Today, @Supervisor Wojciech Wiewiórowski was invited to the IMCO–LIBE AI Act Working Group in the European Parliament to attend the meeting on the Governance and Enforcement structure of the AI Act and share some perspectives on AI Act enforcement observed by a data protection authority.

🗣️ Supervisor underlined the multifaceted role of the EDPS in enforcing #AIAct- as Market Surveillance Authority, Notified Body for selected high-risk systems and Data Protection Authority under #EUDPR.

The EDPS has taken consistent and deliberate steps to strengthen the governance through the establishment of a dedicated network of AI experts - the 'AI Act Correspondents Network'. In addition, the EDPS AI Sandbox pilot project was launched to support the EUIs in complying the AI Act's requirements and to test the capacity of establishing full-fledged regulatory sandboxes in the future.

As EU institutions, bodies and agencies operate across all 27 Member States 🇪🇺, close and structured cooperation between the EDPS, national competent authorities and the AI Office is indispensable.

"Stronger and more coherent collaboration among data protection authorities is equally essential, whether they are formally designated under the AI Act or act as fundamental rights authorities within its framework" Supervisor added.

🤝 The credibility and success of the AI Act will depend:

- on robust institutional coordination;
- the responsible and strategic use of limited public resources; and
- shared capacity to foster innovation while safeguarding the fundamental rights and values on which the Union is built.

📃 For more information, read the speech here: https://link.europa.eu/PKbfhm

*** EDPS Supervisory Opinion ***

Today, we publish our Supervisory Opinion.

The Opinion analyses a number of questions sent by the European Central Bank (ECB) to the EDPS on a draft joint controllership arrangement to be concluded between the ECB and National Competent Authorities (NCAs) in the context of the Single Supervisory Mechanism (SSM).

We outline key recommendations for the ECB to ensure that the draft joint controllership arrangement is compliant with #EUDPR.

📃 Full version available on our website: https://link.europa.eu/Q6nDW8

*** 𝐄𝐂𝐒𝐌 2025 - 𝐒𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐜 𝐢𝐦𝐩𝐨𝐫𝐭𝐚𝐧𝐜𝐞 𝐨𝐟 𝐞𝐬𝐭𝐚𝐛𝐥𝐢𝐬𝐡𝐢𝐧𝐠 𝐚 𝐜𝐨𝐦𝐦𝐨𝐧 𝐥𝐞𝐯𝐞𝐥 𝐨𝐟 𝐜𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐦𝐚𝐭𝐮𝐫𝐢𝐭𝐲 ***

Marking the 1️⃣3️⃣th anniversary of the European Cybersecurity Month, this year's edition gives a spotlight to the human element in cybersecurity. Besides addressing pressing challenges related to the shortage of skilled cybersecurity professionals or the crucial role of behavioural change in fostering a safe online environment, the high-level panel also looked into the achievements, challenges and opportunities for the years ahead across EUIs.

#EDPS, as a data protection authority, supervises not only how the EU institutions 🇪🇺implement data protection rules, but also cybersecurity measures and how they handle personal data breaches. Recent statistics show that many breaches stem from cyber-attacks and this creates an overlap between obligations under #EUDPR and Cybersecurity Regulations where notification under ⏱️ 72 hours to the EDPS plays a key role. Cybersecurity implements one of the seven core principles of data protection: integrity and confidentiality of personal data.

@Supervisor Wojciech Wiewiórowski highlighted the importance of a robust cybersecurity that is the essential foundation for effective data protection: “𝘌𝘷𝘦𝘳𝘺 𝘤𝘺𝘣𝘦𝘳𝘴𝘦𝘤𝘶𝘳𝘪𝘵𝘺 𝘪𝘯𝘤𝘪𝘥𝘦𝘯𝘵 𝘪𝘴 𝘢 𝘱𝘰𝘵𝘦𝘯𝘵𝘪𝘢𝘭 𝘱𝘦𝘳𝘴𝘰𝘯𝘢𝘭 𝘥𝘢𝘵𝘢 𝘣𝘳𝘦𝘢𝘤𝘩. 𝘊𝘺𝘣𝘦𝘳𝘴𝘦𝘤𝘶𝘳𝘪𝘵𝘺 𝘙𝘦𝘨𝘶𝘭𝘢𝘵𝘪𝘰𝘯, 𝘵𝘩𝘦𝘳𝘦𝘧𝘰𝘳𝘦, 𝘪𝘴 𝘯𝘰𝘵 𝘫𝘶𝘴𝘵 𝘢𝘯 𝘐𝘛 𝘦𝘹𝘦𝘳𝘤𝘪𝘴𝘦. 𝘐𝘵 𝘪𝘴 𝘢 𝘤𝘰𝘳𝘯𝘦𝘳𝘴𝘵𝘰𝘯𝘦 𝘰𝘧 𝘰𝘶𝘳 𝘤𝘰𝘮𝘮𝘪𝘵𝘮𝘦𝘯𝘵 𝘵𝘰 𝘴𝘢𝘧𝘦𝘨𝘶𝘢𝘳𝘥𝘪𝘯𝘨 𝘧𝘶𝘯𝘥𝘢𝘮𝘦𝘯𝘵𝘢𝘭 𝘳𝘪𝘨𝘩𝘵𝘴 𝘪𝘯 𝘵𝘩𝘦 𝘥𝘪𝘨𝘪𝘵𝘢𝘭 𝘢𝘨𝘦. 𝘊𝘺𝘣𝘦𝘳𝘴𝘦𝘤𝘶𝘳𝘪𝘵𝘺 𝘪𝘮𝘱𝘭𝘦𝘮𝘦𝘯𝘵𝘴 𝘰𝘯𝘦 𝘰𝘧 𝘵𝘩𝘦 𝘴𝘦𝘷𝘦𝘯 𝘤𝘰𝘳𝘦 𝘱𝘳𝘪𝘯𝘤𝘪𝘱𝘭𝘦𝘴 𝘰𝘧 𝘥𝘢𝘵𝘢 𝘱𝘳𝘰𝘵𝘦𝘤𝘵𝘪𝘰𝘯: 𝘪𝘯𝘵𝘦𝘨𝘳𝘪𝘵𝘺 𝘢𝘯𝘥 𝘤𝘰𝘯𝘧𝘪𝘥𝘦𝘯𝘵𝘪𝘢𝘭𝘪𝘵𝘺 𝘰𝘧 𝘱𝘦𝘳𝘴𝘰𝘯𝘢𝘭 𝘥𝘢𝘵𝘢.”

🗣️We heard inspiring insights from distinguished guests and now 🎥 re-watch it: https://lnkd.in/eEUKsPbD

#ECSM #EDPS #CyberSecMonth #CyberAware

Der #EDPS hat #Datenschutz-Leitlinien für 🇪🇺-Institutionen zur Nutzung generativer Künstlicher Intelligenz veröffentlicht:

Titel: »Generative AI and the #EUDPR. First @EDPS Orientations for ensuring #DataProtection compliance when using Generative #AI systems.«

PDF (EN): https://www.edps.europa.eu/system/files/2024-06/24-06-03_genai_orientations_en.pdf

Pressemitteilung (EN): https://www.edps.europa.eu/press-publications/press-news/press-releases/2024/edps-guidelines-generative-ai-embracing-opportunities-protecting-people_en

Questions provoked by Threads:

1) In the EU, to what extent would GDPR prevent automated corporate data gathering based on our public Mastodon posts? Or are there no limits? (Best to always assume there are none, especially not to the worst, most hostile actors)

2) Apparently Threads thinks our data is fair game if we merely allow a Threads user to follow us. How is this GDPR compliant consent?

#Threads #Meta #privacy #GDPR #EU #EUDPR #Data

"[...]If you are an EU staff member you have an obligation to report possible cases of fraud, corruption, other illegal activity, or professional conduct which may constitute a serious failure to comply with the obligations of EU staff members.[...]"
https://anti-fraud.ec.europa.eu/olaf-and-you/report-fraud_en

#euipo #olaf #edps #edpb #europol #eppo #ombudsman

Under the #eudpr (#gdpr #rgpd for #euinstitutions) #youwilldemonstratecompliance

#EUDPR VS #GDPR

Dear #dataprotection professionals,

What do you think are the main differences between the #GDPR and the #EUDPR ( GDPR for #EU institutions)

The biggest difference I have found is the fine you can get for non-compliances.

(Please note that my background is #IT, I am not a lawyer).

GDPR: 20M or 4% total worldwide annual turnover
EUDPR: peanuts

The principles, data protection by design/default, etc. are the same.

Thanks for sharing your thoughts.

https://www.linkedin.com/posts/juansierrapons_eudpr-gdpr-dataprotection-activity-7001264313667579904-x6-R

At EDPS, we audit EU agencies to monitor #data protection compliance and promote the accountability of those we supervise #EUDPR #Frontex Regulation (2/2)

🐦🔗: https://nitter.eu/EU_EDPS/status/1577593388861374466