5 a (new)
(5 a) While ensuring a high level of protection for information, this Regulation is also providing a clear framework to enhance transparency, minimising and limiting in time the use of confidential documents, providing safeguards against use of classification that would prevent Union institutions and bodies to fulfil their mission and ensuring that the whistleblowers are adequately protected.
Amendment 29 #
Proposal for a regulation
Recital 12
Recital 12
(12) The principle of information security risk management should be at the core of the policy to be developed in the field by each Union institution and body. While the minimum requirements laid down in this Regulation must be met, each Union institution and body should adopt specific security measures for protecting information in accordance with the results of an internal risk assessment. In the same way, the technical means to protect the information should be adapted to the specific situation of each institution and body. However, the specific security measures should not constitute an impediment for the activity of other institutions and legal access to information, as for example unduly limiting the acces of the Members of European Parliament to the information produced or held by the European Commission.
Amendment 61 #
Proposal for a regulation
Article 18 – paragraph 2
Article 18 – paragraph 2
2. The Coordination Group shall adopt guidance documents on EUCI creation and classification, implementing the principle of minimisation of the use of classification and limiting in time the duration of such classification; The guidance must contain rules on assessment and justification for classifying information and material, aimed at increasing transparency and avoiding unjustified lock-in effects.
Amendment 62 #
Proposal for a regulation
Article 18 – paragraph 2 a (new)
Article 18 – paragraph 2 a (new)
2 a. In the case of the European Commission and the European Parliament, in the event of any doubt as to the confidential nature of an item of information or its appropriate level of classification, the two institutions shall consult each other without delay and before transmission of the document. In these consultations, Parliament shall be represented by the chair of the parliamentary body concerned, accompanied, where necessary, by the rapporteur, or the office-holder who submitted the request. The Commission shall be represented by the Member of the Commission with responsibility for that area, after consultation of the Member of the Commission responsible for security matters. In the event of a disagreement, the matter shall be referred to the Presidents of the two institutions so that they may resolve the dispute.
Amendment 63 #
Proposal for a regulation
Article 20 – paragraph 3 a (new)
Article 20 – paragraph 3 a (new)
3 a. This Article is without prejudice to Regulation No 1049/2001 regarding public access to European Parliament, Council and Commission documents.
Amendment 64 #
Proposal for a regulation
Article 22 – paragraph 3 a (new)
Article 22 – paragraph 3 a (new)
3 a. The persons who report, within the organisation concerned or to an outside authority, or disclose to the public EUCI on a wrongdoing, obtained in a work- related context, help preventing damage and detecting threat or harm to the public interest that may otherwise remain hidden, is exempted from administrative and criminal liability.
Amendment 66 #
Proposal for a regulation
Article 41 – paragraph 1 – point f a (new)
Article 41 – paragraph 1 – point f a (new)
(f a) the system owner or Information Assurance Operational Authority shall ensure that a process of identifying and reporting vulnerabilities is in place, including internal and external rewards as appropriate. This should be complemented by regular audits and penetration tests where appropriate.
Amendment 67 #
Proposal for a regulation
Article 52 – paragraph 2
Article 52 – paragraph 2
2. The sub-group on EUCI sharing and exchange of classified information shall be composed of representatives from the Commission, the European Parliament, the Council and the European External Action Service and shall work by consensus. The sub-group shall ensure synergy with the Access to Documents Regulation and make sure that classification doesn't in itself prevent disclosure.
Amendment 69 #
Proposal for a regulation
Article 54 – paragraph 1 a (new)
Article 54 – paragraph 1 a (new)
1 a. The conditions in paragraph 1 letter a) are considered to be fulfilled when acces to EUCI is needed in order to fulfil the institution mandate or mission, as entrusted by the EU legislation, or would otherwise encroach on heir institutional autonomy.