Data protection in Community institutions and bodies

LEGISLATIVE ACT : Council Decision 2004/644/EC adopting implementing rules concerning Regulation 45/2001/EC of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data by the Community institutions and bodies and on the free movement of such data.

CONTENT : Regulation 45/2001/EC sets out the principles and rules applicable to all Community institutions and bodies and provides for the appointment by each Community institution and Community body of the Data Protection Officer. This Decision lays down further implementing rules concerning Regulation 45/2001/EC as regards the Council of the EU. It defines the tasks, duties and powers of the Data Protection Officer. It also specifies the procedures for the exercise of rights of the data subjects.

The Deputy Secretary-General of the Council appoints the DPO and registers him with the European Data Protection Supervisor. The DPO is directly attached to the Deputy Secretary-General of the Council.

The term of office of the DPO is three years and is renewable twice.

ENTRY INTO FORCE : 22/09/2004.