/ Basic info / Legal instruments / Annual Reports / Forum / News / Internet & Privacy / Contacts / Links
NEWS AND EVENTS

On this page you will find the news and events concerning privacy protection and data protection activities

  • 2016.05.11-12

18TH MEETING OF THE CENTRAL AND EASTERN EUROPE DATA PROTECTION AUTHORITIES

The 18th Meeting of the Central and Eastern Europe Data Protection Authorities was held on 11-12 May 2016 in Sarajevo, Bosnia and Herzegovina.

The host of the meeting was the Personal Data Protection Agency in Bosnia and Herzegovina.

At the meeting the Declaration on the new member of the group of Central and Eastern European Data Protection Commissioners was adopted under which the Armenian Personal Data Protection Agency was accepted as member of CEEDPA

The CEEDPA members decided that the 19th CEEDPA meeting will be held in 2017 in Georgia.


  • 2015.05.18-20

2015.05.18-20 EUROPEAN CONFERENCE OF DATA PROTECTION AUTHORITIES

From 18 to 20 May 2015, the UK's Information Commissioner's Office will host the European Conference of Data Protection Authorities, which will take place in Manchester.

The Conference will focus on delivering rights for individuals, with a clear and practical call to action. The aim should be to ensure that individuals are able to easily exercise their rights.

Registration for the conference will close on 10 April 2015. The event is open to members of accredited data protection authorities and observers, and will be an opportunity for delegates to address subjects of common interest and help advance the fundamental right to data protection.

To register for the conference: https://eurospringconference.wordpress.com/registration/

For more information: https://eurospringconference.wordpress.com/


  • 2015.04.29-30

17th MEETING OF THE CENTRAL AND EASTERN EUROPE DATA PROTECTION AUTHORITIES

The 17th Meeting of the Central and Eastern Europe Data Protection Authorities will be held on 29-30 April 2015 in Durrës, Albania. The host of the meeting will be the Albanian Information and Data Protection Commissioner (IDP). For more information please visit http://www.idp.al/.


  • 2014.04.2-3

16th MEETING OF THE CENTRAL AND EASTERN EUROPE DATA PROTECTION AUTHORITIES

The 16th Meeting of the Central and Eastern Europe Data Protection Authorities was organised in Skopje, the Republic of Macedonia on 2-3 April 2014. The host of the meeting was the Directorate for Personal Data Protection in Macedonia. Representatives of 14 Data Protection Authorities from Central and Eastern Europe, i.e. Albania, Bulgaria, Czech Republic, Montenegro, Macedonia, Hungary, Serbia, Poland, Romania, Slovakia, Slovenia, Bosnia and Herzegovina, Georgia, Moldova, as well as representatives of the Council of the EU participated in the meeting.

Two declarations were adopted by CEEDPA members. The first one was the Declaration on the new member of the group of Central and Eastern European Data Protection Commissioners under which the Office of the Personal Data Protection Inspector from Georgia was accepted as member of CEEDPA. The second one was the Declaration on mutual assistance and enhanced cooperation, which was aimed at expressing the joint need for strengthening cooperation and marking the current state of works on change of the EU data protection framework.

The CEEDPA members decided as well that the 17th CEEDPA meeting will be held in 2015 in Albania, and the 18th meeting will be organised in 2016 in Bosnia and Herzegovina.

Files to download:
Declaration on new member of CEEDPA
Declaration on mutual assistance and enhanced cooperation

  • 2013.06.10-12

15th MEETING OF THE CENTRAL AND EASTERN EUROPE DATA PROTECTION AUTHORITIES

The 15th Meeting of the Central and Eastern Europe Data Protection Authorities was held in Belgrade (Serbia) on 10-12 June 2013. Representatives of personal data authorities from 14 Central and Eastern Europe participated in the meeting, including: Albania, Bosnia and Herzegovina, Bulgaria, Hungary, Republic of Macedonia, Poland, Russia, Slovakia, Slovenia, Serbia, Ukraine, Croatia, Montenegro and Czech Republic.

The meeting addressed three groups of issues, for which the representatives of personal data protection authorities presented experiences in work in their states. These include: data safety, data processing in the field of employment and independence of personal data protection authorities and the challenges they face.

In the first session on data safety, two types of topics were addressed. The first pertained to new tendencies of personal data processing in the public sector, particularly in the sphere of electronic processing and assessment of their impact on privacy. The second dealt with examples of data safety breaches in the practice of personal data protection in various countries. Regarding the first group of topics, the prevailing attitude in the discussion was that dissemination of electronic means of processing, particularly in the public sector, must take into account the highlighted safety issues and they must be approached absolutely restrictively, taking into account the relevant EU documents in this field. As regards the presented examples of personal data breaches, the conclusion was they were similar in all Central and Eastern Europe countries, mostly due to the fact that appropriate safeguards were not implemented. Failure to implement relevant safety measures is as a rule the result of inappropriate organizational and human resource measures (the so-called human factor) and from the lack of implementation of relevant safety standards by data controllers.

In the second session on data processing in the field of employment, participants discussed various employee control modalities, consequences of the use of information and communication technologies for rights of data subjects, particularly from the aspect of the protection employer's legitimate interest and the protection of the right to dignity of employees. The participants discussed the issue of testing candidates in the employment and recruitment processes and concluded the only acceptable exception was in cases when previous personality or capability checks are necessary, the need for which could be assessed depending on the field of employment and risks. The participants agreed that the concept of "consent" to personal data processing in the field of employment is not acceptable the way it is in other fields, where it is clear that consent is freely given.

In the third session on independence of personal data protection authorities and the challenges their face, the first issue discussed was independence of authorities. In this context, the participants concluded that different arrangements were in place to ensure independence both from executive and legislative power and that in some situations initiatives were taken to separate independent authorities from the executive arm of the government. The discussion on the challenges independent authorities face focused on the issues of transborder transfer of data, video surveillance of public areas and hate speech, especially in the media. The participants in the discussion noted that independence of personal data protection authorities is not and cannot be unlimited, which means that these authorities cannot be beyond the reach of the law and be exempted from control. Quite the opposite: their independence means they should be organisationally and functionally separate from public administration and other public authorities, the operations of which they must control.

On current issues, it was agreed that the next, 16th Meeting of the Central and Eastern Europe Data Protection Authorities will be held on 2014. in the Republic of Macedonia. Furthermore, the representatives of data protection authorities of Hungary and Bosnia and Herzegovina have expressed their willingness to organise the 17th Meeting of the Central and Eastern Europe Data Protection Authorities, which should be held in 2015, but this issue will be decided next year at the meeting in the Republic of Macedonia.

It was also agreed that the Russian Federation, which has observer status in the group of Central and Eastern Europe Data Protection Authorities, admitted to full membership.


  • 2012.05.21-22

14th MEETING OF THE CENTRAL AND EASTERN EUROPE DATA PROTECTION AUTHORITIES

The 14th Meeting of the Central and Eastern Europe Data Protection Authorities was held on 21-22 May 2012 in Kyiv (Ukraine).
The host of the Meeting was Mr. Oleksiy MERVINSKIY, Head of the State Service of Ukraine on Personal Data Protection.
The meeting was attended by representatives of Data Protection Authorities from Poland, Ukraine, Czech Republic, Serbia, Macedonia, Slovenia, Estonia, Montenegro, Russia, Hungary, Moldova, Bulgaria and Albania.
Two declarations were adopted by CEEDPA members.

The first one was the Declaration on the new members of the group of Central and Eastern European Data Protection Commissioners under which the data protection commissioners of Bosnia and Herzegovina as well as Montenegro were accepted as members of CEEDPA.

In the second declaration, the Central and Eastern Europe Data Protection Commissioners declared their support for the European data protection reform.
The CEEDPA members decided as well that the 15th CEEDPA meeting will be held in 2013 in Serbia, and the 16th meeting will be organised in 2014 in Macedonia.

Files to download:


  • 2011.04.28-29

13th MEETING OF THE CENTRAL AND EASTERN EUROPE DATA PROTECTION AUTHORITIES

The 13th annual Meeting of the Central and Eastern Europe Data Protection Authorities will take place on 28 and 29 April 2011 in Budapest.

The host of the Meeting will be Dr. Andr�s J�ri, the Parliamentary Commissioner for Data Protection and Freedom of Information.


  • 2010.05.17-19

The 12th Meeting of the Central and Eastern Europe Data Protection Commissioners, hosted by the Inspector General for Personal Data Protection, took place on 17- 20 May 2010 in the Polish seaside resort of Sopot. For the first time, the meeting was attended by delegations from Albania and Moldova. During the Meeting, the new participants presented the national data protection legislation as well as the role and operation of data protection authorities they represented. Other participants presented the most important events which took place in their respective countries after the last Meeting in 2009. Sessions held during the Meeting concentrated on data protection in employment relationships and on the challenges posed by the rapid evolution of electronic media. Furthermore, new possibilities for cooperation between data protection authorities of Central and Eastern Europe with regard to new challenges to data protection were presented.

Two declarations were adopted during the meeting:

The first one concerned further cooperation and support for the new members of the Group. The declaration expressed satisfaction with the participation of Albania and Moldova and invited newly created authorities from other countries, where the works on data protection legislation are just beginning, to cooperate. The second one referred to the works on amending the Directive 95/46/EC of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data. The data protection commissioners declared a will to participate in the works on the new regulatory framework for personal data protection in the European Union. It has also been decided that the next Meeting of the Central and Eastern Europe Data Protection Commissioners shall take place next year in Hungary.


  • 2009.06.2-4

The 11th Meeting of Data Protection Commissioners of the CEEDP Member States, Romania

The challenges which data protection authorities need to face due to the development of new technologies were the principal subject of the 11th Meeting of Personal Data Protection Commissioners from Central and Eastern European Countries, held on June 2-4 2009 in Sinaia, Romania, organised by the Romanian National Supervisory Authority For Personal Data Processing.

The participants of the meeting concentrated on the security of data of users of modern IT tools such as internet fora or social networking sites. The issue of protection of data in different kinds of large databases, such as credit information system, was also analysed. Another discussion concerned the protection of personal data of employees and the development of biometry (e.g. its use in the new identification cards).

It has also been decided that the next meeting, in 2010, shall take place in Poland.


  • 2008.06.1-4

Central and Eastern European Data Protection Authorities (CEEDPA) - an international forum allowing the DPAs from Central and Eastern European Countries to exchange their unique experiences in the field of data protection - held its 10th meeting, of which I was a host, on June 1st-4th in Kazimierz Dolny, Poland.
The meeting was attended by the delegates of 11 DPAs from: Bulgaria, Croatia, Czech Republic, Estonia, Hungary, Latvia, Lithuania, Poland, Romania, Slovakia and Slovenia (observer).
The delegates discussed such issues as latest developments in the field of data protection in all countries concerned, children's online privacy, the impact of the enlargement of the Schengen area in the light of the tasks carried out by the Central and Eastern European Data Protection Authorities and qualifications, tasks and competencies of Data Protection Officers.
Two declarations were also adopted. One of them confirmed the willingness of further cooperation within the framework of the CEEDP, and of assisting other countries from the region in the creation of their data protection legislation. The other contained an appeal for equal treatment of the languages of all EU Member States by assuring interpretation to and from these languages during the meetings of European institutions dealing with data protection.


  • 2007.06.4-6
The 9th meeting of data protection commissioners of the CEEDP Member States took place on 4-6 June 2007 in Zadar (Croatia). The representatives of Bulgaria, Czech Republic, Croatia, Hungary, Lithuania, Poland, Estonia, Latvia, Macedonia, Romania, Slovakia and Slovenia. Slovenia was accepted as a new member, and the representatives of Bosnia and Herzegovina were welcomed as observers. The topics discussed during the meeting were found important and interesting by all participants and included: the implementation of the Schengen acquis and the criteria applied, data protection in the Third Pillar, transparency in data processing, Electronic Health Records, new developments in technologies etc. The participants also insisted on the further evolution on co-operation in the aforementioned and other issues, supporting the new EU Member States and candidate countries, raising public awareness in the field of data protection. It was decided that the annual meetings, allowing to exchange experiences and best practices in the field of data protection should continue.

  • 2006
The 8th meeting of data protection commissioners of the CEEDP Member States took place on 2006 in Varna (Bulgaria).

  • 2006.05.11-12
The Conference entitled "Public Security and Personal Data Protection" was organised by the Inspector General for Personal Data Protection and took place on 11-12 May 2006 in Warsaw. The honorary patronage of the Conference has been taken over by the Speaker of the Diet, Mr Marek Jurek. [more info >>]

  • 2005.06.15
IBM unveiled software that enables organizations to enhance privacy and increase security. The breakthrough IBM technology, DB2 Anonymous Resolution, helps customers to rapidly and more securely share information with other organizations, while protecting - or "anonymizing" - the identity of individuals within their respective data repositories. DB2 Anonymous Resolution expands IBM's analytics capabilities through the use of irreversible "digital signatures" and advanced techniques for correlating this data while remaining in the "anonymized" form.
The software uses Entity ResolutionTM technology to resolve data and determine who is who across multiple disparate data sets. The software is able to determine when identities are the same without relying on a master person key (e.g., SSN, national ID card) and despite the natural variability found in identity data (poor data quality, name variations, differing addresses and including intentional obfuscation that is common in cases of fraud). Anonymous Resolution is currently available and targets a variety of industries, including financial services, healthcare and retail. For details please visit IBM DB2 Anonymous Resolution webpage.

  • 2005.05.23-24
On 23-24 May 2005 the 7th Meeting of the Central and Eastern European Data Protection Commissioners took place in Smolenice (Slovakia). The topics of the 7th CEEC Meeting were: processing biometrics data (new technologies in practice), administrative and judicial proceedings and disclosure of information, scope of the use of Personal Identification Number, application of standards on information system security and Personal data processing for statistical purposes. The main result of the 7th CEEC Meeting is the Declaration on future cooperation signed by all participated Data Protection Commissioners.

  • 2005.04.24-26
On 24-26 April 2005 the Spring Conference of European Data Protection Authorities took place in Cracow in Poland. The subject of the Conference was the 10th anniversary of adopting a resolution of Directive 95/46/EC on the protection of individuals with regard to the processing of personal data and on free movement of such data with presence of data protection commissioners from European countries.

  • 2005.04.06
On 6 April 2005 the High Level Group on Digital Rights Management (DRM), set up by the European Commission organised a one day workshop on DRM. Workshop's speeches and presentations can be found on the Europe`s Information Society Thematic Portal. The workshop has been organised in order to share the result of the informal public consultation and the outcome of the High Level Group, and where possible to further explore ways to reach consensus on DRM. One of the main points of the workshop was to address the consumer's trust and confidence aspects in a comprehensive way and, in particular, the privacy issue. Summary of the consultation of the High Level Group final report on Digital Rights Management by the European Commission can be reached here.

  • 2005.02.02-04
In February 2005 the Consultative Committee of the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data adopted the Progress Report on the Application of the Principles of Convention 108 to the Collection and Processing of Biometric Data. This document entitled: PROGRESS REPORT ON THE APPLICATION OF THE PRINCIPLES OF CONVENTION 108 TO THE COLLECTION AND PROCESSING OF BIOMETRIC DATA contains information about nature of biometric data and explains how to process it to be comply with Convention 108.

  • 2004.11.02-03
Tenth EPON meeting, On 2nd and 3rd November 2004 in Prague (Czech Republic) meet the Czech and Hungarian Data Protection Commissioners and Polish Data Protection Commissioner's senior staff.

  • 2004.09.14-16
The 26th International Conference on Privacy and Personal Data Protection organized by the Polish Bureau of the Inspector General for Personal Data Protection under the theme "The Right to Privacy - the Right to Dignity" is to be held on 14 - 16 September 2004 in Wroclaw, the capital of Lower Silesia, in Poland. The patronage of the Conference has been taken over by Mr Aleksander Kwa�niewski, the President of the Republic of Poland. More information: http://26konferencja.giodo.gov.pl

  • 2004.05.14
On 14 may 2004 the European Commission has adopted a Decision on the adequate protection of personal data contained in the Passenger Name Record of air passengers transferred to the United States' Bureau of Customs and Border Protection. On 28 may 2004 the European Commission has signed an agreement with the U.S. Customs and Border Protection (CBP) establishing the legal basis to collect airline Passenger Name Record (PNR) information on flights between the United States and the European Union. More information: http://europa.eu.int

  • 2004.05.01
On 1 may 2004 - the moment of Poland's accession to the European Union - the provisions of the Act of January 22, 2004 on the Amendment of the Act on the Protection of Personal Data and the Act on Remuneration of Persons Holding State Managerial Posts (Journal of Laws No. 33, item 285) entered into force. The above mentioned Act introduced numerous amendments into provisions of the Act on the Protection of Personal Data. Adoption of this Act was supposed to fully implement into the Polish legal order the Directive 95/46/EC More information: http;//giodo.gov.pl

  • 2003.06.19-20
The Workshop "Cross-border digital services and electronic procurement" organized by TeleTrust Deutschland e.V. (http://www.teletrust.de) and the Department of State Information Systems of the Ministry of Economics Affairs and Communications of Estonia (http://www.riso.ee/en/) will be held in Estonian's capital city Tallin from 19 to 20 June 2003 [more info >>]

  • 2003.05.15
USA - Law Enforcement Posse Tackles Internet Scammers, Deceptive Spammers - Initiative Launched to Prevent Spammers From Concealing Identity and Evading Detection.

The Federal Trade Commission (USA) informed about latest law enforcement initiative in USA against scammers and spammers using the Internet for fraudulent purposes. FTC also announced an effort undertaken with 17 agencies to cut down in deceptive spam by urging organizations to close "open relays". They identified 1,000 potential open relays, 90 percent of which were in 16 countries: U.S., China, Korea, Japan, Italy, Poland, Brazil, Germany, Taiwan, Mexico, Great Britain, Chile, France, Argentina, India, Spain, and Canada. The agencies drafted a letter which was translated into 11 languages and signed by 14 different US and international agencies, urging the organizations to close their open relays and help reduce spam. More information you can find on [http://www.ftc.gov/opa/2003/05/swnetforce.htm]



  The administrator of this web site is:
Inspector General for the Protection of Personal Data
ul. Stawki 2; PL-00-193 Warszawa
Phone: +48 (22) 531 03 00, Fax: +48 (22) 531 03 01, e-mail: kancelaria@giodo.gov.pl