Data protection at the Agency for the Cooperation of Energy Regulators
The Agency for the Cooperation of Energy Regulators ('the Agency') is highly committed to processing personal data in a lawful way.
The Agency processes personal data collected according to the provisions of Regulation (EU) 2018/1725 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data.
The Agency only processes personal data for the performance of tasks carried out in the public interest in accordance with European Union law or whilst legitimately exercising the official authority vested to the Agency. Furthermore, the processing of personal data is lawful as a part of a legal or contractual obligation or when the data subject concerned has given his or her unambiguous consent.
In any case, the Agency will not process personal data for marketing or commercial purposes.
The Agency's supervisory authority, in terms of processing personal data, is the European Data Protection Supervisor (EDPS). The EDPS is responsible for the monitoring of European Union institutions, agencies and bodies and their compliance with data protection rules, ensuring that the rights to privacy and data protection are respected.
For more information about the EDPS, please refer to this website.
Data Protection Officer
In order to ensure the compliance with Article 43 of the Regulation (EU) 2018/1725, the Agency appointed a Data Protection Officer (DPO).
The main task of the DPO is to ensure, in an independent manner, the internal application of data protection requirements imposed by Regulation (EC) 1725/2018 within the Agency.
The DPO's main functions are to:
In order to have further information regarding processing operations at the Agency, you may contact the DPO (firstname.lastname@example.org).
According to Article 31 of Regulation (EU) 2018/1725, the Agency has a legal obligation to keep a register of all personal data processing operations which have been notified to the Data Protection Officer (DPO). The register aims at ensuring transparency to the public and it is accessible to any interested person. It contains, among else, the following information:
The register is available here.
In order to have further information regarding processing operations at the Agency, contact the DPO (email@example.com ).
The processing of an individual's personal data carried out by the Agency is performed in compliance with Regulation (EC) No 1725/2018.
The privacy notices describe Agency's policies and practices regarding collection and use of personal data.
You may find a collection of privacy notices for each specific processing operation carried out by the Agency listed below: