Coordinated Supervision of Eurodac. Activity Report

Similar documents
Report on the national preparation for the implementation of the Eurodac Recast

EURODAC Supervision Coordination Group Report of the first coordinated inspection Brussels, 17 July 2007

Having regard to the Treaty establishing the European Community, and in particular its Article 286,

Introduction and Background

Opinion of the European Data Protection Supervisor

Biometrics, privacy and security: Striking the right balance

EUROPEAN DATA PROTECTION SUPERVISOR

Report on access to the VIS and the exercise of data subjects' rights

ACTIVITY REPORT

REPORT on access to the VIS and the exercise of data subjects' rights

EUROPEAN DATA PROTECTION SUPERVISOR

JAI.1 EUROPEAN UNION. Brussels, 8 November 2018 (OR. en) 2016/0407 (COD) PE-CONS 34/18 SIRIS 69 MIGR 91 SCHENGEN 28 COMIX 333 CODEC 1123 JAI 829

Schengen Joint Supervisory Authority Activity Report January 2004-December 2005

REGULATION (EC) No 767/2008 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL. of 9 July 2008

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 25 October /06 Interinstitutional File: 2004/0287 (COD) LIMITE

on the proposal for a Regulation of the European Parliament and of the Council concerning customs enforcement of intellectual property rights

ARTICLE 29 DATA PROTECTION WORKING PARTY WORKING PARTY ON POLICE AND JUSTICE

Opinion 07/2016. EDPS Opinion on the First reform package on the Common European Asylum System (Eurodac, EASO and Dublin regulations)

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 11 January /07 Interinstitutional File: 2004/0287 (COD) LIMITE VISA 7 CODEC 32 COMIX 25

EUROPEAN DATA PROTECTION SUPERVISOR

COMMISSION OF THE EUROPEAN COMMUNITIES. Proposal for a COUNCIL DECISION

Ad-Hoc Query on Implementation of Council Regulation 380/2008. Requested by FI EMN NCP on 10 th September 2009

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 20 December /06 Interinstitutional File: 2004/0287 (COD) LIMITE

COMMISSION OF THE EUROPEAN COMMUNITIES COMMISSION STAFF WORKING PAPER

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 78(3) thereof,

COMMISSION RECOMMENDATION. of

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 16 thereof,

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

11161/15 WST/NC/kp DGD 1

Delegations will find attached a letter and the Activity Report from the Visa Information System Supervision Coordination Group.

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 78(3) thereof,

Having regard to the opinion of the European Economic and Social Committee ( 1 ),

COUNCIL REGULATION (EC)

I have asked for asylum in the EU which country will handle my claim?

Table of content What is data protection? Why was is necessary? Beginnings of Data Protection Development of International Data Protection Data Protec

Activity Report

EDPS respomse to the Commission public consultation on lowering tfiie fingerprinting âge for children in the visa procédure from 12 years to 6 years

Official Journal of the European Union L 131/7. COUNCIL DECISION of 14 May 2008 establishing a European Migration Network (2008/381/EC)

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

The EU Visa Code will apply from 5 April 2010

COMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT AND THE COUNCIL. Adapting the common visa policy to new challenges

Guidance Note on the transposition and implementation of the EU Asylum Acquis. February 2014

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 16 thereof,

Public Consultation on the Smart Borders Package

10953/09 ADD3 IB/id 1 DG H

COMMISSION OF THE EUROPEAN COMMUNITIES. Proposal for a COUNCIL DECISION

COUNCIL OF THE EUROPEAN UNION. Brussels, 20 November /09 ADD 1 ASIM 133 COEST 434

L 66/38 Official Journal of the European Union

COMMISSION OF THE EUROPEAN COMMUNITIES

9848/18 AP/kl 1 DGD 1 LIMITE EN

REPORT FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT, THE EUROPEAN COUNCIL AND THE COUNCIL. Fifteenth report on relocation and resettlement

Biometric data in large IT borders, immigration and asylum databases - fundamental rights concerns

Council of the European Union Brussels, 24 April 2018 (OR. en)

(FRONTEX), COM(2010)61

Council of the European Union Brussels, 12 January 2018 (OR. en) Ms Caroline Gloor Scheidegger, Chair of the VIS Supervision Coordination Group

COMMISSION OF THE EUROPEAN COMMUNITIES. Proposal for a COUNCIL DECISION

COMMISSION RECOMMENDATION. of XXX

I m in the Dublin procedure what does this mean?

ARTICLE 95 INSPECTION

9117/16 JdSS/ml 1 DG D 1A

COMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT AND THE COUNCIL

***I POSITION OF THE EUROPEAN PARLIAMENT

L 348/98 Official Journal of the European Union

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

REPORT FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT, THE EUROPEAN COUNCIL AND THE COUNCIL. Thirteenth report on relocation and resettlement

EUROPEAN UNION. Strasbourg, 5 April 2011 (OR. en) 2009/0098 (COD) LEX 1180 PE-CONS 68/1/10 REV 1 FRONT 169 CIREFI 11 COMIX 844 CODEC 1579

Reflection paper on the interoperability of information systems in the area of Freedom, Security and Justice

Council of the European Union Brussels, 16 October 2017 (OR. en)

COMMISSION OF THE EUROPEAN COMMUNITIES. Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL. amending Regulation (EU) 2016/399 as regards the use of the Entry/Exit System

Opinion on a notification for Prior Checking received from the OLAF Data Protection Officer regarding the Customs File Identification Database (FIDE)

Questionnaire for the 1 st thematic monitoring round: SEXUAL ABUSE OF CHILDREN IN THE CIRCLE OF TRUST

Asylum Statistics in the European Union: A Need for Numbers

Screening Serbia. DG Home Unit 2 Visa Policy

P6_TA-PROV(2007)0347 PNR Agreement

Questions and Answers: Schengen Information System (SIS II)

COMMISSION OF THE EUROPEAN COMMUNITIES. Proposal for a COUNCIL DECISION

REPORT FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT AND THE COUNCIL

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

EUROPEAN DATA PROTECTION SUPERVISOR

The EDPS has limited the comments below to the provisions of the Proposal that are particularly relevant from a data protection perspective.

EXECUTIVE SUMMARY. 3 P a g e

Public Consultation on the Smart Borders Package

Ad-Hoc Query on detention in Dublin III cases (Regulation EU No 604/2013) Requested by DE EMN NCP on 11 th July 2014

Council of the European Union Brussels, 12 September 2018 (OR. en)

Irish Presidency of the European Union Informal meeting of the Justice and Home Affairs Ministers Dublin, Ireland 22/23 January 2004

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 172 thereof,

EDPS Opinion on the proposal for a recast of Brussels IIa Regulation

COMMISSION IMPLEMENTING DECISION. of

Proposal for a COUNCIL DECISION. establishing a Multiannual Framework for the European Union Agency for Fundamental Rights for

COMMISSION IMPLEMENTING DECISION. of

COMMISSION IMPLEMENTING DECISION. of

***I POSITION OF THE EUROPEAN PARLIAMENT

ANNEX. to the. Proposal for a Council Decision

REGULATIONS. (Text with EEA relevance)

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 23 October /12 LIMITE ASIM 131 COMIX 595

Brussels, 16 May 2006 (Case ) 1. Procedure

9837/09 YV/ml 1 DG H 3B

COMMISSION IMPLEMENTING DECISION. of establishing the list of supporting documents to be presented by visa applicants in Ireland

Transcription:

Coordinated Supervision of Eurodac Activity Report 2010-2011 Brussels, 24 May 2012 Secretariat of the Eurodac Supervision Coordination Group EDPS Rue Wiertz 60 B-1047 Brussels email: eurodac@edps.europa.eu

Table of Contents 1. INTRODUCTION 2 2. LEGAL FRAMEWORK: REVISION OF THE EURODAC REGULATION 3 3. ORGANISATION OF COORDINATED SUPERVISION 4 3.1. MAIN PRINCIPLES 4 3.2. THE SUPERVISION COORDINATION MEETINGS 4 4. 2010-2011: ISSUES DISCUSSED AND ACHIEVEMENTS 6 4.1. COORDINATED INSPECTION ON ADVANCE DELETION 6 4.2. SECURITY AUDIT METHODOLOGY 6 4.3. STAKEHOLDER DIALOGUE 7 4.4. VIS 7 5. WHAT TO EXPECT IN 2012-2013 7

1. Introduction Eurodac is an information system established for the comparison of fingerprints of asylum applicants and irregular immigrants. It facilitates the application of the Dublin Regulation 1 which aims at determining the State responsible for examining the asylum application. 2 Eurodac has been created by Council Regulation (EC) No 2725/2000 of 11 December 2000 3 as completed by Council Regulation (EC) No 407/2002 of 28 February 2002. 4 The system has been operational since 15 January 2003 and is currently used by the 27 EU Member States as well as Iceland, Liechtenstein, Norway and Switzerland. 5 As established in the Eurodac regulation, data protection supervision of the Eurodac system is carried out at national level by the national supervisory authorities (data protection authorities, hereafter "DPAs"), while for the central (EU) level, the European Data Protection Supervisor (EDPS) is competent. The coordination between the two levels is ensured by the Eurodac Supervision Coordination Group (hereafter "the Group"), which is composed by representatives of the DPAs and the EDPS. In 2010-2011, this Group was chaired by Mr Peter Hustinx (EDPS), while the Vice- Chair was Ms Elisabeth Wallin (Swedish DPA). The present document reports on the activities of the Group for this period. The need for thorough data protection supervision of Eurodac is evident when considering the category of persons affected by the Eurodac system: asylum seekers and (to a lesser extent) irregular immigrants. This need is also reinforced by the evolution of policies in the area of freedom, security and justice in recent years. Asylum policies need to be better coordinated, and, as a result, so does the protection of the rights and freedoms of asylum seekers. Data protection is also a key factor for the success of the operation of Eurodac, and consequently for the proper functioning of the Dublin system. Elements such as data security, quality of data and lawfulness of consultation of Eurodac data all contribute to the smooth functioning of the system. 1 Regulation (EC) N 343/2003 of 18 February 2003 and Commission Regulation (EC) N 1560/2003 of 2 September 2003, OJ L 222, 05/09/2003 P. 3-23. These two instruments are sometimes called Dublin II. 2 The Eurodac system enables Member States to identify asylum seekers and persons who have crossed an external frontier of the Community in an irregular manner. By comparing fingerprints Member States can determine whether an asylum seeker or a foreign national found irregularly present within a Member State has previously claimed asylum in another Member State. 3 Council Regulation (EC) No 2725/2000 of 11 December 2000 concerning the establishment of Eurodac for the comparison of fingerprints for the effective application of the Dublin Convention, hereinafter Eurodac Regulation, OJ L 316, 15/12/2000 P. 1-10. 4 Council Regulation (EC) No 407/2002 of 28 February 2002 laying down certain rules to implement Regulation (EC) No 2725/2000 concerning the establishment of "Eurodac" for the comparison of fingerprints for the effective application of the Dublin Convention, OJ L 62, 5/3/2002, P. 1 5. 5 When Eurodac was established, it was used in the then EU-15 Member States (except Denmark), as well as in Norway and Iceland. Since then, the system has been joined by the ten new Member States following the 2004 enlargement, by Denmark (2006), Bulgaria and Romania following the 2007 enlargement, as well as Switzerland (2008). Finally, a protocol between the Union, Switzerland and Liechtenstein, allowing the latter to join the system, entered into force on 1 April 2011. 2

Section 2 of this report clarifies the legal environment including the challenges posed by the evolution of the legal framework. In the period covered by this report, the discussions on a reform of the Eurodac Regulation have continued, with the Commission putting forward new proposals. However, as of writing, no proposal has been adopted. Section 3 summarises the proceedings at the five coordination supervision meetings which took place during the reporting period. Achievements are the subject of section 4: during the last two years, the Group kept up its good work from the previous reporting period, conducting an inspection on advance deletion, reaching out to stakeholders and keeping abreast of new developments in this area. Section 5 concludes the report by giving an overview of activities to come in the next reporting period to the extent they can already be anticipated. 2. Legal framework: Revision of the Eurodac Regulation During the time covered by this activity report, no revision of the Eurodac Regulation has been adopted. To recall, the first proposal for a revision was put forward by the Commission in December 2008. 6 An amended proposal was presented in September 2009. 7 As a result of discussions in the Council, this document included the possibility of accessing Eurodac for law-enforcement purposes. In October 2010 8 the Commission put forward an updated proposal, which largely mirrored the earlier proposal of December 2008, except that the provisions on access for law-enforcement purposes were removed. The stated Commission rationale behind this was that excluding this controversial issue could allow for quicker adoption. This way, other changes, such as stricter provisions on the security of the system and decreased retention periods for category 2 entries (persons apprehended irregularly crossing the border) could come into force quicker. Nonetheless, the negotiations between Parliament and Council are frozen as of writing. It is open how the issue will develop in the future; negotiations could be resumed on the basis of the current proposal or the Commission could re-introduce access for law-enforcement purposes with a new proposal. From a data protection perspective, the current proposal would present some improvements, notably shorter retention periods in some cases as well as more stringent security safeguards. The Group also welcomes that the current proposal excludes access for law-enforcement purposes. The proposal would not change anything regarding the approach to coordinated supervision the model of coordination between national DPAs and the EDPS, each acting within their respective competences, is proven and is not planned to be changed in the revision. 6 COM(2008)825 final 7 COM(2009)342 final 8 COM(2010)555 final 3

3. Organisation of coordinated supervision 3.1. Main principles As in previous years, the cooperation took the form of coordinated supervision meetings held on a regular basis with all DPAs in charge of supervising Eurodac at national level and the EDPS. The main purpose of these meetings was to discuss common problems related to supervision and find common solutions or approaches whenever possible. According to Article 5 of the Group's rules of procedure, these meetings shall take place at least once a year. In practice, two to three meetings are held per year. DPAs participating in the meetings are all DPAs in charge of the supervision of Eurodac, i.e. at the date of publication of this report all 27 EU Member States plus Liechtenstein, Norway, Iceland and Switzerland. Before the protocol allowing Liechtenstein to join entered into force, Liechtenstein's DPA was represented with an observer status. The Commission is also invited to parts of the meetings in order to update the Group on new developments regarding Eurodac. 3.2. The supervision coordination meetings In the period 2010-2011 five supervision coordination meetings have taken place on the following dates: 8 March 2010 13 October 2010 8 December 2010 8 June 2011 21 October 2011 The meetings were held in Brussels, usually back to back with meetings of the Joint Supervisory Authorities/Bodies of SIS, CIS and Europol on Council premises. The meeting in October 2011 was held as a stand-alone meeting on premises of the European Parliament. The meetings have proven to be an effective platform for exchanging experiences and information about the functioning of Eurodac and its data protection related aspects. Typically, the first part of the meeting is devoted to a presentation by the European Commission services involved in the management of Eurodac, either on technical or legal aspects. This helps to ensure that the Group is always up-to-date on recent developments in order to ensure effective supervision. The second part is devoted to discussion between DPAs on issues that are in need of checking at national level or on new developments of interest for Eurodac supervisors. The following paragraphs quickly recapitulate the topics discussed and actions taken at the different meetings. A more detailed description of selected actions will follow in section 3 of this report. Meeting on 8 March 2010 At this meeting the group adopted the 2008-2009 activity report. It also discussed and with minor changes adopted the work programme for 2010-2011, which set out the activities to be taken during this reporting period. The Group proceeded to re-elect Mr Peter Hustinx as chair; Ms Elisabeth Wallin (Swedish DPA) was elected as vice-chair. 4

Meeting on 13 October 2010 The Commission presented its annual report on Eurodac, as well as the new proposal for reforming the Regulation, which removed the provisions on access for lawenforcement purposes present in the previous proposal. The secretariat presented a discussion document on advance deletion; after general agreement that the topic was important, the chair suggested that the secretariat amend and transform the document into a questionnaire. The UK delegation had prepared a working paper on stakeholder engagement, on the basis of which the secretariat prepared a more precise document. The Group endorsed the documents and decided to go ahead with the stakeholder engagement, while being careful not to overreach its mandate. Meeting on 8 December 2010 In this meeting, the Group adopted the questionnaire on advance deletion, which was subsequently sent to the Members to start their inspections. The second part of the meeting was devoted to a discussion with representatives of the United Nations High Commissioner for Refugees and of the European Council for Refugees and Exiles. The Group and the external stakeholders discussed information to data subjects, the age of asylum seekers, the quality of fingerprints/enrolment, and law enforcement access to Eurodac. The French delegate informed the Group of recent developments in France, where administrative authorities established a rule that after three unsuccessful attempts at fingerprinting, if the fingerprints of the asylum seeker are still unreadable, it is assumed that the person has tried to voluntarily render his/her identification impossible, e.g. by self-mutilating. As a consequence, provisional residence permits and social assistance should be withdrawn. The Group decided to follow the issue. Meeting on 8 June 2011 The Commission updated the Group on the state of play regarding the reform of the Eurodac Regulation, general developments and first experiences with the new technical platform Eurodac+, which went live in February 2011. The Greek representative presented the methodology used in auditing the Eurodac National Access Point, in order to provide input into the development of a common methodology. The secretariat presented a preliminary draft report for the advance deletion exercise, based on the replies submitted before the meeting. Meeting on 21 October 2011 The Commission presented its annual report on the activities of the Eurodac central unit and updated the Group on the state of play regarding the revision of the Eurodac Regulation, as well as on the development of "special searches" until September 2011. Afterwards, the Group discussed and with minor changes adopted an adapted work programme to cover 2012, as well as a memo and questionnaire for a coordinated inspection on unreadable fingerprints, both of which had been prepared by the secretariat. For the report on advance deletion, some late contributions were still expected; therefore, the report was sent to the written procedure once those contributions arrived and adopted subsequently. The Group also discussed the possibility of a common framework for a security audit on EURODAC and was informed of the results of a national audit carried out in Spain. It also looked into possibilities to streamline its workflows and increase transparency. Additionally, this meeting also included an informal discussion on how to establish coordinated supervision for the Visa Information System, which had been launched one month earlier. 5

4. 2010-2011: Issues discussed and achievements 4.1. Coordinated inspection on advance deletion This inspection was prompted by the fact that there seemed to be an implementation deficit regarding advance deletion. This term refers to the obligation to delete fingerprint data of persons who for different reasons such as having acquired the nationality of a Member State or having left the Dublin Area must no longer be included in the EURODAC database before the end of the normal retention periods. Implementation deficits have been noted on multiple occasions. Advance deletion is important as it ensures that data is not stored longer than necessary for achieving the purpose for which it was collected; it is also part of the sound management of large-scale IT databases as it contributes to data quality and helps to avert negative consequences to data subjects due to faulty information. DPAs represented in the Group carried out inspections at the national level and answers in total 26 were collected throughout the year. The results made clear that some Member States still lacked appropriate procedures for dealing with advance deletion. Also, the Group noted problems with the statistics supplied by the Member States, which sometimes did not match those provided by the Commission. The Group addressed three recommendations to the Member States: o Those Member States which have not yet done so should include a procedure for automatic advance deletion in the workflow of their competent authorities and to set clear and short deadlines in the procedure, in order to be compliant with the Regulation; o Member States should also provide information to data subjects as regards the right to advance deletion, in line with the applicable legislation on data protection; o The Commission and the Member States should explore ways of improving statistics and making them more comparable, which could include the establishment of common criteria, because, as the Group pointed out, adequate, reliable and comparable statistics are a necessary ingredient of evidence-based policy. 4.2. Security audit methodology Significant progress has been made on the development of a common framework for security audits. To this end, the Group exchanged experiences from inspections on the national level and -in a subgroup- drafted a questionnaire that can serve as a common baseline for inspections, ensuring consistency and comparability of results. As far as possible, the audit framework will also include any new security requirements that might be introduced in the revision of the Eurodac Regulation. Work is expected to be finalised within the next year. 6

4.3. Stakeholder dialogue In the December 2010 meeting, the Group met with representatives of the United Nations High Commissioner for Refugees, who supervises the implementation of the 1951 UN Convention on refugees and its 1967 Protocol, and the European Council for Refugees and Exiles (ECRE), an umbrella organisation for a number of NGOs working with refugees all over Europe. Although the mandates and objectives of the participants to this dialogue differ, all participants found the exchange worthwhile and called for it to be institutionalised. Common areas of interest included the question of law-enforcement access, determining the age of asylum seekers and the information provided to data subjects. A second stakeholder dialogue will be organised in 2012. 4.4. VIS In its October 2011 meeting, the Group also informally discussed coordinated supervision of the VIS. The VIS was launched shortly before the meeting and will be implemented in different phases. Its legal basis includes provisions for a supervision coordination group similar to that for Eurodac. The Commission informed the Group about the VIS and its day-to-day operations. Afterwards, the Group discussed an approach to coordinated supervision of the VIS, aiming to formalise supervision by the end of 2012. 5. What to expect in 2012-2013 Planning ahead is difficult due to the unclear situation regarding the revision of the Eurodac Regulation. One development which can already be foreseen is the transfer of the management of Eurodac from the Commission to the newly established Agency for the operational management of large-scale IT systems in the Area of Freedom, Security and Justice. 9 While this transfer which is supposed to take place when the Agency will start operational work, currently scheduled for December 2012 will not affect other legal aspects, it is still an important development. In order to provide a certain amount of planning, the Group decided to amend and extend the 2010-2011 work programme to also include the year 2012. Planned activities include the following: o Ongoing work on the methodology for a security audit, which should be finished in 2012; o A coordinated inspection on the issue of unreadable fingerprints; o A repetition of the stakeholder outreach meeting. However, some of the activities envisaged in the programme had to be put on hold until the revision is adopted. For example, drafting information sheets that would quickly become obsolete after release would not be a wise use of the Group's resources, which is why this action has been frozen for the time being. As soon as a revision is adopted, these items will come back onto the agenda. 9 See Regulation (EU) N 1077/2011 of the European Parliament and of the Council of 25 October 2011 establishing a European Agency for the operational management of large-scale it systems in the area of freedom, security and justice, OJ L 286, 01/11/2011, P. 1-17. 7

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback