2017/0002(COD) Protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and the free movement of such data
Lead committee dossier:
Progress: Procedure completed
| Role | Committee | Rapporteur | Shadows |
|---|---|---|---|
| Lead | LIBE |
VOSS Axel ( PPE),
LAURISTIN Marju ( S&D),
PROCTER John ( ECR),
MLINAR Angelika ( ALDE),
ALBRECHT Jan Philipp ( Verts/ALE)
|
|
| Committee Opinion | BUDG | ||
| Committee Opinion | JURI |
DZHAMBAZKI Angel ( ECR)
|
Max ANDERSSON ( Verts/ALE),
Mady DELVAUX ( S&D),
Jiří MAŠTÁLKA ( GUE/NGL),
Jens ROHDE ( ALDE)
|
Lead committee dossier:
Legal Basis:
TFEU 016-p2
Legal Basis:
TFEU 016-p2Subjects
Events
2022/10/14
EC - Follow-up document
Documents
2018/11/21
Final act published in Official Journal
Details
PURPOSE: to enhance the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies.
LEGISLATIVE ACT: Regulation (EU) 2018/1725 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC.
CONTENT: the Regulation lays down rules on the protection of individuals with regard to the processing of personal data by the Union's institutions and bodies and rules on the free movement of personal data between those institutions and bodies or to other recipients established in the Union. It aims to:
- protect the fundamental right to data protection and ensure the free movement of personal data throughout the Union;
- allow the European Data Protection Supervisor (EDPS) to monitor the application of the provisions of the Regulation to all processing operations carried out by a Union institution or body.
General principles
Personal data shall be:
- processed lawfully, fairly and in a transparent manner in relation to the data subject (‘lawfulness, fairness and transparency’). In the case of children under 13 years of age, the processing shall only be lawful if the consent is given or authorised by the holder of parental responsibility for the child;
- collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall, in accordance with Article 13, not be considered to be incompatible with the initial purposes;
- adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (‘data minimisation’);
- accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
- kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed;
- processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
The Regulation prohibits the processing of personal data revealing racial or ethnic origin, political opinions, religion or beliefs or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning the sex life or sexual orientation of a natural person.
Transmission of personal data between Union institutions and bodies
Personal data shall be processed on the basis of the necessity for the performance of a task carried out in the public interest. The controller shall determine whether there are grounds to believe that such transmission could harm the legitimate interests of the data subject. In such cases, the controller shall demonstrably weigh the various competing interests in order to assess the proportionality of the requested transmission of personal data.
Rights of the data subject
Natural persons should be made aware of risks, rules, safeguards and rights in relation to the processing of personal data and how to exercise their rights in relation to such processing.
The Regulation provides that the legal acts adopted on the basis of the Treaties or, in matters relating to the operation of the Union institutions and bodies, internal rules laid down by the latter may restrict the exercise of the rights of the person concerned.
The internal rules shall be clear and precise acts of general application, adopted at the highest level of management of the Union institutions and bodies and published in the Official Journal of the European Union. These rules shall be foreseeable to persons subject to them, in particular when adopted by Union institutions.
In particular, any legal act or internal rule shall contain specific provisions, where relevant, as to: (i) the purposes of the processing or categories of processing; (ii) the categories of personal data; (iii) the scope of the restrictions introduced; (iv) the safeguards to prevent abuse or unlawful access or transfer; (v) the specification of the controller or categories of controllers; (vi) the storage periods and the applicable safeguards; (vii) the risks to the rights and freedoms of data subjects.
Obligations of the controller
The Regulation specifies the information obligations of the controller towards the data subject when personal data are obtained from that person, by providing information to the data subject, including information on the period of data storage, the right to lodge a complaint and international transfers of data.
Personal data must remain confidential and be subject to an obligation of professional secrecy regulated by Union law. This may apply, for example, in social security or health procedures.
Obligations of the EU institutions
The Regulation provides for an obligation for the Union institutions and bodies to inform the European Data Protection Supervisor when drawing up administrative measures and internal rules relating to the processing of personal data. It also provides for the Commission to consult the EDPS following the adoption of proposals for legislative acts and recommendations or proposals to the Council and when preparing delegated or implementing acts having an impact on the protection of rights and freedoms with regard to the processing of personal data.
ENTRY INTO FORCE: 11.12.2018. The Regulation shall apply to the processing of personal data by Eurojust from 12.12.2019.
2018/11/13
EC - Commission response to text adopted in plenary
Documents
2018/10/24
CSL - Draft final act
Documents
2018/10/23
CSL - Final act signed
2018/10/23
EP - End of procedure in Parliament
2018/10/16
CSL - Coreper letter confirming interinstitutional agreement
Documents
2018/10/12
EP/CSL - Act adopted by Council after Parliament's 1st reading
2018/10/12
CSL - Council Meeting
2018/09/13
EP - Results of vote in Parliament
Documents
2018/09/13
EP - Decision by Parliament, 1st reading
Details
The European Parliament adopted by 527 votes to 51, with 27 abstentions, a legislative resolution on the proposal for a regulation of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC.
The European Parliament’s position adopted at first reading under the ordinary legislative procedure amended the Commission proposal as follows:
Scope : the Regulation would apply to the processing of personal data by all Union institutions, bodies, offices and agencies when carrying out activities which fall within the scope of Chapters 4 (judicial cooperation in criminal matters) and 5 (police cooperation) of Title V of Part Three of the TFEU for the purpose of the prevention, investigation, detection and prosecution of criminal offences.
However, it shall only apply to Europol or the European Public Prosecutor's Office once the legal acts establishing Europol and the European Public Prosecutor's Office have been adapted.
The Regulation shall not apply to the processing of personal data by tasks referred to in Articles 42(1), 43 and 44 of the Treaty on European Union, which implement the common security and defence policy
Transmission of personal data between Union institutions and bodies : personal data shall be processed on the basis of the necessity for the performance of a task carried out in the public interest . The controller shall determine whether there are grounds to believe that such transmission could harm the legitimate interests of the data subject.
Where the controller initiates the transmission under this Article, it shall demonstrate that the transmission of personal data is necessary for and proportionate to the purposes of the transmission.
Union institutions and bodies shall reconcile the right to the protection of personal data with the right of access to documents in accordance with Union law.
Restrictions : the Regulation provides that the legal acts adopted on the basis of the Treaties or, in matters relating to the operation of the Union institutions and bodies, internal rules laid down by the latter may restrict the exercise of the rights of the person concerned.
The internal rules shall be clear and precise acts of general application, adopted at the highest level of management of the Union institutions and bodies and published in the Official Journal of the European Union. These rules shall be foreseeable to persons subject to them, in particular when adopted by Union institutions.
In particular, any legal act or internal rule shall contain specific provisions, where relevant, as to:
the purposes of the processing or categories of processing; the categories of personal data; the scope of the restrictions introduced; the safeguards to prevent abuse or unlawful access or transfer; the specification of the controller or categories of controllers; the storage periods and the applicable safeguards taking into account the nature, scope and purposes of the processing or categories of processing; and the risks to the rights and freedoms of data subjects.
Special categories of personal data : processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation shall be prohibited by the Regulation.
Special categories of personal data which merit higher protection shall be processed for health-related purposes only where necessary to achieve those purposes for the benefit of natural persons and society as a whole, in particular in the context of the management of health or social care services and systems. Therefore, this Regulation shall provide for harmonised conditions for the processing of special categories of personal data concerning health.
European Data Protection Supervisor (EDPS) : the amended Regulation stipulates that the European Parliament and the Council shall appoint the European Data Protection Supervisor by common accord for a term of five years, on the basis of a list drawn up by the Commission following a public call for candidates. On the basis of the list drawn up by the Commission, the competent committee of the European Parliament may decide to hold a hearing in order to enable it to express a preference.
The EDPS shall, inter alia , have the following tasks: (i) monitor and enforce the application of this Regulation by Union institutions and bodies, with the exception of the processing of personal data by the Court of Justice acting in its judicial capacity; (ii) advise, on his or her own initiative or on request, all Union institutions and bodies on legislative and administrative measures relating to the protection of natural persons' rights and freedoms with regard to the processing of personal data.
Effective judicial remedy : the Court of Justice shall have jurisdiction to hear all disputes relating to the provisions of this Regulation, including claims for damages. Any person who has suffered material or non-material damage as a result of an infringement of this Regulation shall have the right to receive compensation from the controller or processor for the damage suffered.
Prevention and detection of criminal offences (activities falling within the scope of Part Three, Title V, Chapter 4 or 5 of the TFEU) : Directive (EU) 2016/680 sets out harmonised rules for the protection and the free movement of personal data processed for the purposes of the prevention, investigation, detection or prosecution of criminal offences or execution of criminal penalties, including the safeguarding against and the prevention of threats to public security.
In order to ensure the same level of protection for natural persons through legally enforceable rights throughout the Union, the rules for the protection and the free movement of operational personal data processed by such Union bodies, offices or agencies should be consistent with Directive (EU) 2016/680.
Documents
2018/09/12
EP - Debate in Parliament
Documents
2017/10/25
EP - Committee decision to enter into interinstitutional negotiations confirmed by plenary (Rule 71)
2017/10/23
EP - Committee report tabled for plenary, 1st reading
Details
The Committee on Civil Liberties, Justice and Home Affairs adopted the report by Cornelia ERNST (GUE/NGL, DE) on the proposal for a regulation of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC.
The committee recommended that the European Parliament’s position adopted at first reading under the ordinary legislative procedure should amend the Commission proposal as follows.
Scope of the Regulation : Members stated that the Regulation shall also apply to Union agencies carrying out activities which fall within the scope of chapters 4 (judicial cooperation in criminal matters) and 5 (police cooperation) under Title V of Part Three TFEU, including where the founding acts of these Union agencies lay down a standalone data protection regime for the processing of operational personal data. Provisions relating to specific processing of operational personal data contained in the founding acts of these agencies may particularise and complement the application of this Regulation.
The provisions on the specific processing of data contained in the founding acts of the agencies shall clarify and complete the application of the Regulation.
Transfer of personal data between Union institutions and bodies : such a transfer shall only be possible if the data are necessary for the legitimate performance of tasks falling within the competence of the recipient. The controller shall verify the competence of the recipient and provisionally evaluate the necessity for the transfer of such data.
Transmission of personal data to recipients established in the Union : personal data may only be transmitted to recipients established in the Union and subject to the General Data Protection Regulation ( Regulation (EU) 2016/679 ) or the national rules adopted pursuant to Directive (EU) 2016/680 only if the controller demonstrates, on the basis of a reasoned request from the recipient that the transmission is proportionate and necessary for the purposes of serving the public interest such as transparency or good administration and after having demonstrably weighed the various competing interests.
Restrictions : the proposal provides that legal acts adopted on the basis of the Treaties or, for matters concerning the functioning of the Union's institutions or bodies, internal rules laid down by them may restrict the exercise of the rights of the data subject. Members proposed to delete the possibility for Union institutions, bodies, offices and agencies to restrict the exercise of data subject’s rights by way of internal rules .
It is also specified that legal acts adopted on the basis of treaties to restrict the exercise of the rights of the person concerned shall be clear and precise . Their application shall be foreseeable to persons subject to it.
In particular, any legal act shall contain specific provisions at least, where relevant, as to: (i) the purposes of the processing; (ii) the categories of personal data; (iii) the scope of the restriction introduced; (iv) the safeguards to prevent abuse or unlawful access or transfer; (v) the specification of the controller or categories of controllers; (vi) the storage periods and the applicable safeguards taking into account the nature, scope and purposes of the processing or categories of processing; (vii) the risks to the rights and freedoms of data subjects; and (viii) the right of data subjects to be informed about the restriction.
Approved certification mechanisms and codes of conduct : under the proposal, the controller should implement technical and organisational measures to ensure that processing is done in accordance with the Regulation and is able to demonstrate it.
Members inserted a provision stating that adherence to approved certification mechanisms as referred to in Article 42 of Regulation (EU) 2016/679 may be used as an element by which to demonstrate compliance with the obligations of the controller .
Adherence to an approved code of conduct may be used as an element by which to demonstrate compliance.
Register of processing activities : Union institutions and bodies shall be obliged to keep their records of processing activities in a central register and make the register publicly accessible.
Independent monitoring by the European Data Protection Supervisor (EDPS) : all institutions and bodies, including the Court of Justice, shall be subject to independent supervision by the EDPS. Members proposed that the European Parliament and the Council appoint, by common accord, the EDPS for a period of five years, on the basis of a list drawn up jointly by the European Parliament, the Council and the Commission following a public call for candidates.
The EDPS and the national supervisory authorities, acting within the scope of their respective competencies, shall cooperate in the framework of their responsibilities in order to ensure effective and coordinated control of large-scale IT systems or Union bodies, offices or agencies.
Alignment with the General Data Protection Regulation : Members tabled a number of amendments aimed at aligning this proposed Regulation with the General Data Protection Regulation in order to streamline these two texts as much as possible and to make ensure that the Union is kept to the same standards as the Member States when it comes to data protection.
The provisions introduced by the Members include the following aspects:
principles relating to the processing of operational personal data : for example, data lawfully and fairly processed, collected for specified, explicit and legitimate purposes, kept in a form that enables the data subject to be identified for no longer than not necessary, processed to ensure appropriate data security; prohibition of treatment of particular categories of data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership; processing of genetic and biometric data, data relating to health or a person’s sexual life or sexual orientation; distinction between different categories of data subjects; specific processing conditions; transmission of operational personal data to other Union institutions and bodies; information to be made available or given to the data subject; the right of access of the data subject and limitations of the right of access; right of rectification or erasure; transfer of operational personal data to third countries.
Review clause : no later than 1 June 2021, and every five years thereafter, the Commission shall report on the application of the Regulation, accompanied, if necessary, by appropriate legislative proposals.
Documents
2017/10/23
EP - Committee decision to enter into interinstitutional negotiations announced in plenary (Rule 71)
2017/10/12
EP - Vote in committee, 1st reading
2017/10/12
EP - Committee decision to open interinstitutional negotiations with report adopted in committee
2017/10/05
EP - Committee opinion
Documents
2017/07/12
EP - Amendments tabled in committee
Documents
2017/06/08
EP - Committee draft report
Documents
2017/06/08
CSL - Council Meeting
2017/05/31
ESC - Economic and Social Committee: opinion, report
Documents
2017/05/07
ES_PARLIAMENT - Contribution
Documents
2017/04/18
PT_PARLIAMENT - Contribution
Documents
2017/04/03
CZ_CHAMBER - Contribution
Documents
2017/04/03
EP - Committee referral announced in Parliament, 1st reading
2017/03/15
EDPS - Document attached to the procedure
Details
EDPS Opinion on the proposal for a regulation on the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC.
Overall, the EDPS considered the proposal successful in aligning the rules for EU institutions with the General Data Protection Regulation (GDPR), while taking the specificities of the EU public sector into account. The high level of protection regarding data processing by EU institutions is generally preserved in the proposal.
The EDPS considered that the proposal should be further improved , notably regarding:
The modalities for restrictions of the person concerned: the proposal would need to be amended to the effect that only legal acts adopted on the basis of the Treaties should be able to restrict fundamental rights.
The EU legislator is called upon to ensure that the possible restrictions of the fundamental right to privacy of communications by EU institutions in their own operations follows the same standards as laid down in Union law as interpreted by the Court of Justice in this domain.
The possibility for the EU institutions to use, in certain contexts, certification mechanisms : the EDPS considered that certification mechanisms may be a very useful instrument for EU institutions and they are already being used in certain contexts, e.g. certifying compliance with generally accepted standards.
Therefore, references to the use of certification should therefore be added to the provisions on the ‘Responsibility of the controller’, ‘Data protection by design and by default’, as well as to ‘Security’.
Further recommendations : the EDPS welcomed the fact that the proposal includes a separate article dedicated to the role of the EDPS as an advisor to EU institutions. He suggested however the addition of a recital in which the Commission should reaffirm its long-standing commitment to consult the EDPS on draft proposals in an informal manner .
The EDPS also considered that the possibility to outsource the function of a Data Protection Officers is not suitable for EU institutions exercising public authority.
It is essential that the revised rules become fully applicable at the same time as the GDPR i.e. on 25 May 2018. It encouraged the EU legislator to reach agreement on the proposal as swiftly as possible so as to allow EU institutions to benefit from a reasonable transition period before the new Regulation can become applicable at the same time as the GDPR.
Documents
2017/02/28
EP - DZHAMBAZKI Angel (ECR) appointed as rapporteur in JURI
2017/01/10
EC - Legislative proposal published
Details
PURPOSE: to enhance the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data.
PROPOSED ACT: Regulation of the European Parliament and of the Council.
ROLE OF THE EUROPEAN PARLIAMENT: the European Parliament decides in accordance with the ordinary legislative procedure and on an equal footing with the Council.
BACKGROUND: the protection of natural persons in relation to the processing of personal data is a fundamental right. Moreover, in Article 16(2) TFEU, the Lisbon Treaty introduced a specific legal basis for adopting rules on the protection of personal data.
Regulation (EC) No 45/2001 of the European Parliament and of the Council provides natural persons with legally enforceable rights, specifies the data processing obligations of controllers within the Community institutions and bodies, and creates an independent supervisory authority, the European Data Protection Supervisor, responsible for monitoring the processing of personal data by the Union institutions and bodies.
However, it does not apply to the processing of personal data in the course of an activity of Union institutions and bodies which fall outside the scope of Union law.
Regulation (EU) 2016/679 of the European Parliament and of the Council ( General Data Protection Regulation ) and Directive (EU) 2016/680 of the European Parliament and of the Council were adopted on 27 April 2016. While the Regulation lays down general rules to protect natural persons in relation to the processing of personal data and to ensure the free movement of personal data within the Union, the Directive lays down the specific rules to protect natural persons in relation to the processing of personal data and to ensure the free movement of personal data within the Union in the fields of judicial cooperation in criminal matters and police cooperation.
Regulation (EU) 2016/679 stresses the need for the necessary adaptations of Regulation (EC) No 45/2001 in order to provide a strong and coherent data protection framework in the Union and to allow application at the same time as Regulation (EU) 2016/679.
It is in the interest of a coherent approach to personal data protection throughout the Union, and of the free movement of personal data within the Union, to align as far as possible the data protection rules for Union institutions and bodies with the data protection rules adopted for the public sector in the Member States.
CONTENT: in order to align the existing rules, which date back to 2001, with the newer and more stringent rules set out by the General Data Protection Regulation of 2016, the Commission has proposed the following:
Objective : this proposed Regulation has a two-fold objective:
to protect the fundamental right to data protection and to guarantee the free flow of personal data throughout the Union; to provide for the main tasks of the European Data Protection Supervisor (EDPS).
Scope : the proposal shall apply to the processing of personal data, by automated means or otherwise , by all Union institutions and bodies insofar as such processing is carried out in the exercise of activities all or part of which fall within the scope of Union law. The material scope of this Regulation is technologically neutral. The protection of personal data applies to the processing of personal data by automated means, as well as to manual processing if the personal data are contained or are intended to be contained in a filing system.
Levels of protection : new principles of transparency and of integrity and confidentiality have been incorporated into the new text. Further conditions for the lawfulness of the processing of personal data of children in relation to information society services offered directly to them. It sets 13 years as the child's minimum age for valid consent. New rules are provided for a specific level of protection on the transmission of personal data to recipients, other than Union institutions and bodies. The proposal clarifies that, where it is the controller initiating the transmission, it should demonstrate necessity and proportionality of the transmission.
Processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade-union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation shall be prohibited .
Data controller’s obligations : the proposal specifies the controller's information obligations towards the data subject where personal data are collected from the data subject, providing information to the data subject, including on the storage period, the right to lodge a complaint and in relation to international transfers.
Personal data must remain confidential subject to an obligation of professional secrecy regulated by Union law. This could apply for example in proceedings by services competent for social security or health matters.
Further modalities are provided to facilitate the exercise of the data subject's rights under this Regulation, including mechanisms to request and, if applicable, obtain, free of charge , in particular, access to and rectification or erasure of personal data and the exercise of the right to object.
Obligations for EU institutions : the proposal provides for an obligation for Union institutions and bodies to inform the EDPS when drawing up administrative measures and internal rules relating to the processing of personal data. It also provides for an obligation for the Commission to consult the EDPS following the adoption of proposals for a legislative act and of recommendations or proposals to the Council and when preparing delegated acts or implementing acts that have an impact on the protection of individuals’ rights and freedoms with regard to the processing of personal data.
Provisions are also laid down concerning the transfer of personal data to third countries or international organisations.
EDPS : specific provisions are laid down as regards the appointment of the EDPS by the European Parliament and the Council, the duration of its term of office: five years; the general conditions governing the performance of duties of the EDPS and his or her staff and the financial resources.
Documents
Documents
- Follow-up document: COM(2022)0530
- Follow-up document: EUR-Lex
- Final act published in Official Journal: Regulation 2018/1725
- Final act published in Official Journal: OJ L 295 21.11.2018, p. 0039
- Commission response to text adopted in plenary: SP(2018)724
- Draft final act: 00031/2018/LEX
- Coreper letter confirming interinstitutional agreement: GEDA/A/(2018)008163
- Results of vote in Parliament: Results of vote in Parliament
- Decision by Parliament, 1st reading: T8-0348/2018
- Debate in Parliament: Debate in Parliament
- Committee report tabled for plenary, 1st reading: A8-0313/2017
- Committee opinion: PE605.974
- Amendments tabled in committee: PE608.066
- Committee draft report: PE605.954
- Economic and Social Committee: opinion, report: CES0689/2017
- Contribution: COM(2017)0008
- Contribution: COM(2017)0008
- Contribution: COM(2017)0008
- Document attached to the procedure: N8-0028/2017
- Document attached to the procedure: OJ C 164 24.05.2017, p. 0002
- Legislative proposal published: COM(2017)0008
- Legislative proposal published: EUR-Lex
- Document attached to the procedure: N8-0028/2017 OJ C 164 24.05.2017, p. 0002
- Economic and Social Committee: opinion, report: CES0689/2017
- Committee draft report: PE605.954
- Amendments tabled in committee: PE608.066
- Committee opinion: PE605.974
- Coreper letter confirming interinstitutional agreement: GEDA/A/(2018)008163
- Draft final act: 00031/2018/LEX
- Commission response to text adopted in plenary: SP(2018)724
- Follow-up document: COM(2022)0530 EUR-Lex
- Contribution: COM(2017)0008
- Contribution: COM(2017)0008
- Contribution: COM(2017)0008
Activities
Votes
A8-0313/2017 - Cornelia Ernst - Am 118 13/09/2018 12:21:11.000 #
2018/09/13 Outcome: +: 527, -: 51, 0: 27
ENF
EFDD
NI| Amendments | Dossier |
| 302 |
2017/0002(COD)
2017/07/12
LIBE
199 amendments...
Amendment 100 #
Proposal for a regulation Article 2 – paragraph 1 1. This Regulation applies to the processing of personal data by all Union institutions and bodies
Amendment 101 #
Proposal for a regulation Article 2 – paragraph 1 a (new) Amendment 102 #
Proposal for a regulation Article 2 – paragraph 1 a (new) 1a. Eurojust, Europol and the European Public Prosecutor's Office shall only be covered by this Regulation for the processing of administrative personal data. Separate provisions apply to the processing of operational personal data by Eurojust, EPPO and the European Public Prosecutor's Office. The before mentioned Union bodies are not subject to this Regulation for the processing of operational personal data.
Amendment 103 #
Proposal for a regulation Article 2 – paragraph 1 b (new) 1b. This Regulation shall not apply to the processing of personal data in the context of the missions referred to in Articles 42(1), 43 and 44 of the TEU.
Amendment 104 #
Proposal for a regulation Article 2 – paragraph 2 Amendment 105 #
Proposal for a regulation Article 2 – paragraph 2 a (new) 2a. This Regulation shall also apply to Union agencies carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of the Treaty, including where the founding acts of these Union agencies lay down a standalone data protection regime for the processing of operational personal data. The provisions in this Regulation shall take precedence over the conflicting provisions in the founding acts of these Union agencies.
Amendment 106 #
Proposal for a regulation Article 3 – paragraph 1 – point a (a) the definitions in Regulation (EU) 2016/679, with the exception of the definition of
Amendment 107 #
Proposal for a regulation Article 3 – paragraph 2 – point d a (new) (da) 'operational personal data' means personal data processed by the Union agencies established on the basis of Chapters 4 and 5 of Title V of Part Three of the TFEU and by the missions referred to in Article 42(1), 43 and 44 of the TEU, for the purposes of meeting the objectives laid down in acts establishing those agencies or missions.
Amendment 108 #
Proposal for a regulation Article 3 – paragraph 2 – point d a (new) (da) 'operational personal data' means personal data processed by the Union agencies established on the basis of Chapters 4 and 5 of Title V of Part Three of the TFEU and by the missions referred to in Article 42(1), 43 and 44 of the TEU, for the purposes of meeting the objectives laid down in acts establishing those agencies or missions.
Amendment 109 #
Proposal for a regulation Article 3 – paragraph 2 – point a a (new) (aa) 'operational personal data' means all personal data processed by the Union bodies, offices or agencies carrying out activities which fall within the scope of Chapter 4 or Chapter 5 of Title V of Part Three of the TFEU to meet the objectives laid down in the acts establishing these bodies, offices or agencies;
Amendment 110 #
Proposal for a regulation Article 3 – paragraph 2 – point a b (new) (ab) 'administrative personal data' means all personal data processed by the Union bodies, offices or agencies which fall in the scope of this Regulation;
Amendment 111 #
Proposal for a regulation Article 4 – paragraph 1 – introductory part 1. Personal data
Amendment 112 #
Proposal for a regulation Article 5 – paragraph 1 – point a (a)
Amendment 113 #
Proposal for a regulation Article 5 – paragraph 1 – point b (b) processing is necessary for
Amendment 114 #
Proposal for a regulation Article 5 – paragraph 1 – point c (c) processing is necessary for
Amendment 115 #
Proposal for a regulation Article 5 – paragraph 1 – point d (d)
Amendment 116 #
Proposal for a regulation Article 5 – paragraph 1 – point e (e) processing is necessary
Amendment 117 #
Proposal for a regulation Article 8 Amendment 118 #
Proposal for a regulation Article 8 – paragraph 1 1. Where point (d) of Article 5(1)
Amendment 119 #
Proposal for a regulation Article 8 a (new) Article 8 a Article 8 a new Transfer of personal data within or between Community institutions or bodies Without prejudice to Articles 4, 5, 6 and 10: 1. Personal data shall only be transferred within or to other Community institutions or bodies if the data are necessary for the legitimate performance of tasks covered by the competence of the recipient. 2. Where the data are transferred following a request from the recipient, both the controller and the recipient shall bear the responsibility for the legitimacy of this transfer. The controller shall be required to verify the competence of the recipient and to make a provisional evaluation of the necessity for the transfer of the data. If doubts arise as to this necessity, the controller shall seek further information from the recipient. The recipient shall ensure that the necessity for the transfer of the data can be subsequently verified. 3. The recipient shall process the personal data only for the purposes for which they were transmitted.
Amendment 120 #
Proposal for a regulation Article 9 – title Transmissions of personal data to recipients, other than Union institutions and bodies, established in the Union
Amendment 121 #
Proposal for a regulation Article 9 – paragraph 1 – introductory part 1. Without prejudice to Articles 4, 5, 6, 10, 14, 15(3) and 1
Amendment 122 #
Proposal for a regulation Article 9 – paragraph 1 – introductory part 1. Without prejudice to Articles 4, 5, 6 and 10, personal data shall only be transmitted to other recipients established in the Union
Amendment 123 #
Proposal for a regulation Article 9 – paragraph 1 – point b (b) that it is strictly necessary to have the data transmitted
Amendment 124 #
(b) that it is
Amendment 125 #
Proposal for a regulation Article 10 – paragraph 2 – point a (a) the data subject has given explicit consent to the processing of those personal data for one or more specified purposes, except where Union law provides that the prohibition referred to in paragraph 1 may not be lifted by the data subject, or
Amendment 126 #
Proposal for a regulation Article 10 – paragraph 2 – point d Amendment 127 #
Proposal for a regulation Article 11 – paragraph 1 Processing of personal data relating to criminal convictions and offences or related security measures pursuant to Article 5(1)
Amendment 128 #
Proposal for a regulation Article 11 – paragraph 1 Processing of personal data relating to criminal convictions and offences or related security measures pursuant to Article 5(1) may be carried out only if authorised by Union law
Amendment 129 #
Proposal for a regulation Article 11 – paragraph 1 Processing of personal data relating to criminal convictions and offences or related security measures pursuant to Article 5(1) may be carried out only if authorised by Union law
Amendment 130 #
Proposal for a regulation Article 14 – paragraph 1 1. The controller shall take appropriate measures to provide any information referred to in Articles 15 and 16 and any communication under Articles 17 to 24 and 38 relating to processing to the data subject in a concise, transparent, intelligible and easily accessible form, using clear and plain language
Amendment 131 #
Proposal for a regulation Article 14 – paragraph 5 – subparagraph 1 Information provided under Articles 15 and 16 and any communication and any actions taken under Articles 17 to 24 and 38 shall be provided free of charge.
Amendment 132 #
Proposal for a regulation Article 14 – paragraph 8 8.
Amendment 133 #
Proposal for a regulation Article 16 – paragraph 5 – point b (b) the provision of such information proves impossible or would involve a disproportionate effort, in particular for processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes or in so far as the obligation referred to in paragraph 1 of this Article is likely to render impossible or seriously impair the achievement of the objectives of that processing. In such cases the controller shall take appropriate measures to protect the data subject's rights and freedoms and legitimate interest, including making the information publicly available;
Amendment 134 #
Proposal for a regulation Article 16 – paragraph 5 – point c (c) obtaining or disclosure is expressly laid down by Union law to which the controller is subject and which provides appropriate measures to protect the data subject's legitimate interest; or
Amendment 135 #
Proposal for a regulation Article 16 – paragraph 5 – point d (d) where the personal data must remain confidential subject to an obligation of professional secrecy regulated by Union law, including a statutory obligation of secrecy.
Amendment 136 #
Proposal for a regulation Article 20 – paragraph 1 – point b (b) the processing is unlawful and the data subject opposes the
Amendment 137 #
Proposal for a regulation Article 25 – paragraph 1 – introductory part 1. Legal acts adopted on the basis of the Treaties
Amendment 138 #
Proposal for a regulation Article 25 – paragraph 1 – introductory part 1. Legal acts adopted on the basis of the Treaties
Amendment 139 #
Proposal for a regulation Article 25 – paragraph 1 – point a (a) the national security, public security or defence
Amendment 140 #
Proposal for a regulation Article 25 – paragraph 1 – point d (d) the internal security of Union institutions and bodies, including of their servers, IT and electronic communication networks;
Amendment 141 #
Proposal for a regulation Article 25 – paragraph 1 a (new) Amendment 142 #
Proposal for a regulation Article 25 – paragraph 2 Amendment 143 #
Proposal for a regulation Article 25 – paragraph 2 Amendment 144 #
Proposal for a regulation Article 25 – paragraph 2 Amendment 145 #
Proposal for a regulation Article 25 – paragraph 2 2. Where a restriction is not provided for by a legal act adopted on the basis of the Treaties
Amendment 146 #
Proposal for a regulation Article 25 – paragraph 3 3. Where personal data are processed for scientific or historical research purposes or statistical purposes, Union law
Amendment 147 #
Proposal for a regulation Article 25 – paragraph 3 3. Where personal data are processed for scientific or historical research purposes or statistical purposes, Union law, which may include internal rules, adopted by Union institutions and bodies in matters relating to their operation, may provide for derogations from the rights referred to in Articles 17, 18, 20 and 23 subject to the conditions and safeguards referred to in Article 13 in so far as such rights are likely to render impossible or seriously impair the achievement of the specific purposes, and such derogations are necessary for the fulfilment of those purposes.
Amendment 148 #
Proposal for a regulation Article 25 – paragraph 4 4. Where personal data are processed for archiving purposes in the public interest, Union law, which may include internal rules adopted by Union institutions and bodies in matters relating to their operation, may provide for derogations from the rights referred to in Articles 17, 18, 20, 21, 22 and 23 subject to the conditions and safeguards referred to in Article 13 in so far as such rights are likely to render impossible or seriously impair the achievement of the specific purposes, and such derogations are necessary for the fulfilment of those purposes.
Amendment 149 #
Proposal for a regulation Article 25 – paragraph 4 4. Where personal data are processed for archiving purposes in the public interest, Union law
Amendment 150 #
Proposal for a regulation Article 25 – paragraph 5 Amendment 151 #
Proposal for a regulation Article 25 – paragraph 5 Amendment 152 #
Proposal for a regulation Article 25 – paragraph 5 5. Internal rules referred to in paragraphs 1, 3 and 4 shall be
Amendment 153 #
Proposal for a regulation Article 28 – paragraph 1 1. Where a Union institution or body together with one or more controllers,
Amendment 154 #
Proposal for a regulation Article 31 – paragraph 1 – point d (d) the categories of recipients to whom the personal data have been or will be disclosed including recipients in
Amendment 155 #
Proposal for a regulation Article 31 – paragraph 5 Amendment 156 #
Proposal for a regulation Article 31 – paragraph 5 5. Union institutions and bodies
Amendment 157 #
Proposal for a regulation Article 33 a (new) Amendment 158 #
Proposal for a regulation Article 34 – title Confidentiality of electronic communications data
Amendment 159 #
Proposal for a regulation Article 34 – paragraph 1 Union institutions and bodies shall ensure the confidentiality of electronic communications,
Amendment 160 #
Proposal for a regulation Article 34 – paragraph 1 Union institutions and bodies shall ensure the confidentiality of electronic communications data, in particular by securing their electronic communication networks.
Amendment 161 #
Proposal for a regulation Article 35 – paragraph 1 Union institutions and bodies shall protect the information related to
Amendment 162 #
Proposal for a regulation Article 36 – paragraph 2 Amendment 164 #
Proposal for a regulation Article 40 – paragraph 1 1. The controller shall consult the European Data Protection Supervisor prior to processing where a data protection impact assessment under Article 39 indicates that the processing would
Amendment 165 #
4. The Commission may, by means of implementing act, determine a list of cases in which the controllers shall consult with, and obtain prior authorisation from, the European Data Protection Supervisor in relation to processing for the performance of a task carried out by the controller in the public interest
Amendment 166 #
Proposal for a regulation Article 41 – paragraph 1 The Union institutions and bodies shall inform the European Data Protection Supervisor when drawing up administrative measures
Amendment 167 #
Proposal for a regulation Article 41 – paragraph 1 The Union institutions and bodies shall inform the European Data Protection Supervisor when drawing up
Amendment 168 #
Proposal for a regulation Article 41 – paragraph 1 a (new) The Union institutions and bodies shall consult the European Data Protection Supervisor when drawing up the internal rules referred to in Article 25(5).
Amendment 169 #
Proposal for a regulation Article 42 Amendment 170 #
Proposal for a regulation Article 42 – paragraph 1 1.
Amendment 171 #
Proposal for a regulation Article 42 – paragraph 2 2. Where an act referred to in paragraph 1 is of particular importance for the protection of individuals’ rights and freedoms with regard to the processing of personal data, the Commission
Amendment 172 #
Proposal for a regulation Article 43 – paragraph 1 Where the European Data Protection Supervisor exercises the powers provided for in points (a), (b) and (c) of Article 59(2), the controller or processor concerned shall inform the European Data Protection Supervisor of its views
Amendment 173 #
Proposal for a regulation Article 44 – paragraph 2 2. Union institutions and bodies may designate a single data protection officer for several of them, taking into account their organisational structure and size of the Union institutions and bodies.
Amendment 174 #
Proposal for a regulation Article 44 – paragraph 4 4. The data protection officer may be a staff member of the Union institution or body, or, taking into account the organisational structure and size of the Union institution or body, fulfil the tasks on the basis of a service contract.
Amendment 175 #
Proposal for a regulation Article 44 – paragraph 4 4. The data protection officer may be a staff member of the Union institution or body
Amendment 176 #
Proposal for a regulation Article 45 – paragraph 5 5. The data protection officer
Amendment 177 #
Proposal for a regulation Article 45 – paragraph 8 8. The data protection officer shall be designated for a term of
Amendment 178 #
(b)
Amendment 179 #
Proposal for a regulation Article 46 – paragraph 1 – point f Amendment 180 #
Proposal for a regulation Article 46 – paragraph 1 – point g (g) respond to requests from the European Data Protection Supervisor and,
Amendment 181 #
Proposal for a regulation Article 46 – paragraph 1 – point g a (new) (ga) Ensure that the rights and freedoms of the data subjects are unlikely to be adversely affected by the processing operations.
Amendment 182 #
Proposal for a regulation Article 46 – paragraph 2 2. The data protection officer may make recommendations for the practical improvement of data protection to the controller and the processor and advise them on matters concerning the application of data protection provisions.
Amendment 183 #
Proposal for a regulation Article 48 – paragraph 1 1. A transfer of personal data to a third country or international organisation may take place where the Commission has decided pursuant to Article 45(3) of Regulation (EU) 2016/679 or to Article 36 of Directive (EU) 2016/680 that an adequate level of protection is ensured in the third country, a territory or one or more specified sectors within that third country, or within the international organisation and the personal data are transferred solely to allow tasks covered by the competence of the controller to be carried out.
Amendment 184 #
Proposal for a regulation Article 48 – paragraph 1 1. A transfer of personal data to a third country or international organisation may take place where the Commission has decided pursuant to Article 45(3) of Regulation (EU) 2016/679 that an adequate level of protection is ensured in the third country, a territory or one or more specified sectors within that third country, or within the international organisation
Amendment 185 #
Proposal for a regulation Article 48 – paragraph 2 2. The Union institutions and bodies shall inform the Commission
Amendment 186 #
Proposal for a regulation Article 49 – paragraph 5 5. Authorisations by the European Data Protection Supervisor on the basis of Article 9(7) of Regulation (EC) No 45/2001 shall remain valid until amended, replaced or repealed
Amendment 188 #
Proposal for a regulation Article 52 a (new) Article 52 a Scope By way of derogation from Articles 4, 6, 7, 8, 10, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 35, 41, 43, 49, 50 and 51, the provisions of this Chapter shall apply to processing of operational data by Union agencies established on the basis of Chapters 4 and 5 of Title V of Part Three of the TFEU and by missions referred to in Article 42(1), 43 and 44 of the TEU.
Amendment 189 #
Proposal for a regulation Article 52 b (new) Amendment 190 #
Proposal for a regulation Article 52 c (new) Article 52 c Lawfulness of processing 1. Processing shall be lawful only if and to the extent that processing is necessary for the performance of a task carried out by Union agencies and missions and that it is based on Union law. 2. Union law specifying and complementing this Regulation as regards the processing within the scope of this Chapter shall specify the objectives of processing, the personal data to be processed and the purposes of the processing.
Amendment 191 #
Proposal for a regulation Article 52 d (new) Amendment 192 #
Proposal for a regulation Article 52 e (new) Article 52 e Distinction between personal data and verification of quality of personal data 1. Union agencies and missions shall distinguish personal data based on facts from personal data based on personal assessments. 2. Union agencies and missions shall process personal data in such a way that it can be established which authority provided the data or where the data has been retrieved from. 3. Union agencies and missions shall ensure that personal data which are inaccurate, incomplete or no longer up to date are not transmitted or made available. To that end, Union agencies and missions shall verify the quality of personal data before they are transmitted or made available. As far as possible, in all transmissions of personal data, Union agencies and missions shall add necessary information enabling the recipient to assess the degree of accuracy, completeness and reliability of personal data, and the extent to which they are up to date shall be added. 4. If it emerges that incorrect personal data have been transmitted or personal data have been unlawfully transmitted, the recipient shall be notified without delay. In such a case, the personal data shall be rectified or erased or processing shall be restricted.
Amendment 193 #
Proposal for a regulation Article 52 f (new) Article 52 f Specific processing conditions 1. When Union agencies and missions provide for specific conditions for processing, they shall inform the recipient of such personal data of those conditions and the requirement to comply with them. 2. Union agencies and missions shall comply with specific processing conditions for processing provided by a national authority in accordance with Article 9 (3) and (4) of Directive (EU) 2016/680.
Amendment 194 #
Proposal for a regulation Article 52 g (new) Amendment 195 #
Proposal for a regulation Article 52 h (new) Article 52 h Processing of special categories of personal data 1. Processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade-union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, personal data concerning health or personal data concerning a natural person's sex life or sexual orientation shall be allowed only where strictly necessary for the performance of tasks of Union agencies and missions, subject to appropriate safeguards for the rights and freedoms of the data subject and only if they supplement other operational personal data already processed by Union agencies and missions. 2. The data protection officer shall be informed immediately of recourse to this Article.
Amendment 196 #
Proposal for a regulation Article 52 i (new) Article 52 i Automated individual decision-making, including profiling The data subject shall have the right not to be subject to a decision of Union agencies and missions based solely on automated processing, including profiling, which produces legal effects concerning him/her or similarly significantly affects him/her.
Amendment 197 #
Proposal for a regulation Article 52 j (new) Amendment 198 #
Proposal for a regulation Article 52 k (new) Article 52 k Right of access by the data subject The data subject shall have the right to obtain from Union agencies and missions confirmation as to whether or not personal data concerning that subject are being processed, and, where that is the case, access to the personal data and the following information: (a) the purposes of and legal basis for the processing; (b) the categories of personal data concerned; (c) the recipients or categories of recipients to whom the personal data have been disclosed, in particular recipients in third countries or international organisations; (d) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period; (e) the existence of the right to request from Union agencies and missions rectification or erasure of personal data or restriction of processing of personal data concerning the data subject; (f) the right to lodge a complaint with the European Data Protection Supervisor and his or her contact details; (g) communication of the personal data undergoing processing and of any available information as to their origin.
Amendment 199 #
Proposal for a regulation Article 52 l (new) Article 52 l Limitations to the right of access 1. Union agencies and missions may restrict, wholly or partly, the data subject's right of access to the extent that, and for as long as, such a partial or complete restriction is provided for by a legal act adopted on the basis of the Treaties and constitutes a necessary and proportionate measure in a democratic society with due regard for the fundamental rights and legitimate interests of the natural person concerned, in order to: (a) avoid obstructing official or legal inquiries, investigations or procedures; (b) avoid prejudicing the prevention, detection, investigation or prosecution of criminal offences or the execution of criminal penalties; (c) protect public security of the Member States; (d) protect national security of the Member States; (e) protect the rights and freedoms of others. 2. In the cases referred to in paragraph 1, Union agencies and missions shall inform the data subject, without undue delay, in writing of any refusal or restriction of access and of the reasons for the refusal or the restriction. Such information may be omitted where the provision thereof would undermine a purpose under paragraph 1. Union agencies and missions shall inform the data subject of the possibility of lodging a complaint with the European Data Protection Supervisor or seeking a judicial remedy in the Court of Justice of the European Union. 3. Union agencies and missions shall document the factual or legal reasons on which the decision is based. That information shall be made available to the European Data Protection Supervisor on request.
Amendment 200 #
Proposal for a regulation Article 52 m (new) Amendment 201 #
Proposal for a regulation Article 52 n (new) Amendment 202 #
Proposal for a regulation Article 52 o (new) Article 52 o Logging 1. Union agencies and missions shall keep logs for any of the following processing operations in automated processing systems: collection, alteration, consultation, disclosure including transfers, combination and erasure. The logs of consultation and disclosure shall make it possible to establish the justification for, and the date and time of, such operations, the identification of the person who consulted or disclosed personal data, and, as far as possible, the identity of the recipients of such personal data. 2. The logs shall be used solely for verification of the lawfulness of processing, self-monitoring, ensuring the integrity and security of the personal data, and for criminal proceedings. Such logs shall be deleted after three years, unless they are required for on-going control. 3. Union agencies or missions shall make the logs available to their data protection officer and to the European Data Protection Supervisor on request.
Amendment 203 #
Proposal for a regulation Article 52 p (new) Amendment 204 #
Proposal for a regulation Article 52 q (new) Article 52 q Derogations for specific situations 1. In the absence of an adequacy decision pursuant to Article 45 of Regulation (EU) 2016/679 or Article 36 of Directive (EU) 2016/680, or of appropriate safeguards pursuant to Article 52p, Union agencies and missions may, on a case-by-case basis, transfer personal data to a third country or an international organisation only on the condition that the transfer is proportionate and necessary: (a) in order to protect the vital interests of the data subject or another person; (b) to safeguard legitimate interests of the data subject; (c) for the prevention of an immediate and serious threat to public security of a Member State or a third country; or (d) in individual cases for the performance of the tasks of Union agencies and missions, unless they determine that fundamental rights and freedoms of the data subject concerned override the public interest in the transfer. 2. Union agencies shall seek authorisation from the European Data Protection Supervisor when transferring personal data under point (b) of paragraph 1. 3. Where a transfer is based on paragraph 1, such a transfer shall be documented and the documentation shall be made available to the European Data Protection Supervisor on request, including the date and time of the transfer, and information about the receiving competent authority, about the justification for the transfer and about the personal data transferred.
Amendment 205 #
Proposal for a regulation Chapter 5 a (new) Amendment 206 #
Proposal for a regulation Article 53 – paragraph 3 3. The European Data Protection Supervisor shall be responsible for monitoring and ensuring the application of the provisions of this Regulation and any other Union act relating to the protection of the fundamental rights and freedoms of natural persons with regard to the processing of personal data by a Union institution or body, and for
Amendment 207 #
Proposal for a regulation Article 54 – paragraph 2 2. The list drawn up by the Commission from which the European Data Protection Supervisor shall be chosen shall be made up of persons whose independence is beyond doubt and who are acknowledged as having the experience and skills required to perform the duties of European Data Protection Supervisor
Amendment 208 #
Proposal for a regulation Article 58 – paragraph 1 – point a (a) monitor and en
Amendment 209 #
Proposal for a regulation Article 58 – paragraph 1 – point b (b) promote public awareness and understanding of the risks, rules, safeguards and rights in relation to processing
Amendment 210 #
Proposal for a regulation Article 58 – paragraph 1 – point e (e) handle complaints lodged by a data subject, or by a body, organisation or association in accordance with Article 67
Amendment 211 #
Proposal for a regulation Article 58 – paragraph 1 – point g (g) advise all Union institutions and bodies, on
Amendment 212 #
Proposal for a regulation Article 58 – paragraph 1 – point h (h) monitor relevant developments, insofar as they have an impact on the protection of personal data
Amendment 213 #
Proposal for a regulation Article 58 – paragraph 1 – point p Amendment 214 #
Proposal for a regulation Article 59 – paragraph 1 – point a (a) to
Amendment 215 #
Proposal for a regulation Article 59 – paragraph 1 – point d (d) to obtain, from the controller and the processor, access to all personal administrative data and
Amendment 216 #
Proposal for a regulation Article 59 – paragraph 1 – point e (e) to obtain access to any premises of the controller and the processor, including to any data processing equipment and means, in accordance with Union
Amendment 217 #
Proposal for a regulation Article 59 – paragraph 2 – point h Amendment 218 #
Proposal for a regulation Article 59 – paragraph 2 – point i Amendment 219 #
Proposal for a regulation Article 59 – paragraph 2 – point j Amendment 220 #
Proposal for a regulation Article 59 – paragraph 3 – point b a (new) (ba) to authorise or not the processing operations as referred to in Article 40(4);
Amendment 221 #
Proposal for a regulation Article 59 – paragraph 3 – point c (c) to issue, on its own initiative or on request, opinions to the Union institutions and bodies
Amendment 222 #
Proposal for a regulation Article 61 – title Cooperation
Amendment 223 #
Proposal for a regulation Article 61 – paragraph 1 The European Data Protection Supervisor shall cooperate with supervisory authorities established under Article 41 of Regulation (EU) 2016/679 and Article 51 of Directive (EU) 2016/680 (hereinafter
Amendment 224 #
Proposal for a regulation Article 61 – paragraph 1 The European Data Protection Supervisor shall cooperate with supervisory authorities established under Article 41 of Regulation (EU) 2016/679 and Article 51 of Directive (EU) 2016/680 (hereinafter “national supervisory authorities”)
Amendment 225 #
Proposal for a regulation Article 61 – paragraph 1 The European Data Protection Supervisor shall cooperate with supervisory authorities established under Article
Amendment 226 #
Proposal for a regulation Article 61 – paragraph 1 a (new) The European Data Protection Supervisor and the European Data Protection Board may use the Internal Market Information System established by Regulation (EU) No 1024/2012 of the European Parliament and of the Council of 25 October 2012 on administrative cooperation through the Internal Market Information System and repealing Commission Decision 2008/49/EC ('the IMI Regulation') for the purposes of administrative cooperation and information exchange pursuant to Articles 60-62, 64, 65 and 70 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
Amendment 227 #
Proposal for a regulation Article 62 – paragraph 1 1. Where a Union act
Amendment 228 #
Proposal for a regulation Article 62 – paragraph 1 1. Where a Union act
Amendment 229 #
Proposal for a regulation Article 62 – paragraph 1 1. Where a Union act refers to this Article, the European Data Protection Supervisor shall cooperate
Amendment 230 #
Proposal for a regulation Article 62 – paragraph 2 2. The
Amendment 231 #
Proposal for a regulation Article 62 – paragraph 2 Amendment 232 #
Proposal for a regulation Article 62 – paragraph 3 3. For the purposes laid down in paragraph 2, the European Data Protection Supervisor
Amendment 233 #
Proposal for a regulation Article 62 – paragraph 3 3. For the purposes laid down in paragraph 2, the European Data Protection Supervisor
Amendment 234 #
Proposal for a regulation Article 63 – paragraph 1 1. Without prejudice to any
Amendment 235 #
Proposal for a regulation Article 64 – paragraph 1 Amendment 236 #
Proposal for a regulation Article 64 – paragraph 1 a (new) Actions against decisions of the European Data Protection Supervisor, including decisions referred to in Article 63(3), shall be brought before the Court of Justice of the European Union.
Amendment 237 #
Proposal for a regulation Article 64 – paragraph 1 b (new) The Court of Justice of the European Union shall have jurisdiction to hear all disputes relative to the provisions of this Regulation, including claims for damages.
Amendment 240 #
Proposal for a regulation Article 66 – paragraph 2 2. Infringements of the obligations of the Union institution or body pursuant to Articles 8, 12 27, 28, 29, 30, 31, 32, 33, 37, 38, 39, 40, 44, 45 and 46 shall, in accordance with paragraph 1, be subject to administrative fines up to 25 000 EUR per infringement and up to a total of 2
Amendment 241 #
3. Infringements of the following provisions by the Union institution or body shall, in accordance with paragraph 1, be subject to administrative fines up to 50 000 EUR per infringement and up to a total of
Amendment 242 #
Proposal for a regulation Article 67 Amendment 243 #
Proposal for a regulation Article 68 Amendment 244 #
Proposal for a regulation Article 71 a (new) Article 71 a Amendments to SIS II Regulation (EC) No 1987/2006 and SIS II Council Decision 2007/533/JHA Article 46 of Regulation (EC) No 1987/2006 of the European Parliament and of the Council of 20 December 2006 on the establishment, operation and use of the second generation Schengen Information System (SIS II) and Article 62 of Council Decision 2007/533/JHA of 12 June 2007 on the establishment, operation and use of the second generation Schengen Information System (SIS II) are replaced with the following: "national supervisory authorities and the EDPS shall, each acting within their respective competences, cooperate with each other in accordance with Article 62 of [New Regulation 45/2001]".
Amendment 245 #
Proposal for a regulation Article 71 a (new) Article 71 a Amendments to SIS II Regulation (EC) No 1987/2006 and SIS II Council Decision 2007/533/JHA Article 46 of Regulation (EC) No 1987/2006 of the European Parliament and of the Council of 20 December 2006 on the establishment, operation and use of the second generation Schengen Information System (SIS II) and Article 62 of Council Decision 2007/533/JHA of 12 June 2007 on the establishment, operation and use of the second generation Schengen Information System (SIS II) are hereby deleted.
Amendment 246 #
Proposal for a regulation Article 71 b (new) Article 71 b Amendments to VIS Regulation (EC) No 767/2008 Article 43 of Regulation (C) No 767/2008 of the European Parliament and the Council of 9 July 2008 concerning the Visa Information System (VIS) and the exchange of data between Member States on short-stay visas (VIS Regulation) is replaced with the following: "national supervisory authorities and the EDPS shall, each acting within their respective competences, cooperate with each other in accordance with Article 62 of [New Regulation 45/2001]".
Amendment 247 #
Proposal for a regulation Article 71 b (new) Article 71 b Amendments to VIS Regulation (EC) No 767/2008 Article 43 of Regulation (C) No 767/2008 of the European Parliament and the Council of 9 July 2008 concerning the Visa Information System (VIS) and the exchange of data between Member States on short-stay visas (VIS Regulation) is hereby deleted.
Amendment 248 #
Proposal for a regulation Article 71 c (new) Article 71 c Amendments to Customs Information System Council Regulation (EC) No 515/97 and Council decision 2009/917/JHA 1. Paragraph (4) of Article 37 of Council Regulation (EC) No 515/97 of 13 March 1997 on mutual assistance between the administrative authorities of the Member States and cooperation between the latter and the Commission to ensure the correct application of the law on customs and agricultural matters is replaced with the following: "national supervisory authorities and the EDPS shall, each acting within their respective competences, cooperate with each other in accordance with Article 62 of [New Regulation 45/2001]". 2. Article 25 of Council Decision 2009/917/JHA of 30 November 2009 on the use of information technology for customs purposes is hereby deleted. Paragraphs (2) and (3) of Article 26 of that Council Decision are replaced with the following: "national supervisory authorities and the EDPS shall, each acting within their respective competences, cooperate with each other in accordance with Article 62 of [New Regulation 45/2001]".
Amendment 249 #
Proposal for a regulation Article 71 d (new) Amendment 250 #
Proposal for a regulation Article 71 c (new) Article 71 c Amendments to Internal Market Information System Regulation (EU) No 1024/2012 Paragraphs (3) and (4) of Article 21 of Regulation (EU) No 1024/2012 of the European Parliament and of the Council of 25 October 2012 on administrative cooperation through the Internal Market Information System and repealing Commission Decision 2008/49/EC (the IMI Regulation) are hereby deleted.
Amendment 251 #
Proposal for a regulation Article 71 d (new) Article 71 d Amendments to Europol Regulation (EU) 2016/794 Articles 28, 30, 33, 34, 35, 36, 37, 40, 41, 45, and 46 of Regulation (EU) 2016/794 of the European Parliament and of the Council of 11 May 2016 on the European Union Agency for Law Enforcement Cooperation (Europol) and replacing and repealing Council Decisions 2009/371/JHA, 2009/934/JHA, 2009/935/JHA, 2009/936/JHA and 2009/968/JHA are hereby deleted. Article 44 of that Regulation is replaced with the following: "national supervisory authorities and the EDPS shall, each acting within their respective competences, cooperate with each other in accordance with Article 62 of [New Regulation 45/2001]".
Amendment 252 #
Proposal for a regulation Article 71 f (new) Article 71 f Amendments to Europol Regulation (EU) 2016/794 Articles 28, 32, 33, 34, 35, 36, 37, 39, 40, 41, 44, 45, and 46 of Regulation (EU) 2016/794 of the European Parliament and of the Council of 11 May 2016 on the European Union Agency for Law Enforcement Cooperation (Europol) and replacing the repealing Council Decisions 2009/371/JHA, 2009/934/JHA, 2009/935/JHA, 2009/936/JHA and 2009/968/JHA are hereby deleted.
Amendment 253 #
Proposal for a regulation Article 71 e (new) Article 71 e Amendments to Council Regulation (EU) 2017/XX on EPPO Articles 36e, 36f, 37, 37b, 37c, 37cc, 37ccc, 37d, 37e, 37f, 37g, 37h, 37i, 37j, 37k, 37n, 37o, 41, 41a, 41b, 43a, 43b, 43c, 43d, 43e and 46 of Council Regulation (EU) 2017/... of implementing enhanced cooperation on the establishment of the European Public Prosecutor's Office ("the EPPO") are hereby deleted. Article 45 of that Regulation is replaced with the following: "national supervisory authorities and the EDPS shall, each acting within their respective competences, cooperate with each other in accordance with Article 62 of [New Regulation 45/2001]".
Amendment 254 #
Proposal for a regulation Article 71 g (new) Article 71 g Amendments to Council Regulation (EU) 2017/XX on EPPO Articles 47, 48(1) and 51 to 89 of Council Regulation (EU) 2017/... of implementing enhanced cooperation on the establishment of the European Public Prosecutor's Office ("the EPPO") are hereby deleted.
Amendment 255 #
Proposal for a regulation Article 71 e (new) Article 71 e Amendments to Commission Implementing Regulation (EU) 2015/428 Paragraph 8 of Article 69c of Commission Implementing Regulation (EU) 2015/428 of 10 March 2015 amending Regulation (EEC) No 2454/93 and Regulation (EU) No 1063/2010 a regards the rules of origin relating to the scheme of generalised tariff preferences and preferential tariff measures for certain countries or territories is hereby deleted.
Amendment 256 #
Proposal for a regulation Article 71 f (new) Article 71 f Amendments to Eurojust Regulation (EU) 2017/XX Articles 27, 29, 30, 31, 33, 36 and 37 of Regulation (EU) 2017/... of the European Parliament and of the Council on the European Union Agency for Criminal Justice Cooperation (Eurojust) are hereby deleted. Article 35 of that Regulation is replaced with the following: "national supervisory authorities and the EDPS shall, each acting within their respective competences, cooperate with each other in accordance with Article 62 of [New Regulation 45/2001]".
Amendment 257 #
Proposal for a regulation Article 71 g (new) Amendment 59 #
Proposal for a regulation Recital 7 a (new) (7a) The data protection legal framework for processing in the course of activities of Union institutions and bodies in the areas of freedom, security and justice and of the common foreign and security policy remains fragmented and creates legal uncertainty. This Regulation should therefore provide for harmonised rules for the protection and the free movement of personal data processed by the Union institutions and bodies carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of Part Three of the TFEU and Chapter 2 of Title V of the TEU.
Amendment 60 #
Proposal for a regulation Recital 7 a (new) (7a) The data protection legal framework for processing in the course of activities of Union institutions and bodies which fall outside the scope of Community law remains fragmented and creates legal uncertainty. This Regulation should therefore provide for harmonised rules for the protection and the free movement of personal data processed by the Union institutions and bodies carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of Part Three of the TFEU and Chapter 2 of Title V of the TEU.
Amendment 61 #
Proposal for a regulation Recital 8 (8) In Declaration No 21 on the protection of personal data in the fields of judicial cooperation in criminal matters and police cooperation, annexed to the final act of the intergovernmental conference which adopted the Treaty of Lisbon, the conference acknowledged that specific rules on the protection of personal data and the free movement of personal data in the fields of judicial cooperation in criminal matters and police cooperation based on Article 16 TFEU could prove necessary because of the specific nature of those fields.
Amendment 62 #
Proposal for a regulation Recital 8 (8) In Declaration No 21 on the protection of personal data in the fields of judicial cooperation in criminal matters and police cooperation, annexed to the final act of the intergovernmental conference which adopted the Treaty of Lisbon, the conference acknowledged that specific rules on the protection of personal data and the free movement of personal data in the fields of judicial cooperation in criminal matters and police cooperation based on Article 16 TFEU could prove necessary because of the specific nature of those fields.
Amendment 63 #
Proposal for a regulation Recital 8 (8) In Declaration No 21 on the protection of personal data in the fields of judicial cooperation in criminal matters and police cooperation, annexed to the final act of the intergovernmental conference which adopted the Treaty of Lisbon, the conference acknowledged that specific rules on the protection of personal data and the free movement of personal data in the fields of judicial cooperation in criminal matters and police cooperation based on Article 16 TFEU could prove necessary because of the specific nature of those fields. This Regulation should not therefore apply to
Amendment 64 #
Proposal for a regulation Recital 8 (8) In Declaration No 21 on the protection of personal data in the fields of judicial cooperation in criminal matters and police cooperation, annexed to the final act of the intergovernmental conference which adopted the Treaty of Lisbon, the conference acknowledged that specific rules on the protection of personal data and the free movement of personal data in the fields of judicial cooperation in criminal matters and police cooperation based on Article 16 TFEU could prove necessary because of the specific nature of those fields. This Regulation should therefore not apply to
Amendment 65 #
Proposal for a regulation Recital 9 (9) Directive (EU) 2016/680 provides harmonised rules for the protection and the free movement of personal data processed for the purposes of the prevention, investigation, detection or prosecution of criminal offences or execution of criminal penalties, including the safeguarding against and the prevention of threats to public security. In order to foster the same level of protection for natural persons through legally enforceable rights throughout the Union and to prevent divergences hampering the exchange of personal data between Union bodies, offices and agencies carrying out activities
Amendment 66 #
Proposal for a regulation Recital 9 (9) Directive (EU) 2016/680 provides harmonised rules for the protection and the free movement of personal data processed for the purposes of the prevention, investigation, detection or prosecution of criminal offences or execution of criminal penalties, including the safeguarding against and the prevention of threats to public security. In order to foster the same level of protection for natural persons
Amendment 67 #
Proposal for a regulation Recital 10 Amendment 68 #
Proposal for a regulation Recital 10 Amendment 69 #
Proposal for a regulation Recital 10 (10) Where the founding act of a Union agency carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of the Treaty lays down a standalone data protection regime for the processing of operational personal data, such regimes should be
Amendment 70 #
Proposal for a regulation Recital 10 a (new) (10a) This Regulation should apply to the processing of personal data by Union institutions, bodies, offices and agencies carrying out activities falling within the scope of Chapter 2 of Title V of the TEU. This Regulation does not apply to the processing of personal data in the context of the missions referred to in Articles 42(1), 43 and 44 of the TEU, which implement the common security and defence policy. Where appropriate, relevant proposals could be submitted to further regulate the processing of personal data in the area of the common security and defence policy.
Amendment 71 #
Proposal for a regulation Recital 10 a (new) (10a) This Regulation should apply to the processing of personal data by Union institutions, bodies, offices or agencies carrying out activities which fall within the scope of Chapter 2 of Title V of the TEU. This Regulation does not apply to the processing of personal data by missions referred to in Articles 42(1), and 43 and 44 of the TEU, which implement the common security and defence policy. Where appropriate, relevant proposals could be put forward to further regulate the processing of personal data in the field of the common security and defence policy.
Amendment 72 #
Proposal for a regulation Recital 14 (14) Consent should be given by a clear affirmative act establishing a freely given, specific, informed and unambiguous indication of the data subject's agreement to the processing of personal data relating to him or her, such as by a written statement, including by electronic means, or an oral statement. This could include ticking a box when visiting an internet website, choosing technical settings for information society services or another statement or conduct which clearly indicates in this context the data subject's acceptance of the proposed processing of his or her personal data. Silence, pre-ticked boxes or inactivity should not therefore constitute consent. Consent should cover all processing activities carried out for the same purpose or purposes. When the processing has multiple purposes, consent should be given for all of them. If the data subject's consent is to be given following a request by electronic means, the request must be clear, concise and not unnecessarily disruptive to the use of the service for which it is provided. At the same time, it should only be possible for the electronic request to be completed and processed after the person concerned has been informed clearly and precisely of the purpose for its being processed.
Amendment 73 #
Proposal for a regulation Recital 15 (15) Any processing of personal data should be lawful and fair and done for clear and well-defined purposes. . It should be transparent to natural persons that personal data concerning them are collected, used, consulted or otherwise processed and to
Amendment 74 #
Proposal for a regulation Recital 16 (16) In accordance with the principle of accountability, where Union institutions and bodies transmit personal data within or to other Union institutions or bodies, they should verify whether such personal data is required for the legitimate performance of tasks covered by the competence of the recipient where the recipient is not part of the controller. In particular, following a recipient’s request for transmission of personal data, the controller should verify the existence of a relevant EU legal ground
Amendment 75 #
Proposal for a regulation Recital 17 (17) In order for processing to be lawful, personal data should be processed on the basis of the necessity of performance of a
Amendment 76 #
Proposal for a regulation Recital 18 (18) The Union law
Amendment 77 #
Proposal for a regulation Recital 18 (18) The Union law
Amendment 78 #
Proposal for a regulation Recital 18 (18) The Union law
Amendment 79 #
Proposal for a regulation Recital 18 a (new) (18a) The internal rules referred to in this Regulation should be clear and precise acts of general application intended to produce legal effects vis-à-vis data subjects, adopted at the highest level of management of the Union institutions and bodies within their competencies and in matters relating to their operation and should be published in the Official Journal of the European Union. The application of these rules should be foreseeable to persons subject to them in accordance with the requirements set out in the Charter and the European Convention for the Protection of Human Rights and Freedoms. Internal rules may take the form of decisions, in particular when adopted by Union institutions.
Amendment 80 #
Proposal for a regulation Recital 20 (20) Where processing is based on the data subject's consent, the controller should be able to demonstrate that the data subject has given consent to the processing operation. In particular in the context of a written declaration on another matter, safeguards should ensure that the data subject is aware of the fact that and the extent to which consent is given. In accordance with Council Directive 93/13/EEC14 a declaration of consent pre- formulated by the controller should be provided in an intelligible and easily accessible form, using clear and plain language and it should not contain unfair terms. For consent to be informed, the data subject should be aware at least of the identity of the controller
Amendment 81 #
Proposal for a regulation Recital 21 Amendment 82 #
Proposal for a regulation Recital 21 (21) Children merit specific protection with regard to their personal data, as they may be less aware of the risks, consequences and safeguards concerned and their rights in relation to the processing of personal data. Data concerning children should be handled with particular care, as the risks relating to it are less well less known to children than to adults. Such specific protection should, in particular, apply to creating personality profiles and the collection of personal data with regard to children when using services offered directly to a child on websites of Union institutions and bodies, such as interpersonal communication services or online selling of tickets and when the processing of personal data is based on consent.
Amendment 83 #
Proposal for a regulation Recital 24 (24) The processing of special categories of personal data may be necessary for reasons of public interest in the areas of public health without consent of the data subject. Such processing should be subject to suitable and specific measures so as to protect the rights and freedoms of natural persons. In that context, ‘public health’ should be interpreted as defined in Regulation (EC) No 1338/2008 of the European Parliament and of the Council15 , namely all elements related to health, namely health status, including morbidity and disability, the determinants having an effect on that health status, health care needs, resources allocated to health care, the provision of, and universal access to, health care as well as health care expenditure and financing, and the causes of mortality. Such processing of data concerning health for reasons of public interest should not result in personal data being processed for other purposes by third parties such as employers or insurances and banking companies. _________________ 15 Regulation (EC) No 1338/2008 of the European Parliament and of the Council of 16 December 2008 on Community statistics on public health and health and safety at work (OJ L 354, 31.12.2008, p. 70).
Amendment 84 #
Proposal for a regulation Recital 26 (26) The processing of personal data for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes should be subject to appropriate safeguards for the rights and freedoms of the data subject pursuant to this Regulation. Those safeguards should ensure that technical and organisational measures are in place in order to ensure, in particular, the principle of data minimisation. The further processing of personal data for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes is to be carried out when the controller has assessed the feasibility to fulfil those purposes by processing data which do not permit or no longer permit the identification of data subjects, provided that appropriate safeguards exist (such as, for instance, pseudonymisation of the data). Union institutions and bodies should provide for appropriate safeguards for the processing of personal data for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in Union law
Amendment 85 #
Proposal for a regulation Recital 26 (26) The processing of personal data for
Amendment 86 #
Proposal for a regulation Recital 27 (27) Modalities should be provided for facilitating the exercise of the data subject's rights under this Regulation, including mechanisms to request and, if applicable, obtain, free of charge, in particular, access to and rectification or erasure of personal data, without its being adversely affected, and the exercise of the right to object.
Amendment 87 #
Proposal for a regulation Recital 37 – paragraph 1 Legal acts adopted on the basis of the Treaties
Amendment 88 #
Proposal for a regulation Recital 37 – paragraph 1 Legal acts adopted on the basis of the Treaties
Amendment 89 #
Proposal for a regulation Recital 37 – paragraph 1 Legal acts adopted on the basis of the Treaties or internal rules
Amendment 90 #
Proposal for a regulation Recital 37 – paragraph 2 Amendment 91 #
Proposal for a regulation Recital 44 (44) Union institutions and bodies should ensure the confidentiality of electronic communications as provided for by Article 7 of the Charter. In particular, Union institutions and bodies should ensure the security of their electronic communication networks, protect the
Amendment 92 #
Proposal for a regulation Recital 49 (49) The European Data Protection Supervisor should be informed about administrative measures
Amendment 93 #
Proposal for a regulation Recital 49 (49) The European Data Protection
Amendment 94 #
Proposal for a regulation Recital 64 a (new) Amendment 95 #
Proposal for a regulation Recital 65 (65) In certain instances, Union law provides for a model of coordinated supervision, shared between the European Data Protection Supervisor and the national supervisory authorities. Moreover, the European Data Protection Supervisor is the supervisory authority of Europol and a specific model of cooperation with the national supervisory authorities is established through a cooperation board with an advisory function. In order to improve the effective supervision and enforcement of substantive data protection rules,
Amendment 96 #
Proposal for a regulation Recital 65 (65) In certain instances, Union law provides for a model of coordinated supervision, shared between the European Data Protection Supervisor and the national supervisory authorities. Moreover, the European Data Protection Supervisor is the supervisory authority of Europol and a specific model of cooperation with the national supervisory authorities is established through a cooperation board with an advisory function. In order to improve the effective supervision and enforcement of substantive data protection rules,
Amendment 97 #
Proposal for a regulation Recital 68 Amendment 98 #
Proposal for a regulation Article 1 – paragraph 1 1. This Regulation lays down rules relating to the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and rules relating to the free movement of personal data between themselves or to recipients established in the Union
Amendment 99 #
Proposal for a regulation Article 2 – paragraph 1 1. This Regulation applies to the processing of personal data by all Union institutions, agencies and bodies
source: 608.066
2017/07/18
JURI
103 amendments...
Amendment 10 #
Proposal for a regulation Recital 10 Amendment 100 #
Proposal for a regulation Article 54 – paragraph 2 2. The list drawn up
Amendment 101 #
Proposal for a regulation Article 59 – paragraph 1 – point d (d) to obtain, from the controller and the processor, access to all personal administrative data and
Amendment 102 #
Proposal for a regulation Article 63 – paragraph 1 a (new) 1a. In cases where the data subject is a child, Member States shall provide for specific safeguards, in particular with regard to legal aid.
Amendment 103 #
Proposal for a regulation Chapter IX a (new) Chapter IXa Article 70a Review Clause 1. No later than 1 June 2021, and every five years thereafter, the Commission shall present to the European Parliament a report on the application of this Regulation, accompanied, if necessary, by appropriate legislative proposals. 2. The ex-post evaluation outlined in paragraph 1 shall pay particular attention to the appropriateness of the scope of this Regulation, the consistency with other legislative acts in the field of data protection and assess, in particular, the implementation of Chapter V of this Regulation. 3. No later than 1 June 2021, and every five years thereafter, the Commission shall report to the European Parliament on the application of Chapter VIII of this Regulation and the penalties and sanctions applied.
Amendment 104 #
Proposal for a regulation Article 72 a (new) Article 72a Review of Union legal acts By 25 May 2021, the Commission shall review other legal acts adopted on the basis of the Treaties which regulate processing of personal data, in particular by agencies established under Chapters 4 and 5 of Title V of Part Three TFEU, in order to assess the need to align them with this Regulation and to make, where appropriate, the necessary proposals to amend those acts in order to ensure a consistent approach to the protection of personal data within the scope of this Regulation.
Amendment 11 #
Proposal for a regulation Recital 10 (10) Where the founding act of a Union agency carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of the Treaty lays down a standalone data protection regime for the processing of operational personal data such regimes should be unaffected by this Regulation.
Amendment 12 #
Proposal for a regulation Recital 10 (10) Where the founding act of a Union agency carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of the Treaty lays down a standalone data protection regime for the processing of operational personal data such regimes should be unaffected by this Regulation, as long as they are consistent with the provisions of Regulation (EU) 2016/679. However, the Commission should, in accordance with Article 62 of Directive (EU) 2016/680, by 6 May 2019 review Union acts which regulate processing by the competent authorities for
Amendment 13 #
Proposal for a regulation Recital 10 (10) Where the founding act of a Union agency carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of the Treaty lays down a standalone data protection regime for the processing of operational personal data such regimes should be unaffected by this Regulation. However, the Commission should, in accordance with Article 62 of Directive (EU) 2016/680, by 6 May 2019 review Union acts which regulate processing by the competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, including the safeguarding against and the prevention of
Amendment 14 #
Proposal for a regulation Recital 10 a (new) (10a) This Regulation should apply to the processing of personal data by Union institutions, bodies, offices or agencies carrying out activities which fall within the scope of Chapter 2 of Title V TEU. However, this Regulation should not apply to the processing of personal data in the context of the tasks referred to in Articles 42(1), 43 and 44 TEU, which implement the common security and defence policy. Where appropriate, relevant proposals could be put forward to further regulate the processing of personal data in the field of the common security and defence policy.
Amendment 15 #
Proposal for a regulation Recital 14 (14) Consent should be given by a clear affirmative act establishing a freely given, specific, informed and unambiguous indication of the data subject's agreement to the processing of personal data relating to him or her, such as by a written statement, including by electronic means, or an oral statement. This could include ticking a box when visiting an internet website, choosing technical settings for information society services or another statement or conduct which clearly indicates in this context the data subject's acceptance of the proposed processing of his or her personal data. Silence, pre-ticked boxes or inactivity should not therefore constitute consent. Consent should cover all processing activities carried out for the same purpose or purposes. When the processing has multiple purposes, consent should be given for all of them. If the data subject's consent is to be given following a request by electronic means, the request must be clear, concise and not unnecessarily disruptive to the use of the service for which it is provided. At the same time, the data subject may withdraw consent at any time without affecting the legality of using data based on consent prior to withdrawal thereof.
Amendment 16 #
Proposal for a regulation Recital 18 (18) The Union law
Amendment 17 #
Proposal for a regulation Recital 18 (18) The Union law
Amendment 18 #
Proposal for a regulation Recital 18 (18) The Union law
Amendment 19 #
Proposal for a regulation Recital 21 Amendment 2 #
Proposal for a regulation Recital 1 (1) The protection of natural persons in relation to the processing of personal data is a fundamental right. Article 8(1) of the Charter of Fundamental Rights of the European Union (the ‘Charter’) and Article 16(1) of the Treaty on the Functioning of the European Union (TFEU) provide that everyone has the right to the protection of personal data concerning them. This right is also guaranteed under Article 8 of the European Convention on Human Rights.
Amendment 20 #
Proposal for a regulation Recital 22 (22) When recipients established in the Union and subject to Regulation (EU) 2016/679 or Directive (EU) 2016/680, would like to have personal data
Amendment 21 #
Proposal for a regulation Recital 23 (23) Personal data which are, by their nature, particularly sensitive in relation to fundamental rights and freedoms merit specific protection as the context of their processing could create significant risks to the fundamental rights and freedoms. Such personal data should not be processed unless processing is allowed in specific cases as laid down in this Regulation. Those personal data should include personal data revealing racial or ethnic origin, whereby the use of the term ‘racial origin’ in this Regulation does not imply an acceptance by the Union of theories which attempt to determine the existence of separate human races. The processing of photographs should not systematically be considered to be processing of special categories of personal data as they are covered by the definition of biometric data only when processed through a specific technical means allowing the unique identification or authentication of a natural person. In addition to the specific requirements for processing of sensitive
Amendment 22 #
Proposal for a regulation Recital 23 (23) Personal data which are, by their nature, particularly sensitive in relation to fundamental rights and freedoms merit specific protection as the context of their processing could create significant risks to the fundamental rights and freedoms. Such personal data should not be processed unless processing is allowed in specific cases as set out in this Regulation. Those personal data should include personal data revealing racial or ethnic origin, whereby the use of the term ‘racial origin’ in this Regulation does not imply an acceptance by the Union of theories which attempt to determine the existence of separate human races. The processing of
Amendment 23 #
Proposal for a regulation Recital 23 a (new) (23a) Special categories of personal data which merit higher protection should be processed for health-related purposes only where necessary to achieve those purposes for the benefit of natural persons and society as a whole, in particular in the context of the management of health or social care services and systems. Therefore, this Regulation should provide for harmonised conditions for the processing of special categories of personal data concerning health, in respect of specific needs, in particular where the processing of such data is carried out for certain health-related purposes by persons subject to a legal obligation of professional secrecy. Union law should provide for specific and suitable measures so as to protect the fundamental rights and the personal data of natural persons.
Amendment 24 #
Proposal for a regulation Recital 24 (24) The processing of special categories of personal data may be necessary for reasons of public interest in the areas of public health without consent of the data subject. Such processing should be subject to proportionate, suitable and specific measures so as to protect the rights and freedoms of natural persons. In that context, ‘public health’ should be interpreted as defined in Regulation (EC) No 1338/2008 of the European Parliament and of the Council15, namely all elements related to health, namely health status, including morbidity and disability, the determinants having an effect on that health status, health care needs, resources allocated to health care, the provision of, and universal access to, health care as well as health care expenditure and financing, and the causes of mortality. Such processing of data concerning health for reasons of public interest should not
Amendment 25 #
Proposal for a regulation Recital 24 (24) The processing of special categories of personal data may be necessary for reasons of public interest in the areas of public health without consent of the data subject. Such processing should be subject to suitable and specific measures so as to protect the rights and freedoms of natural persons. In that context, ‘public health’ should be interpreted as defined in Regulation (EC) No 1338/2008 of the European Parliament and of the Council15, namely all elements related to health, namely health status, including morbidity and disability, the determinants having an effect on that health status, health care needs, resources allocated to health care, the provision of, and universal access to, health care as well as health care expenditure and financing, and the causes
Amendment 26 #
Proposal for a regulation Recital 35 (35) Where personal data might lawfully be processed because processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, a data subject should, nevertheless, be entitled to object to the processing of any personal data relating to his or her particular situation. It should be for the controller to demonstrate that its compelling legitimate interest overrides the
Amendment 27 #
Legal acts adopted on the basis of the Treaties
Amendment 28 #
Proposal for a regulation Recital 37 – paragraph 1 Legal acts adopted on the basis of the Treaties
Amendment 29 #
Proposal for a regulation Recital 37 – paragraph 2 Amendment 3 #
Proposal for a regulation Recital 2 (2) Regulation (EC) No 45/2001 of the European Parliament and of the Council
Amendment 30 #
Proposal for a regulation Recital 37 – paragraph 2 Amendment 31 #
Proposal for a regulation Recital 42 (42) In order to demonstrate compliance with this Regulation, controllers should maintain records of processing activities under their responsibility and processors should maintain records of categories of processing activities under their responsibility. Union institutions and bodies should be obliged to cooperate with the European Data Protection Supervisor and make their records, on request, available to it, so that they might serve for monitoring those processing operations. Union institutions and bodies should be able to establish a central register of records of their processing activities. For reasons of transparency, they should
Amendment 32 #
Proposal for a regulation Recital 42 (42) In order to demonstrate compliance with this Regulation, controllers should maintain records of processing activities under their responsibility and processors should maintain records of categories of processing activities under their responsibility. Union institutions and bodies should be obliged to cooperate with the European Data Protection Supervisor and make their records, on request, available to it, so that they might serve for monitoring those processing operations. Union institutions and bodies should
Amendment 33 #
Proposal for a regulation Recital 42 (42) In order to demonstrate compliance with this Regulation, controllers should maintain records of processing activities under their responsibility and processors should maintain records of categories of processing activities under their responsibility. Union institutions and bodies should be obliged to cooperate with the European Data Protection Supervisor and make their records, on request, available to it, so that they might serve for monitoring those processing operations.
Amendment 34 #
Proposal for a regulation Recital 44 (44) Union institutions and bodies should ensure the confidentiality of electronic communications as provided for by Article 7 of the Charter. In particular, Union institutions and bodies should ensure the security of their electronic communication networks
Amendment 35 #
Proposal for a regulation Recital 46 (46) The controller should communicate to the data subject a personal data breach, without undue delay, where that personal data breach is likely to result in a high risk to the rights and freedoms of the natural person in order to allow him or her to take the necessary precautions. The communication is confidential and should describe the nature of the personal data breach as well as recommendations for the natural person concerned to mitigate potential adverse effects. Such communications to data subjects should be made as soon as reasonably feasible and in close cooperation with the European Data Protection Supervisor, respecting guidance provided by it or by other relevant authorities such as law-enforcement authorities.
Amendment 36 #
Proposal for a regulation Recital 50 (50) Regulation (EU) 2016/679 established the European Data Protection Board as an independent body of the Union with legal personality. The Board should contribute to the consistent application of Regulation (EU) 2016/679 and Directive 2016/680 throughout the Union, including by advising the Commission. At the same time, the European Data Protection Supervisor should continue to exercise its supervisory and advisory functions in respect of all Union institutions and bodies, including on its own initiative or upon
Amendment 37 #
Proposal for a regulation Recital 52 (52) When personal data are transferred from the Union institutions and bodies to controllers, processors or other recipients in third countries or to international organisations, the level of protection of natural persons ensured in the Union by this Regulation should
Amendment 38 #
Proposal for a regulation Recital 52 (52) When personal data are transferred from the Union institutions and bodies to controllers, processors or other recipients in third countries or to international
Amendment 39 #
Proposal for a regulation Recital 54 Amendment 4 #
Proposal for a regulation Recital 5 (5) It is in the interest of a coherent approach to personal data protection throughout the Union, and of the free movement of personal data within the Union, to align as far as possible the data protection rules for Union institutions
Amendment 40 #
Proposal for a regulation Article 1 – paragraph 1 1. This Regulation lays down rules relating to the protection of natural persons
Amendment 41 #
Proposal for a regulation Article 1 – paragraph 2 (2) This Regulation protects fundamental rights and freedoms of natural persons enshrined in the EU Charter of Fundamental Rights and in particular their right to the protection of personal data.
Amendment 42 #
Proposal for a regulation Article 2 – paragraph 1 1. This Regulation applies to the processing of personal data by all Union institutions and bodies
Amendment 43 #
Proposal for a regulation Article 2 – paragraph 1 1. This Regulation applies to the processing of personal data by all Union institutions and bodies
Amendment 44 #
Proposal for a regulation Article 2 – paragraph 1 1. This Regulation applies to the processing of personal data by all Union institutions and bodies
Amendment 45 #
Proposal for a regulation Article 2 – paragraph 1 a (new) 1a. Eurojust, Europol and the European Public Prosecutor's Office shall only be covered by this Regulation for the processing of administrative personal data. Separate provisions apply to the processing of operational personal data by Eurojust, Europol and the European Public Prosecutor's Office. Those Union bodies are not subject to this Regulation for the processing of operational personal data.
Amendment 46 #
Proposal for a regulation Article 2 – paragraph 1 a (new) 1a. This Regulation shall not apply to the processing of operational data by EU agencies and bodies active in the field of judicial cooperation in criminal matters and police cooperation.
Amendment 47 #
Proposal for a regulation Article 2 – paragraph 2 a (new) 2a. This Regulation shall also apply to Union agencies carrying out activities which fall within the scope of Chapters 4 and 5 of Title V of Part Three TFEU, including where the founding acts of those Union agencies lay down a standalone data protection regime for the processing of operational personal data. The provisions of this Regulation shall take precedence over the conflicting provisions in the founding acts of those Union agencies.
Amendment 48 #
Proposal for a regulation Article 3 – paragraph 2 – point a a (new) (aa) 'operational personal data' means all personal data processed by the Union bodies, offices or agencies carrying out activities which fall within the scope of Chapter 4 or Chapter 5 of Title V of Part Three TFEU to meet the objectives laid down in the acts establishing those bodies, offices or agencies;
Amendment 49 #
Proposal for a regulation Article 3 – paragraph 2 – point a b (new) (ab) 'administrative personal data' means all personal data processed by the Union bodies, offices or agencies which fall within the scope of this Regulation;
Amendment 5 #
Proposal for a regulation Recital 5 (5) It is in the interest of a coherent approach to personal data protection throughout the Union, and of the free movement of personal data within the Union, to align
Amendment 50 #
Proposal for a regulation Article 4 – paragraph 1 – point d (d) accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data which are inaccurate or incomplete, having regard to the purposes for which they
Amendment 51 #
Proposal for a regulation Article 5 – paragraph 2 2. The tasks referred to in point (a) of paragraph 1 shall be laid down in Union law. The basis for the processing referred to in point (b) of paragraph 1 shall be laid down in Union or Member State law to which the controller is subject.
Amendment 52 #
Proposal for a regulation Article 8 Amendment 53 #
Proposal for a regulation Article 8 – title Conditions applicable to child
Amendment 54 #
Proposal for a regulation Article 8 – paragraph 1 1. Where point (d) of Article 5(1) applies, in relation to the offer of information society services directly to a child, the processing of the personal data of a child shall be lawful where the child is at least 1
Amendment 55 #
Proposal for a regulation Article 8 – paragraph 1 (1) Where point (d) of Article 5(1) applies, in relation to the offer of information society services directly to a child, the processing of the personal data of a child shall be lawful where the child is at least 1
Amendment 56 #
Proposal for a regulation Article 8 a (new) Amendment 57 #
Proposal for a regulation Article 9 – title Transmissions of personal data to recipients, other than Union institutions and bodies, established in the Union
Amendment 58 #
Proposal for a regulation Article 9 – paragraph 1 – point b (b) that it is strictly necessary to have the data transmitted
Amendment 59 #
Proposal for a regulation Article 9 – paragraph 1 – point b (b) that it is necessary to have the data transmitted, i
Amendment 6 #
Proposal for a regulation Recital 8 (8) In Declaration No 21 on the protection of personal data in the fields of judicial cooperation in criminal matters and police cooperation, annexed to the final act of the intergovernmental conference which adopted the Treaty of Lisbon, the conference acknowledged that specific rules on the protection of personal data and the free movement of personal data in the fields of judicial cooperation in criminal matters and police cooperation based on Article 16 TFEU could prove necessary because of the specific nature of those fields. This Regulation should therefore not apply to
Amendment 60 #
Proposal for a regulation Article 10 – paragraph 3 3. Personal data referred to in paragraph 1 may be processed for the purposes referred to in point (h) of paragraph 2 when those data are processed by or under the responsibility of a professional subject to the obligation of professional secrecy under Union
Amendment 61 #
Proposal for a regulation Article 11 – paragraph 1 Processing of personal data relating to criminal convictions and offences or related security measures pursuant to Article 5(1) may be carried out only if authorised by Union law
Amendment 62 #
Proposal for a regulation Article 16 – paragraph 5 – point b (b) the provision of such information proves impossible or would involve a disproportionate effort, in particular for processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes or in so far as the obligation referred to in paragraph 1 of this Article is likely to render impossible or seriously impair the achievement of the objectives of that processing. In such cases the controller shall take appropriate measures to protect the data subject's rights and freedoms and legitimate interest, including making the information publicly available;
Amendment 63 #
Proposal for a regulation Article 23 – paragraph 1 (1) The data subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (a) of Article 5(1), including profiling based on that provision. The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the
Amendment 64 #
Proposal for a regulation Article 25 – paragraph 1 – introductory part 1. Legal acts adopted on the basis of the Treaties
Amendment 65 #
Proposal for a regulation Article 25 – paragraph 1 – introductory part 1. Legal acts adopted on the basis of the Treaties
Amendment 66 #
Proposal for a regulation Article 25 – paragraph 1 a (new) 1a. In particular, any legal act referred to in paragraph 1 shall contain specific provisions at least, where relevant, as to : (a) the purposes of the processing or categories of processing; (b) the categories of personal data; (c) the scope of the restriction introduced; (d) the safeguards to prevent abuse or unlawful access or transfer; (e) the specification of the controller or categories of controllers; (f) the storage periods and the applicable safeguards taking into account the nature, scope and purposes of the processing or categories of processing; (g) the risks to the rights and freedoms of data subjects; and (h) the right of data subjects to be informed about the restriction, unless that may be prejudicial to the purpose of the restriction.
Amendment 67 #
Proposal for a regulation Article 25 – paragraph 1 a (new) (1a) In particular, any legislative measure referred to in paragraph 1 shall contain specific provisions at least, where relevant, as to: (a) the purposes of the processing or categories of processing; (b) the categories of personal data; (c) the scope of the restrictions introduced; (d) the safeguards to prevent abuse or unlawful access or transfer; (e) the specification of the controller or categories of controllers; (f) the storage periods and the applicable safeguards taking into account the nature, scope and purposes of the processing or categories of processing; (g) the risks to the rights and freedoms of data subjects. and (h) the right of data subjects to be informed about the restriction, unless that may be prejudicial to the purpose of the restriction.
Amendment 68 #
Proposal for a regulation Article 25 – paragraph 2 Amendment 69 #
Proposal for a regulation Article 25 – paragraph 2 Amendment 7 #
Proposal for a regulation Recital 8 (8) In Declaration No 21 on the protection of personal data in the fields of judicial cooperation in criminal matters and police cooperation, annexed to the final act of the intergovernmental conference which adopted the Treaty of Lisbon, the conference acknowledged that specific rules on the protection of personal data and the free movement of personal data in the fields of judicial cooperation in criminal matters and police cooperation based on Article 16 TFEU could prove necessary because of the specific nature of those fields.
Amendment 70 #
Proposal for a regulation Article 25 – paragraph 3 3. Where personal data are processed for scientific or historical research purposes or statistical purposes, Union law
Amendment 71 #
Proposal for a regulation Article 25 – paragraph 4 4. Where personal data are processed for archiving purposes in the public interest, Union law
Amendment 72 #
Proposal for a regulation Article 25 – paragraph 5 Amendment 73 #
Proposal for a regulation Article 25 – paragraph 5 Amendment 74 #
Proposal for a regulation Article 25 – paragraph 6 6. If a restriction is imposed pursuant to paragraph
Amendment 75 #
Proposal for a regulation Article 25 – paragraph 7 7. If a restriction imposed pursuant to paragraph
Amendment 76 #
Proposal for a regulation Article 25 – paragraph 8 8. Provision of the information referred to in paragraphs 6 and 7 and in Article 46(2) may be deferred, omitted or denied if it would cancel the effect of the restriction imposed pursuant to paragraph 1
Amendment 77 #
Proposal for a regulation Article 31 – paragraph 5 (5) Union institutions and bodies
Amendment 78 #
Proposal for a regulation Article 31 – paragraph 5 5. Union institutions and bodies
Amendment 79 #
Proposal for a regulation Article 31 – paragraph 5 5. Union institutions and bodies
Amendment 8 #
Proposal for a regulation Recital 9 Amendment 80 #
Proposal for a regulation Article 31 – paragraph 5 a (new) 5a. Data subjects shall be able to consult the central register referred to in paragraph 5 through the data protection officer of the controller.
Amendment 81 #
Proposal for a regulation Chapter IV – section 2 – title SECURITY OF PERSONAL DATA
Amendment 82 #
Proposal for a regulation Article 34 – paragraph 1 Amendment 83 #
Proposal for a regulation Article 34 – paragraph 1 Union institutions and bodies shall ensure the confidentiality of electronic communications
Amendment 84 #
Amendment 85 #
Proposal for a regulation Article 36 Amendment 86 #
Article 38a Confidentiality of electronic communications Union institutions and bodies shall ensure the confidentiality of electronic communications, in particular by securing their electronic communication networks.
Amendment 87 #
Proposal for a regulation Article 38 b (new) Article 38b Directories of users 1. Personal data contained in directories of users and access to such directories shall be limited to what is strictly necessary for the specific purposes of the directory. 2. Union institutions and bodies shall take all the necessary measures to prevent personal data contained in those directories, regardless of whether they are accessible to the public or not, from being used for direct marketing purposes.
Amendment 88 #
Proposal for a regulation Article 42 Amendment 89 #
Proposal for a regulation Article 42 – paragraph 1 1.
Amendment 9 #
Proposal for a regulation Recital 9 (9) Directive (EU) 2016/680 provides harmonised rules for the protection and the free movement of personal data processed for the purposes of the prevention, investigation, detection or prosecution of criminal offences or execution of criminal penalties, including the safeguarding against and the prevention of threats to public security. In order to foster the same level of protection for natural persons through legally enforceable rights throughout the Union and to prevent divergences hampering the exchange of personal data between Union bodies, offices and agencies carrying out activities
Amendment 90 #
Proposal for a regulation Article 42 – paragraph 2 2. Where an act referred to in paragraph 1 is of particular importance for the protection of individuals’ rights and freedoms with regard to the processing of personal data, the Commission
Amendment 91 #
Proposal for a regulation Article 44 – paragraph 4 4. The data protection officer
Amendment 92 #
Proposal for a regulation Article 44 – paragraph 4 4. The data protection officer
Amendment 93 #
Proposal for a regulation Article 46 – paragraph 1 – point b a (new) Amendment 94 #
Proposal for a regulation Article 46 – paragraph 1 – point g a (new) (ga) ensure that the rights and freedoms of data subjects are not adversely affected by processing operations.
Amendment 95 #
Proposal for a regulation Article 46 – paragraph 1 – point g a (new) (ga) ensure that the rights and freedoms of data subjects are not adversely affected by the processing.
Amendment 96 #
Proposal for a regulation Article 48 – paragraph 1 1. A transfer of personal data to a third country or international organisation
Amendment 97 #
Proposal for a regulation Article 49 – paragraph 5 5. Authorisations by the European Data Protection Supervisor on the basis of Article 9(7) of Regulation (EC) No 45/2001 shall remain valid until amended, replaced or repealed
Amendment 98 #
Proposal for a regulation Article 54 – paragraph 1 1. The European Parliament and the Council shall appoint the European Data Protection Supervisor by common accord for a term of five years, on the basis of a list drawn up
Amendment 99 #
Proposal for a regulation Article 54 – paragraph 1 1. The European Parliament and the Council shall appoint the European Data Protection Supervisor by common accord for a term of five years, on the basis of a list drawn up
source: 609.293
|
History
(these mark the time of scraping, not the official date of the change)
2023-08-03Show (9) Changes | Timetravel
| docs/7/docs/0/url |
/oeil/spdoc.do?i=30325&j=0&l=en
|
| docs/8 |
|
| docs/8 |
|
| docs/9 |
|
| docs/9 |
|
| docs/10 |
|
| docs/10 |
|
| docs/11 |
|
| links/Research document/url |
Old
http://www.europarl.europa.eu/thinktank/en/document.html?reference=EPRS_BRI(2017)608754New
https://www.europarl.europa.eu/thinktank/en/document/EPRS_BRI(2017)608754 |
2021-12-18Show (20) Changes | Timetravel
| committees/0/rapporteur |
|
| docs/0 |
|
| docs/0 |
|
| docs/1/docs/0/url |
Old
https://dm.eesc.europa.eu/EESCDocumentSearch/Pages/redresults.aspx?k=(documenttype:AC)(documentnumber:0689)(documentyear:2017)(documentlanguage:EN)New
https://dmsearch.eesc.europa.eu/search/public?k=(documenttype:AC)(documentnumber:0689)(documentyear:2017)(documentlanguage:EN) |
| docs/2/docs/0/url |
Old
http://www.europarl.europa.eu/sides/getDoc.do?type=COMPARL&mode=XML&language=EN&reference=PE605.954New
https://www.europarl.europa.eu/doceo/document/LIBE-PR-605954_EN.html |
| docs/3/docs/0/url |
Old
http://www.europarl.europa.eu/sides/getDoc.do?type=COMPARL&mode=XML&language=EN&reference=PE608.066New
https://www.europarl.europa.eu/doceo/document/LIBE-AM-608066_EN.html |
| docs/4/docs/0/url |
Old
http://www.europarl.europa.eu/sides/getDoc.do?type=COMPARL&mode=XML&language=EN&reference=PE605.974&secondRef=02New
https://www.europarl.europa.eu/doceo/document/JURI-AD-605974_EN.html |
| events/1/type |
Old
Committee referral announced in Parliament, 1st reading/single readingNew
Committee referral announced in Parliament, 1st reading |
| events/2/type |
Old
Vote in committee, 1st reading/single readingNew
Vote in committee, 1st reading |
| events/4 |
|
| events/4 |
|
| events/5 |
|
| events/5 |
|
| events/6 |
|
| events/7 |
|
| events/7 |
|
| events/7/docs/0/url |
Old
http://www.europarl.europa.eu/sides/getDoc.do?secondRef=TOC&language=EN&reference=20180912&type=CRENew
https://www.europarl.europa.eu/doceo/document/CRE-8-2017-09-12-TOC_EN.html |
| events/9 |
|
| procedure/Legislative priorities/0/title |
Old
Joint Declaration 2018New
Joint Declaration 2018-19 |
| procedure/Notes |
|
2020-01-19Show (3) Changes | Timetravel
| docs/7/body |
EC
|
| events/4/docs/0/url |
Old
http://www.europarl.europa.eu/sides/getDoc.do?type=REPORT&mode=XML&reference=A8-2017-0313&language=ENNew
http://www.europarl.europa.eu/doceo/document/A-8-2017-0313_EN.html |
| events/7/docs/0/url |
Old
http://www.europarl.europa.eu/sides/getDoc.do?type=TA&language=EN&reference=P8-TA-2018-0348New
http://www.europarl.europa.eu/doceo/document/TA-8-2018-0348_EN.html |
2019-09-04Show (4) Changes | Timetravel
| committees/0 |
|
| committees/0 |
|
| committees/2 |
|
| committees/2 |
|
2019-07-06Show (21) Changes | Timetravel
| activities |
|
| commission |
|
| committees/0 |
|
| committees/0 |
|
| committees/1 |
|
| committees/1 |
|
| committees/2 |
|
| committees/2 |
|
| council |
|
| docs |
|
| events |
|
| other |
|
| procedure/Legislative priorities |
|
| procedure/Notes |
|
| procedure/dossier_of_the_committee |
Old
LIBE/8/08983New
|
| procedure/final |
|
| procedure/instrument |
Old
RegulationNew
|
| procedure/legislative_priorities |
|
| procedure/stage_reached |
Old
Awaiting Parliament 1st reading / single reading / budget 1st stageNew
Procedure completed |
| procedure/subject |
Old
New
|
| procedure/summary |
|
2018-09-12Show (4) Changes | Timetravel
| activities/5/docs/0/text |
|
| activities/6 |
|
| activities/7 |
|
| links/Research document |
|
2017-10-27Show (3) Changes | Timetravel
| activities/3/type |
Old
Committee decision to open interinstitutional negotiations after 1st reading in ParliamentNew
Committee decision to open interinstitutional negotiations with report adopted in committee |
| activities/5 |
|
| procedure/stage_reached |
Old
Awaiting committee decisionNew
Awaiting Parliament 1st reading / single reading / budget 1st stage |
2017-10-17Show (2) Changes | Timetravel
| activities/3 |
|
| activities/4 |
|
2017-09-03Show (2) Changes | Timetravel
| activities/0/commission/0 |
|
| other/0 |
|
2017-07-15Show (6) Changes | Timetravel
| activities/0 |
|
| activities/0/body |
Old
EPNew
EC |
| activities/0/commission |
|
| activities/0/date |
Old
2017-10-24T00:00:00New
2017-01-10T00:00:00 |
| activities/0/docs |
|
| activities/0/type |
Old
Indicative plenary sitting date, 1st reading/single readingNew
Legislative proposal published |
2017-06-29Show (1) Changes | Timetravel
| procedure/legislative_priorities |
|
2017-06-17Show (2) Changes | Timetravel
| activities/2 |
|
| activities/3 |
|
2017-05-31Show (1) Changes | Timetravel
| activities/0/docs/0/celexid |
CELEX:52017PC0008:EN
|
2017-05-30Show (1) Changes | Timetravel
| activities/0/docs/0/celexid |
CELEX:52017PC0008:EN
|
2017-04-06Show (3) Changes | Timetravel
| activities/1 |
|
| procedure/dossier_of_the_committee |
LIBE/8/08983
|
| procedure/stage_reached |
Old
Preparatory phase in ParliamentNew
Awaiting committee decision |
2017-03-16Show (3) Changes | Timetravel
| committees/2/date |
2017-03-09T00:00:00
|
| committees/2/rapporteur |
|
| committees/2/shadows |
|
2017-03-15Show (2) Changes | Timetravel
| committees/1/date |
2017-02-28T00:00:00
|
| committees/1/rapporteur |
|
2017-03-13Show (1) Changes | Timetravel
| activities/0/docs/0/celexid |
CELEX:52017PC0008:EN
|
2017-03-12Show (1) Changes | Timetravel
| activities/0/docs/0/celexid |
CELEX:52017PC0008:EN
|
2017-02-25Show (1) Changes | Timetravel
| activities/0/docs/0/text |
|
2017-01-20Show (5) Changes
| activities |
|
| committees |
|
| links |
|
| other |
|
| procedure |
|