P6_TA-PROV(2007)0347 PNR Agreement

Similar documents
Having regard to the Treaty on the Functioning of the European Union, and in particular Article 16 thereof,

COMMUNICATION FROM THE COMMISSION. On the global approach to transfers of Passenger Name Record (PNR) data to third countries

EUROPEAN DATA PROTECTION SUPERVISOR

Recommendation for a COUNCIL DECISION

ARTICLE 29 Data Protection Working Party

LEGAL BASIS OBJECTIVES ACHIEVEMENTS

OPINION OF THE EUROPOL, EUROJUST, SCHENGEN AND CUSTOMS JOINT SUPERVISORY AUTHORITIES

SUMMARY OF THE IMPACT ASSESSMENT

EXECUTIVE SUMMARY. 3 P a g e

PE-CONS 71/1/15 REV 1 EN

Spring Conference of the European Data Protection Authorities, Cyprus May 2007 DECLARATION

EUROPEAN DATA PROTECTION SUPERVISOR

EUROPEAN PARLIAMENT. Committee on Civil Liberties, Justice and Home Affairs DRAFT RECOMMENDATION

LEGAL BASIS OBJECTIVES ACHIEVEMENTS

Table of content What is data protection? Why was is necessary? Beginnings of Data Protection Development of International Data Protection Data Protec

1. What sort of passenger information will be transferred to US authorities?

ARTICLE 29 Data Protection Working Party

ARTICLE 29 DATA PROTECTION WORKING PARTY

Opinion 6/2015. A further step towards comprehensive EU data protection

ARTICLE 29 DATA PROTECTION WORKING PARTY WORKING PARTY ON POLICE AND JUSTICE

Opinion of the European Data Protection Supervisor

***I DRAFT REPORT. EN United in diversity EN 2012/0010(COD)

With the current terrorist threat facing European Union Member States, including the UK

In the present analysis, we cover the most problematic points of the Directive. For our views on the Regulation, please go to our document pool.

How to read the analysis?

The European Union Agency for Fundamental Rights (FRA)

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 16 thereof,

Having regard to the opinion of the European Economic and Social Committee ( 1 ),

REGULATION (EC) No 767/2008 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL. of 9 July 2008

ARTICLE 29 Data Protection Working Party

Opinion of the Joint Supervisory Body of Eurojust regarding data protection in the proposed new Eurojust legal framework

The EU Passenger Name Record System and Human Rights

C 276/8 Official Journal of the European Union

COUNCIL OF THE EUROPEAN UNION. Brussels, 13 September 2011 (OR. en) 10093/11 Interinstitutional File: 2011/0126 (NLE)

Opinion 07/2016. EDPS Opinion on the First reform package on the Common European Asylum System (Eurodac, EASO and Dublin regulations)

Data protection and privacy aspects of cross-border access to electronic evidence

B. The transfer of personal information to states with equivalent protection of fundamental rights

Opinion 3/2017 EDPS Opinion on the Proposal for a European Travel Information and Authorisation System (ETIAS)

EUROPEAN PARLIAMENT COMMITTEE ON CIVIL LIBERTIES, JUSTICE AND HOME AFFAIRS

Committee on Civil Liberties, Justice and Home Affairs WORKING DOCUMENT 4

on the proposal for a Regulation of the European Parliament and of the Council concerning customs enforcement of intellectual property rights

RESTREINT UE. COMMISSION EUROPÉENNE Secrétariat général COM(2010) 252/2 Annexe au document COM(2010) 252 PO/2010/3091 RESTREINT UE

The modernised Convention 108: novelties in a nutshell

COMP Article 1. Article 1 Subject matter and objectives

Reflection paper on the interoperability of information systems in the area of Freedom, Security and Justice

14480/1/17 REV 1 MP/mj 1 DG D 2B LIMITE EN

Opinion. of the. European Union Agency for Fundamental Rights. on the. Proposal for a Directive on the use of

EUROPEAN DATA PROTECTION SUPERVISOR

EDPS Opinion on the proposal for a recast of Brussels IIa Regulation

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 11 January /07 Interinstitutional File: 2004/0287 (COD) LIMITE VISA 7 CODEC 32 COMIX 25

Counter-terrorism, De-Radicalisation and Foreign Fighters. Joint debate during the extraordinary meeting of the LIBE Committee. Giovanni Buttarelli

Committee on Civil Liberties, Justice and Home Affairs. on the Situation of fundamental rights in the European Union ( ) (2011/2069(INI))

29 October 2015 Conference of the Independent Data Protection Authorities of the Federation and the Federal States

The legal framework and guidance on data protection under the. Cross-border ehealth Information Services (CBeHIS) T6.2 JAseHN draft v.2 (20.10.

EUROPEAN DATA PROTECTION SUPERVISOR

Opinion 3/2016. Opinion on the exchange of information on third country nationals as regards the European Criminal Records Information System (ECRIS)

JAI.1 EUROPEAN UNION. Brussels, 8 November 2018 (OR. en) 2016/0407 (COD) PE-CONS 34/18 SIRIS 69 MIGR 91 SCHENGEN 28 COMIX 333 CODEC 1123 JAI 829

European Data Protection Supervisor Transparency in the EU administration: Your right to access documents

4. Future of Schengen

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 20 December /06 Interinstitutional File: 2004/0287 (COD) LIMITE

Council of the European Union Brussels, 2 December 2015 (OR. en)

EUROPEAN PARLIAMENT. Committee on Civil Liberties, Justice and Home Affairs

COMMISSION OF THE EUROPEAN COMMUNITIES

European Parliament resolution of 9 September 2010 on the situation of Roma and on freedom of movement in the European Union

AMENDMENTS EN United in diversity EN. European Parliament Draft report Claude Moraes (PE v02-00)

PARLIAMENT v COUNCIL AND COMMISSION. JUDGMENT OF THE COURT (Grand Chamber) 30 May 2006*

(Legislative acts) REGULATIONS REGULATION (EU) 2017/458 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL. of 15 March 2017

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 25 October /06 Interinstitutional File: 2004/0287 (COD) LIMITE

CONSULTATIVE COMMITTEE OF THE CONVENTION FOR THE PROTECTION OF INDIVIDUALS WITH REGARD TO AUTOMATIC PROCESSING OF PERSONAL DATA

Delegations will find the text of this Resolution in annex II and are invited to present their comments at the COPEN meeting of 28 May 2014.

Proposal for a Council Framework Decision on the European arrest warrant and the surrender procedures between the Member States (2001/C 332 E/18)

ARTICLE 29 DATA PROTECTION WORKING PARTY

ACTS ADOPTED UNDER TITLE VI OF THE EU TREATY

Opinion 3/2019 concerning the Questions and Answers on the interplay between the Clinical Trials Regulation (CTR) and the General Data Protection

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

(Vienna, 23 June 2004)

9837/09 YV/ml 1 DG H 3B

Schengen Joint Supervisory Authority Activity Report January 2004-December 2005

COUNCIL OF THE EUROPEAN UNION. Brussels, 27 November 2009 (OR. en) 16110/09 JAI 838 USA 101 RELEX 1082 DATAPROTECT 73 ECOFIN 805

PERSONAL DATA PROTECTION

DGD 1 EUROPEAN UNION. Brussels, 22 February 2017 (OR. en) 2015/0307 (COD) PE-CONS 55/16 FRONT 484 VISA 393 SIRIS 169 COMIX 815 CODEC 1854

The EDPS has limited the comments below to the provisions of the Proposal that are particularly relevant from a data protection perspective.

Privacy International's comments on the Brazil draft law on processing of personal data to protect the personality and dignity of natural persons

EUROPEAN DATA PROTECTION SUPERVISOR

Coordinated Supervision of Eurodac. Activity Report

EDPS Opinion 7/2018. on the Proposal for a Regulation strengthening the security of identity cards of Union citizens and other documents

TEXTS ADOPTED Provisional edition. European Parliament resolution of 14 March 2018 on the framework of the future EU- UK relationship (2018/2573(RSP))

AMENDMENTS EN United in diversity EN. European Parliament Draft motion for a resolution Claude Moraes (PE595.

Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

ADVANCE UNEDITED VERSION

Having regard to the Treaty establishing the European Community, and in particular its Article 286,

Adequacy Referential (updated)

VISA LIBERALISATION WITH SERBIA ROADMAP

EUROPEAN DATA PROTECTION SUPERVISOR

EDPS respomse to the Commission public consultation on lowering tfiie fingerprinting âge for children in the visa procédure from 12 years to 6 years

COMMISSION STAFF WORKING PAPER IMPACT ASSESSMENT. Accompanying document to the. Proposal for a EUROPEAN PARLIAMENT AND COUNCIL DIRECTIVE

Tony Bunyan May Interoperability: the point of no return 1

Council of the European Union General Secretariat Directorate-General Communication and Information Knowledge Management Transparency Head of Unit

COUNCIL OF THE EUROPEAN UNION. Brussels, 29 October /09 JAIEX 79 RELEX 981 ASIM 114 CATS 112 JUSTCIV 224 USA 93 NOTE

SUBSIDIARY LEGISLATION DATA PROTECTION (PROCESSING OF PERSONAL DATA IN THE POLICE SECTOR) REGULATIONS

Transcription:

P6_TA-PROV(2007)0347 PNR Agreement European Parliament resolution of 12 July 2007 on the PNR agreement with the United States of America The European Parliament, having regard to Article 6 of the Treaty on European Union, Article 8 of the Charter of Fundamental Rights of the European Union and Article 8 of the European Convention for the Protection of Human Rights and Fundamental Freedoms, having regard to its resolutions on PNR of 7 September 2006 1 and of 14 February 2007 2, having regard to the previous PNR agreements between the European Community and the United States of America of 28 May 2004 and between the European Union and the United States of America of 19 October 2006, having regard to the draft agreement of 28 June 2007 between the European Union and the United States of America on the processing and transfer of PNR data by air carriers to the United States Department of Homeland Security (DHS), informally transmitted by the President-in-Office of the Council, Minister Wolfgang Schäuble, to the Chair of the Committee on Civil Liberties, Justice and Home Affairs, having regard to the judgment of 30 May 2006 of the Court of Justice in Joined Cases C-317/04 and C-318/04, having regard to the letter from the DHS of 28 June 2007 on the assurances explaining its safeguarding of PNR data, informally transmitted by the President-in- Office of the Council, Mr Schäuble, to the Chair of the Committee on Civil Liberties, Justice and Home Affairs, having regard to the letter from the European Data Protection Supervisor of 27 June 2007, concerning the new PNR agreement with the US ('the new PNR agreement'), addressed to the President-in-Office, Mr Schäuble, and the responses he received from Mr. Schäuble and from Jonathan Faull, Director-General of the Justice Liberty and Security Directorate-General of the Commission of 29 June and 3 July 2007, respectively having regard to Article 2 of the Council of Europe's Additional Protocol to the Convention for the Protection of Individuals with regard to Automatic Processing 1 2 OJ C 305 E, 15.12.2006, p. 250. Texts Adopted, P6_TA(2007)0039.

of Personal Data, regarding supervisory authorities and transborder data flows, having regard to Council Directive 2004/82/EC of 29 April 2004 on the obligation of carriers to communicate passenger data, having regard to Rule 103(2) of its Rules of Procedure, A. whereas the declared purpose of the new PNR agreement is to provide a legal basis for the transfer of EU PNR data to the US on the one hand, and to ensure an adequate protection of personal data and procedural safeguards for EU citizens on the other, B. whereas the new PNR agreement is meant to help prevent and combat terrorism and international crime, C. whereas the new PNR agreement fails to meet the second objective, as it is substantively flawed in terms of legal certainty, data protection and legal redress for EU citizens, in particular as a result of open and vague definitions and multiple possibilities for exceptions, D. whereas the new PNR agreement provides the legal framework for the transfer of EU PNR data to the US and, by doing so, provides a basis for the air carriers to operate their business in the US, E. whereas adequate protection of the privacy and civil liberties of individual citizens and data quality controls are necessary if the sharing of data and information is to be a valuable and reliable tool in the fight against terrorism, General 1. Recognises the difficult conditions under which the PNR negotiations took place, and acknowledges, in principle, the benefit of having a single EU-US PNR agreement rather than 27 bilateral agreements between the Member States and the US; 2. Strongly regrets the lack of democratic oversight of any kind, as the new PNR agreement, prompted by US requirements, has been negotiated and agreed without any involvement of the European Parliament and leaving insufficient opportunity for national parliaments to exercise any influence over the negotiating mandate, to thoroughly assess the proposed new PNR agreement, or to propose modifications to it; 3. Is concerned at the persistent lack of legal certainty as regards the consequences and scope of the obligations imposed on the airlines as well as the legal relationship between the new PNR agreement and the DHS letter; 4. Criticises the failure of the new PNR agreement to offer an adequate level of protection of PNR data, and regrets the lack of clear and proportionate provisions

as regards the sharing of information and retention and supervision by data protection authorities; is concerned about the numerous provisions that are to be implemented at the discretion of the DHS; 5. Calls, therefore, on the national parliaments of the Member States to examine the draft new PNR agreement carefully in the light of the observations made in this resolution; As regards the legal framework 6. Is concerned that the DHS's handling, collection, use and storage of PNR data is not founded on a proper agreement, but only on non-binding assurances that can be unilaterally changed by the DHS at any given moment and that do not confer any rights or benefits on any person or party; 7. Regrets the lack of clear purpose-limitation given in the DHS letter, which notes that the PNR data may be used for the fight against terrorism and related crimes, but also for a range of unspecified additional purposes, notably 'for the protection of the vital interests of the data subject or other persons, or in any criminal judicial proceedings, or as otherwise required by law'; 8. Welcomes the willingness of the DHS to move to the PUSH system no later than 1 January 2008 in principle, but regrets the fact that the shift already foreseen in the 2004 PNR agreement has been delayed for years, even though the condition of technical feasibility has long since been met; believes that the PUSH system for all carriers should be a sine qua non for PNR transfers; stresses that the concurrent existence of the 'PUSH' and 'PULL' systems could lead to a distortion of competition between EU carriers; 9. Insists that the joint periodic review by the DHS and the EU must be comprehensive and take place annually and that the results must be published; insists that the review must include an assessment of the effectiveness of the measures in terms of greater security; regrets the fact that the review does not provide for any involvement of national or European data protection supervisors, which was provided for under the previous PNR agreement; 10. Insists that passengers must be properly informed of the use of their data and their rights, especially the right to redress and the right to be informed on what basis a traveller is stopped, and that this obligation rests with the airlines; believes that the DHS and the Commission must take responsibility for the information provided to passengers and proposes that the 'Short notice for travel between the European Union and the United States' suggested by the Article 29 Working Party (WP 132) be made available to all passengers; 11. Regrets the fact that the EU negotiations with the US took no account of Directive 2004/82/EC or of the EU's PNR agreements with Australia and Canada, which ensure higher standards of protection of personal data;

12. Recalls that the administrative agreement concluded between the EU and the US must not have the effect of reducing the level of protection of personal data assured by Member States' national legislation, and regrets that it will create further confusion as to the obligations of EU airlines and the fundamental rights of EU citizens; As regards data protection 13. Welcomes the provision that the US Privacy Act will be extended administratively to EU citizens; 14. Regrets the fact that the DHS reserves the right to introduce exemptions under the Freedom of Information Act; 15. Regrets the failure of the new PNR agreement to lay down precise criteria for the definition of the protection of personal data transferred to the DHS which could be considered adequate according to EU standards; 16. Deplores, in this respect, the fact that EU citizens' PNR data are to be treated solely according to US law, without an adequacy assessment or any indication of the specific US legislation applicable; 17. Deplores the fact that the length of retention of PNR data will be extended from 3.5 years to 15 years, as well as this being retroactively applied to data collected under the previous PNR agreements; strongly criticises the fact that after the 15-year retention period, consisting of a 7-year 'active' and an 8-year 'dormant' period, there is no guarantee that the data will be definitively deleted; 18. Takes note of the reduction in data fields from 34 to 19, but points out that the reduction is largely cosmetic due to the merging and renaming of data fields instead of actual deletions; 19. Notes with concern that sensitive data (i.e. personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, and data concerning the health or sex life of individuals), will be made available to the DHS and that these data may be used by the DHS in exceptional cases; 20. Is concerned that data will be kept for seven years in 'active analytical databases', leading to a significant risk of massive profiling and data mining, which is incompatible with basic European principles and is a practice still under discussion in the US Congress; As regards sharing of information 21. Regrets the failure of the new PNR agreement to define precisely which US

authorities may access the PNR data; 22. Is concerned at the envisaged transfer of analytical information flowing from PNR data from the US authorities to police and judicial authorities in the Member States, and possibly to Europol and Eurojust, outside the framework of specific judicial procedures or police investigations, as mentioned in the DHS letter, since this should only be allowed in accordance with the existing EU-US agreements on mutual legal assistance and extradition; 23. Strongly opposes the provision that third countries in general may be given access to PNR data if adhering to DHS-specified conditions, and that third countries may exceptionally, in unspecified emergency cases, be given access to PNR data without assurances that the data will be handled according to the DHS level of data protection; 24. Regrets the fact that the EU has accepted 'not to interfere' with regard to the protection of EU citizens' PNR data that may be shared by the US with third countries; 25. Notes that the new PNR agreement allows the DHS to provide PNR data to other US domestic governmental authorities in relation to specific cases and in proportion to the nature of the case; regrets that the new PNR agreement lacks any indication as to which US authorities may access the PNR data and that the purposes set out in Article I of the DHS letter are very broad; As regards a European PNR system 26. Notes that the new PNR agreement makes reference to a possible future PNR system at the level of the EU or in one or more of its Member States, and the provision that any PNR data in such a system may be made available to the DHS; 27. Demands that the Commission clarify the state of play with regard to an EU PNR system, including making available the feasibility study it has pledged to undertake; 28. Repeats the concerns expressed by the Article 29 Working Party as regards the use of PNR data for law enforcement purposes, notably calling on the Commission to substantiate: a) the operational need and purpose of collecting PNR data at the point of entry into EU territory; b) the added value of collecting PNR data in the light of the already existing control measures at the point of entry into the EU for security purposes, such as the Schengen system, the Visa Information System, and the API system; c) the use that is envisaged for PNR data, in particular whether it is for identifying individuals in order to ensure air security, for identifying who

enters the territory of the EU, or for general negative or positive profiling of passengers; 29. Insists that Parliament be involved, pursuant to Articles 71(1)(c) and 251 of the Treaty establishing the European Community, in all relevant developments; 30. Recalls that the new PNR agreement will eventually have to be reviewed in the light of future EU institutional reforms, as outlined in the conclusions of the European Council of June 2007 and in the mandate for the next IGC; 31. Intends to seek a legal appraisal of the new PNR agreement for conformity with national and EU legislation, and invites the Article 29 Working Party and the European Data Protection Supervisor to present comprehensive opinions in this respect; o o o 32. Instructs its President to forward this resolution to the Council, the Commission, the governments and parliaments of the Member States, and the US Congress.

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback