Data protection records

All EU institutions have the legal obligation to keep a central register of records of activities processing personal data (Article 31 of Regulation 2018/1725).

The register shall contain at least the following information (Article 31(1) of the Regulation):

  • name and contact details of the controller, the data protection officer and, where applicable, the processor and the joint controller;
  • the purposes of the processing;
  • description of the categories of data subjects and of the categories of personal data;
  • the categories of recipients to whom the personal data have been or will be disclosed;
  • where applicable, transfers of personal data to a third country or an international organisation and the documentation of suitable safeguards;
  • where possible, the envisaged time limits for erasure of the different categories of data;
  • where possible, a general description of the technical and organisational security measures to protect those personal data.

The list of records of EMCDDA activities processing personal data is below.

Title Reference Last update
EMCDDA Personal Data Protection Record on the ESCAPE platform (DPO-050) DPO-050 20.12.2022
EMCDDA Personal Data Protection Record on the ESCAPE platform (DPO-049) DPO-049 17.05.2022
EMCDDA Personal Data Protection Record on Trusted Meetings Service (DPO-048) DPO-048 02.02.2022
EMCDDA Personal Data Protection Record on EMCDDA e-mail updates via Mailchimp (DPO-047) DPO-047 20.07.2021
EMCDDA Personal Data Protection Record on Documenta (DP0-46) DPO-46 24.05.2021
EMCDDA Personal Data Protection Record on HumHub (DPO-045) DPO-045 24.05.2021
EMCDDA Personal Data Protection Record on: Stakeholders’ relationship management system (SRIS) (DPO-011) DPO-011 26.02.2020
EMCDDA Personal Data Protection Record on: Privileged accounts session recording (DPO-012) DPO-012 26.02.2020
EMCDDA Personal Data Protection Record on: System and network logs collection and processing (DPO-013) DPO-013 26.02.2020
EMCDDA Personal Data Protection Record on: Data backup processing operations (DPO-021) DPO-021 26.02.2020
EMCDDA Personal Data Protection Record on: Network traffic interception and filtering (DPO-007) DPO-007 26.02.2020
EMCDDA Personal Data Protection Record on: ICT Service Desk information system (DPO-008) DPO-008 26.02.2020
EMCDDA Personal Data Protection Record on: Telecommunications invoice processing (DPO-009) DPO-009 26.02.2020
EMCDDA Personal Data Protection Record on: Identity and access management (IAM) (DPO-010) DPO-010 26.02.2020
EMCDDA Personal Data Protection Record on: Data transfer for identity federation (DPO-001) DPO-001 25.02.2020
EMCDDA Personal Data Protection Record on EMCDDA policy of dignity and respect (DPO-002) and privacy statement DPO-002 19.09.2019
EMCDDA Personal Data Protection Record on certification procedure of EMCDDA officials (DPO-025) DPO-025 19.09.2019
EMCDDA Personal Data Protection: Record on recruitments of trainees (DPO-027) DPO-027 28.08.2019
EMCDDA Personal Data Protection Record on recruitment of seconded national experts (SNEs) (DPO-015) DPO-015 28.05.2019
EMCDDA Personal Data Protection Record on registration of the EMCDDA staff members’ vehicles under special series with the Protocol Service of the Portuguese Ministry of Foreign Affairs (DPO-036) DPO-036 28.05.2019
EMCDDA Personal Data Protection Record on Galp Frota’ cards (DPO-017) DPO-017 28.05.2019
EMCDDA Personal Data Protection Record on MEDICAL FILES (DPO-004) DPO-004 28.05.2019
EMCDDA Personal Data Protection Record on registration of the EMCDDA staff under special Identification card with the Protocol Service of the Portuguese Ministry of Foreign Affairs (DPO-022) DPO-022 28.05.2019
EMCDDA Personal Data Protection Record on Recruitment (DPO-016) DPO-016 25.05.2019
EMCDDA Personal Data Protection Record on Leave, absences and teleworking (DPO-019) DPO-019 25.05.2019
EMCDDA Personal Data Protection Record on EMCDDA human resources database (HR database) (DPO-032) DPO-032 24.05.2019
EMCDDA Personal Data Protection Record on administrative enquiries and disciplinary procedures (DPO-034) DPO-034 24.05.2019
EMCDDA Personal Data Protection Record on internal procedures and guidelines on whistleblowing (DPO-037) DPO-037 24.05.2019
EMCDDA Personal Data Protection Record on Article 45(2) of the Staff Regulations (DPO-018) DPO-018 24.05.2019
EMCDDA Personal Data Protection Record on: Probation period and managerial probation period of the EMCDDA Director (DPO-030 A) DPO-030 A 24.05.2019
EMCDDA Personal Data Protection Record on selection and appointment of confidential counsellors (DPO-020) DPO-020 24.05.2019
EMCDDA Personal Data Protection Record on: EMCDDA annual appraisal of the EMCDDA Director (DPO-031) DPO-031 24.05.2019
EMCDDA Personal Data Protection Record on: Probration period of the EMCDDA staff (DPO-035) DPO-035 24.05.2019
EMCDDA Personal Data Protection Record on EMCDDA promotion of officials, and reclassification of temporary and contract agents (DPO-023) DPO-023 24.05.2019
EMCDDA Personal Data Protection Record on Annual appraisal of the EMCDDA staff (DPO-003 and DPO 022) DPO-003 and DPO 022 01.01.2019
EMCDDA Personal Data Protection Record and compliance checklist on probation period of the EMCDDA staff (DPO-035) DPO-035 01.01.2019
EMCDDA Personal Data Protection Record on: CCTV camera recordings outside of the building (DPO-028) DPO-028 28.12.2018
EMCDDA Personal Data Protection Record on CCTV camera recordings inside of the building (DPO-029) DPO-029 12.12.2018
EMCDDA Personal Data Protection Record on: Issuance of Laissez Passer Passport (DPO-043) DPO-043 01.10.2017
Data protection record on EMCDDA wardens (DPO-038) DPO-038 12.12.2014

Top