BETA
Home MEPs Dossiers Committees Subjects Blog About Dumps

12 Amendments of Sophia IN 'T VELD related to 2022/0085(COD)

Amendment 22 #
Sophia IN 'T VELD
Proposal for a regulation
Recital 22
(22) All personal data processed under this Regulation should be processed in accordance with data protection legislation including Regulation (EU) 2018/1725 of the European Parliament and of the Council.7 This Regulation shall not affect the application of existing EU laws governing the processing of personal data, including the tasks and powers of the EDPS. _________________ 7 Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC (OJ L 295, 21.11.2018, p. 39).
2023/01/23
Committee: LIBE
Amendment 24 #
Sophia IN 'T VELD
Proposal for a regulation
Recital 25 a (new)
(25 a) The European Data Protection Supervisor was consulted in accordance with Article 42 of Regulation (EU) 2018/1725 and delivered anopinion on 17 May 2022;
2023/01/23
Committee: LIBE
Amendment 25 #
Sophia IN 'T VELD
Proposal for a regulation
Article 2 – paragraph 1
This Regulation applies to the management, governance and control of cybersecurity risks by all Union institutions, bodies and agencies and to the organisation and operation of CERT-EU and the Interinstitutional Cybersecurity Board. The minimum security requirements should be at least equal or higher than the minimum security requirements of the entities in the NIS 2.0 Directive.
2023/01/23
Committee: LIBE
Amendment 29 #
Sophia IN 'T VELD
Proposal for a regulation
Article 9 – paragraph 3 – subparagraph 1 – point k a (new)
(k a) the European Data Protection Supervisor
2023/01/23
Committee: LIBE
Amendment 30 #
Sophia IN 'T VELD
Proposal for a regulation
Article 9 – paragraph 3 – subparagraph 1 – point k b (new)
(k b) Europol
2023/01/23
Committee: LIBE
Amendment 33 #
Sophia IN 'T VELD
Proposal for a regulation
Article 12 – paragraph 7 a (new)
7 a. CERT-EU shall work in close cooperation with the EDPS, when addressing incidents resulting in personal data breaches or in breach of confidentiality of electronic communications. CERT-EU shall inform the EDPS when addressing significant vulnerabilities, significant incidents or major attacks that have the potential to result in personal data breaches and/or in the breach of confidentiality of electronic communications. CERT-EU shall inform without undue delay the EDPS when it has indications that an infringement by the EUIs of the obligations laid down in the Proposal entails a personal data breach.
2023/01/23
Committee: LIBE
Amendment 35 #
Sophia IN 'T VELD
Proposal for a regulation
Article 12 – paragraph 7 b (new)
7 b. The Commission shall issue a delegated act related to the legal ground for the processing of personal data by CERT-EU and the institutions, bodies, offices and agencies of the Union, including in particular the purposes of processing and the categories of personal data.This delegated act shall also lay down the (a) identification of the controller(s), processors or joint controllers, as applicable; (b) categories of data subjects; (c) retention periods.
2023/01/23
Committee: LIBE
Amendment 41 #
Sophia IN 'T VELD
Proposal for a regulation
Article 18 – paragraph 5
5. Any contacts with CERT-EU initiated or sought by national security and intelligence services shall be communicated to the Commission’s Security Directorate, Europol and the chair of the IICB without undue delay.
2023/01/23
Committee: LIBE
Amendment 49 #
Sophia IN 'T VELD
Proposal for a regulation
Article 19 – paragraph 4
4. The sharing obligations shall not extend to EU Classified Information (EUCI) and to information that a Union institution, body or agency has received from a Member State Security or Intelligence Service or law enforcement agency under the explicit condition that it will not be shared with CERT-EU, except if Europol decides that the sharing obligation shall be extended to that information.
2023/01/23
Committee: LIBE
Amendment 51 #
Sophia IN 'T VELD
Proposal for a regulation
Article 20 – paragraph 5
5. The notification obligations shall not extend to EUCI and to information that a Union institution, body or agency has received from a Member State Security or Intelligence Service or law enforcement agency under the explicit condition that it will not be shared with CERT-EU, except if Europol decides that the notification obligation shall be extended to that information.
2023/01/23
Committee: LIBE
Amendment 56 #
Sophia IN 'T VELD
Proposal for a regulation
Article 21 – paragraph 4
4. The IICB shall issue guidance on incident response coordination and cooperation for significant incidents. Where the criminal nature of an incident is suspected, CERT-EU shall advise on how to report the incident to law enforcement authorities without undue delay.
2023/01/23
Committee: LIBE
Amendment 57 #
Sophia IN 'T VELD
Proposal for a regulation
Article 22 a (new)
Article 22 a Transparency After every significant incident and response, CERT-EU shall make the cybersecurity attack public, except if this presents an actual and foreseeable threat to the institution, office, body or agency.
2023/01/23
Committee: LIBE
@parltrack
@parltrack@eupolicy.social
[javascript protected email address]
code AGPLv3.0+
data ODBLv1.0
site content CC-By-Sa-3.0

ParlTrack - 2011-2024

© European Union, 2011 – Source: European Parliament
Hosted by AS250.net Foundation