Data Protection in the European Union: the role of National Data Protection Authorities Strengthening the fundamental rights architecture in the EU II

Similar documents
National Human Rights Institutions in the EU Member States Strengthening the fundamental rights architecture in the EU I

European Union Passport

2. The table in the Annex outlines the declarations received by the General Secretariat of the Council and their status to date.

Identification of the respondent: Fields marked with * are mandatory.

Fertility rate and employment rate: how do they interact to each other?

European patent filings

Timeline of changes to EEA rights

Q&A on the European Citizens' Initiative

Factsheet on rights for nationals of European states and those with an enforceable Community right

112, the single European emergency number: Frequently Asked Questions

THE RECAST EWC DIRECTIVE

IPEX STATISTICAL REPORT 2014

The Ombudsman's synthesis The European Ombudsman and Citizens' Rights

Europe divided? Attitudes to immigration ahead of the 2019 European elections. Dr. Lenka Dražanová

TISPOL PERSPECTIVES TO THE EUROPEAN ROAD SAFETY HOW TO SAVE LIVES AND REDUCE INJURIES ON EUROPEAN ROADS?

Limited THE EUROPEAN UNION, hereinafter referred to as the "Union" THE KINGDOM OF BELGIUM, THE REPUBLIC OF BULGARIA, THE CZECH REPUBLIC,

Second EU Immigrants and Minorities, Integration and Discrimination Survey: Main results

EU Main economic achievements. Franco Praussello University of Genoa

The Markets for Website Authentication Certificates & Qualified Certificates

EUROPEAN UNION. What does it mean to be a Citizen of the European Union? EU European Union citizenship. Population. Total area. Official languages

3.1. Importance of rural areas

INVESTING IN AN OPEN AND SECURE EUROPE Two Funds for the period

8193/11 GL/mkl 1 DG C I

Factual summary Online public consultation on "Modernising and Simplifying the Common Agricultural Policy (CAP)"

The Intrastat System

Extended Findings. Finland. ecfr.eu/eucoalitionexplorer. Question 1: Most Contacted

Consultation on Remedies in Public Procurement

N o t e. The Treaty of Lisbon: Ratification requirements and present situation in the Member States

Use of Identity cards and Residence documents in the EU (EU citizens)

Size and Development of the Shadow Economy of 31 European and 5 other OECD Countries from 2003 to 2013: A Further Decline

INFORMATION LEAFLET - Cross-border placement of children Placement of children abroad by German courts and authorities general advice

EUROPEAN UNION CURRENCY/MONEY

CONSUMER PROTECTION IN EU ONLINE GAMBLING REGULATION

EU Regulatory Developments

Europe in Figures - Eurostat Yearbook 2008 The diversity of the EU through statistics

Reference Title Dates Organiser(s) 00/2007 Train the Trainers Learning Seminar Step February 2007 Portugal 01/2007 Crime, Police and Justice in

IMMIGRATION, ASYLUM AND NATIONALITY ACT 2006 INFORMATION FOR CANDIDATES

Directorate General for Communication Direction C - Relations avec les citoyens PUBLIC OPINION MONITORING UNIT 27 March 2009

Territorial indicators for policy purposes: NUTS regions and beyond

The diversity of Agricultural Advisory Services in Europe

GALLERY 5: TURNING TABLES INTO GRAPHS

Delegations will find attached Commission document C(2008) 2976 final.

IMMIGRATION, ASYLUM AND NATIONALITY ACT 2006 INFORMATION FOR CANDIDATES

The benefits of a pan-european approach: the EU and foreign perspective from the Netherlands point of view

CLASSIFICATION/CATEGORISATION SYSTEMS IN AGENCY MEMBER COUNTRIES

Asylum Trends. Appendix: Eurostat data

Asylum Trends. Appendix: Eurostat data

Asylum Trends. Appendix: Eurostat data

Asylum Trends. Appendix: Eurostat data

Brexit. Alan V. Deardorff University of Michigan. For presentation at Adult Learning Institute April 11,

THE EUROPEAN COURT OF HUMAN RIGHTS IN FACTS & FIGURES

Flash Eurobarometer 430. Summary. European Union Citizenship

EU Settlement Scheme Briefing information. Autumn 2018

Public consultation on a European Labour Authority and a European Social Security Number

Eurostat Yearbook 2006/07 A goldmine of statistical information

NEGOTIATIONS ON ACCESSION BY BULGARIA AND ROMANIA TO THE EUROPEAN UNION

The evolution of turnout in European elections from 1979 to 2009

REPORT FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT, THE COUNCIL, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE AND THE COMMITTEE OF THE REGIONS

Supporting families with no recourse to public funds

EMPLOYMENT OF PERSONS WHO DO NOT MEET CIVIL SERVICE NATIONALITY REQUIREMENTS

Institutions of the European Union and the ECHR - An Overview -

UNDER EMBARGO UNTIL 9 APRIL 2018, 15:00 HOURS PARIS TIME

The EU Visa Code will apply from 5 April 2010

Visas and volunteering

Migration, Mobility and Integration in the European Labour Market. Lorenzo Corsini

A. The image of the European Union B. The image of the European Parliament... 10

Introduction. The European Arrest Warrant Act 2003 The European Arrest Warrant Act 2003 came into operation on 1 January 2004.

Flash Eurobarometer 364 ELECTORAL RIGHTS REPORT

9 th International Workshop Budapest

GUARANTOR'S UNDERTAKING GUARANTEE

Prevention of Illegal Working Guidance on the Immigration, Asylum and Nationality Act 2006

Asylum Trends. Appendix: Eurostat data

Hungarian Residency Bond Program

Succinct Terms of Reference

REPORT. On the operation of the European Arrest Warrant Act (as amended) in the year 2015 made to the Houses of the

Options for Romanian and Bulgarian migrants in 2014

REPORT FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT, THE COUNCIL, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE AND THE COMMITTEE OF THE REGIONS

ASYLUM IN THE EU Source: Eurostat 4/6/2013, unless otherwise indicated ASYLUM APPLICATIONS IN THE EU27

Introduction to the European Agency. Cor J.W. Meijer, Director. European Agency for Development in Special Needs Education

Asylum Trends. Appendix: Eurostat data

Asylum Trends. Appendix: Eurostat data

Group of Administrative Co-operation Under the R&TTE Directive

Proposal for a new repartition key

COMMISSION IMPLEMENTING DECISION. of establishing the list of supporting documents to be presented by visa applicants in Ireland

For example, some EU countries would cooperate in the areas of:

COMMISSION IMPLEMENTING DECISION. of

The regional and urban dimension of Europe 2020

September 2012 Euro area unemployment rate at 11.6% EU27 at 10.6%

COMMISSION IMPLEMENTING DECISION. of

The Belgian industrial relations system in a comparative context. David Foden Brussels, October 25th 2018

Work-life balance, gender inequality and health outcomes

HOW EQUIPPED ARE THE EUROPEAN WELFARE STATES FOR THE DIGITAL TRANSFORMATION?

Population and Migration Estimates

COMMISSION IMPLEMENTING DECISION. of

ENISA Workshop December 2005 Brussels. Dr Lorenzo Valeri & Neil Robinson, RAND Europe

EU-CHINA INTERNATIONAL SEMINAR ON TRADEMARK LAW. João Miranda de Sousa Head of IP

TRIPS OF BULGARIAN RESIDENTS ABROAD AND ARRIVALS OF VISITORS FROM ABROAD TO BULGARIA IN AUGUST 2016

TRIPS OF BULGARIAN RESIDENTS ABROAD AND ARRIVALS OF VISITORS FROM ABROAD TO BULGARIA IN MAY 2017

WALTHAMSTOW SCHOOL FOR GIRLS APPLICANTS GUIDE TO THE PREVENTION OF ILLEGAL WORKING

TRIPS OF BULGARIAN RESIDENTS ABROAD AND ARRIVALS OF VISITORS FROM ABROAD TO BULGARIA IN AUGUST 2015

Transcription:

European Union Agency for Fundamental Rights (FRA) MEMO / 7May 2010 Data Protection in the European Union: the role of National Data Protection Authorities Strengthening the fundamental rights architecture in the EU II 72% of European citizens remain unaware of the existence of their national data protection authority. 1 People in the European Union are increasingly concerned about the protection of their data. Improvements need to take place concerning the independence, effectiveness, resources and powers of data protection authorities. The data protection system depends on the public trust, and of course knowledge, of these authorities. Morten Kjaerum, FRA Director National Data Protection Authorities The EU plays a pioneering role in the protection of personal data. The Charter of Fundamental Rights of the EU enshrines the right to data protection as an autonomous fundamental right. In most other international human rights treaties and declarations, data protection is understood only as an extension of the right to privacy. Despite the underlying importance and centrality of the right to data protection in the EU, many deficiencies are present in the data protection system. This study on data protection identifies deficiencies in the EU Member States. The data protection study presents a comparative overview and analysis of the national data protection authorities. This comparative report was developed on the basis of the 27 national studies produced by the FRALEX research network of legal experts. In the section on rights awareness, results from the Eurobarometer and other studies/surveys carried out in the Member States are presented to provide an overview of rights awareness among the public with regard to data protection. 1

KEY RESULTS Rights Awareness The Data Protection Directive regulates the processing of personal data within the European Union.. Article 8 of the Charter of Fundamental Rights of the European Union expressly recognises the fundamental right to the protection of personal data. Data protection authorities play a crucial role in enabling people within the EU to access their right to data protection. 7 in every 10 respondents to a recent Eurobarometer 1 survey were not aware that there was a data protection authority in their country. The involvement of the data protection authorities in raising rights awareness was found to be generally positive. In Estonia and Romania, however, the data protection authorities have been less involved in raising rights awareness. In Lithuania, Bulgaria and Slovakia, the data protection authorities have not yet set up user-friendly and/or comprehensive and updated web sites where information relating to data protection can be accessed. Limited powers Data protection authorities are often not equipped with full powers of investigation and intervention or the capacity to give legal advice or engage in legal proceedings. In Austria, Hungary and Poland the data protection authorities cannot enforce their decisions and compel the data processor/controller to end his or her unlawful conduct. In Belgium, and Germany, the data protection authorities cannot order the blocking, erasure, or destruction of data, nor can they impose a temporary or definite ban on processing. In the UK, the data protection authority cannot bring a case directly before court and/or make a determination itself as to the merits of the claim. Data protection authorities may only negotiate amicable solutions with those found in violation of data protection laws and cannot initiate court proceedings leading to sanctions or compensation. 1 Data Protection in the European Union: Citizen s Perceptions, Analytical Report. Flash Eurobarometer No. 225 (February 2008), page 34. 2

Good practice examples Slovenia: the data protection authority may challenge the constitutionality of legislation in front of the Constitutional court. This serves to stress its independence and importance. Ireland: domestic legislation gives the national data protection authority the power to propose and prepare sector-specific codes of practice, which if approved by the legislature will have binding effect. Hungary: in 2004 the staff of the national data protection authority, in cooperation with the Hungarian Civil Liberties Union, tested several public health premises to ascertain whether HIV tests were in fact facilitated anonymously and free of charge as announced. Figure 1: Powers to hear claims and engage in legal proceedings Member State Hear and review claims or complaints Refer the case to the police or the judicial authority Bring directly the case in front of the judicial authority Take directly a decision about the claim Refer the matter to national Parliaments Bulgaria X X X X Belgium X X X X X Czech Republic X X X X Denmark X X X Germany X X X 2 X 3 X Estonia X X X Greece X X X X Spain X X X France X X X X Ireland X X Italy X X X X Cyprus X X X Latvia X X X Lithuania X X X X 2 This observation does not concern the Federal Commissioner for Data Protection in Germany, but the data protection authorities at Länder level. 3 This observation does not concern the Federal Commissioner for Data Protection in Germany, but the data protection authorities at Länder level. 3

Luxembourg X X X X Hungary X X X Malta X X X X X Netherlands X X X Austria X X X Poland X X X Portugal X X X Romania X X X X Slovenia X X X X Slovakia X X X X Finland X X X X X Sweden X X X United Kingdom X X Lack of compliance In many Member States there is a widespread disregard for the basic duty to register with the data protection authority prior to engaging in data processing operations. In Austria, Bulgaria, France, Lithuania, the Czech Republic and Sweden the vast majority of surveillance cameras are not registered in practice and thus are not under the supervision and control of data protection authorities. Lack of independence The lack of independence from the government of several of the data protection authorities in the EU presents a major problem for their credibility. In Lithuania, Latvia, Estonia, Ireland, and the United Kingdom concerns were raised about the capability of the officers of data protection authorities to perform their task autonomously. This was often because of the procedure by which officers are nominated or appointed. In Ireland, the government can directly remove the data protection commissioners from office. Legislative reform modifying the nomination/appointment procedure of the data protection officers could rectify the problem of lack of independence. 4

Lack of financial resources and staff In Austria, Bulgaria, Romania, Cyprus, France, Greece, Italy, Latvia, the Netherlands, Portugal, and Slovakia, data protection authorities are unable to carry out the entirety of their tasks because of the limited economic and human resources available to them. Increased financial and human resources for the data protection authorities is required. Lack of sanctions and compensation In Germany, Latvia, the Netherlands, Poland, the UK, Austria, France and Hungary prosecutions and sanctions for violations of data protection laws are limited. Compensation from private entities in data protection cases exists in theory but not in practice in Finland, Ireland, the Netherlands, the UK, Cyprus, Malta, Poland, Latvia, Estonia, and Sweden. Factors such as the burden of proof being on the complainant, difficulties relating to quantification of damage and the lack of support from data protection authorities make seeking compensation for the violation of data protection rights very difficult. Legislative reform is needed to give data protection authorities an active role in procedures which lead to sanctions and compensation. Where data protection authorities have the relevant powers, they need the resources to effectively use them. The system of compensation also needs to be simplified to facilitate litigation, by measures such as lump sum compensation (where a litigant does not need to prove the nature and extent of the damage, just the violation of the law) 5

Notes to editors Key terms Data protection authority: authority responsible for monitoring the application of the national legislation transposing the EU Data Protection Directive 95/46/EC Data controller: the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data. Data processor: the natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller. This report is part of a series of reports by the FRA on Strengthening the Fundamental Rights Architecture in the EU. This ongoing series looks at the mechanisms available for the redress of human rights violations in the EU, highlighting good practices and recommending areas for improvement. Other reports in the series include: National Human Rights Institutions in the EU Member States Strengthening the fundamental rights architecture in the EU I EU-MIDIS Data in Focus Report: Rights Awareness and Equality Bodies Strengthening the fundamental rights architecture in the EU III The Impact of the Racial Equality Directive: Views of Trade Unions and Employers in the European Union Strengthening the fundamental rights architecture in the EU IV For more information please contact the FRA Media Team: Email : media@fra.europa.eu Tel. : +43 1 58030-671 Mob.: +43 664 8858 1511 (Blanca Tapia) All FRA reports are available at www.fra.europa.eu 6

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback