Skip to main content

Cosaint sonraí san Aontas Eorpach

Cearta bunúsacha

Leagtar síos sa Chairt um Chearta Bunúsacha an Aontais Eorpaigh go bhfuil sé de cheart ag saoránaigh an Aontais a gcuid sonraí pearsanta a bheith faoi chosaint.

Protection of personal data

Reachtaíocht

Tá sé d’aidhm ag an bpacáiste um chosaint sonraí, a glacadh i mí na Bealtaine 2016, an Eoraip a chur in oiriúint don ré dhigiteach. Deir níos mó ná 90% de mhuintir na hEorpa gur mhaith leo na cearta céanna maidir le cosaint sonraí a bheith acu ar fud an Aontais Eorpaigh, beag beann ar an áit a ndéantar a gcuid sonraí a phróiseáil.

An Rialachán Ginearálta maidir le Cosaint Sonraí (RGCS)

Rialachán (AE) 2016/679 maidir le daoine nádúrtha a chosaint i ndáil le sonraí pearsanta a phróiseáil agus maidir le saorghluaiseacht sonraí den sórt sin. Cuimsíonn sé an ceartúchán a foilsíodh san Iris Oifigiúil an 23 Bealtaine 2018.

Is céim riachtanach é an rialachán chun cearta bunúsacha daoine aonair a neartú sa ré dhigiteach agus gnó a éascú trí rialacha a shoiléiriú do ghnólachtaí agus do chomhlachtaí poiblí sa mhargadh aonair digiteach. Le haon dlí amháin gheofar réidh freisin leis an ilroinnt atá ann faoi láthair mar gheall ar chórais náisiúnta éagsúla agus le hualaí riaracháin nach bhfuil gá leo.

An 24 Bealtaine 2016 tháinig an rialachán i bhfeidhm agus tá feidhm aige ó bhí an 25 Bealtaine 2018 ann. Tuilleadh eolais do ghnólachtaí agus do dhaoine aonair.

Eolas maidir le hionchorpú an Rialacháin Ghinearálta maidir le Cosaint Sonraí (RGCS) i gComhaontú LEE

EU Member States notifications to the European Commission under the GDPR

Study on Data Protection Certification Mechanisms

An Treoir maidir le Cosaint Sonraí i Réimse Fhorfheidhmiú an Dlí

Treoir (AE) 2016/680 maidir le cosaint daoine nádúrtha i ndáil le próiseáil sonraí pearsanta a bhaineann le cionta coiriúla nó le pionóis choiriúla a fhorghníomhú, agus saorghluaiseacht sonraí den sórt sin.

Leis an treoir sin, cosnaítear an ceart bunúsach atá ag na saoránaigh chun cosaint sonraí aon uair a bhaineann údaráis forghníomhaithe an dlí choiriúil úsáid as sonraí pearsanta chun críocha fhorfheidhmiú an dlí. Cinnteofar léi go háirithe go ndéanfar sonraí pearsanta íospartach, finnéithe agus daoine atá in amhras coire a chosaint go cuí agus éascófar léi an comhar trasteorann sa chomhrac in aghaidh na coireachta agus na sceimhlitheoireachta.

An 5 Bealtaine 2016 a tháinig an Treoir i bhfeidhm agus bhí ar na Ballstáit í a thrasuí ina ndlí náisiúnta faoin 6 Bealtaine 2018.

30 AIBREÁN 2018
Factsheet - How will the data protection reform help fight international crime?
English
(125.47 KB - )
Íoslódáil

Údaráis náisiúnta um chosaint sonraí

comhlachtaí náisiúnta bunaithe ag na Ballstáit agus é de chúram ar na comhlachtaí sin sonraí pearsanta a chosaint i gcomhréir le hAirteagal 8(3) den Chairt um Chearta Bunúsacha an Aontais Eorpaigh.

An Bord Eorpach um Chosaint Sonraí

Is comhlacht neamhspleách de chuid an Aontais é an Bord Eorpach um Chosaint Sonraí (EDPB) arb é cúram atá air féachaint chuige go gcuirfear na rialacha maidir le cosaint sonraí i bhfeidhm ar bhealach comhsheasmhach ar fud an Aontais. Leis an Rialachán Ginearálta maidir le Cosaint Sonraí (RGCS) a bunaíodh an Bord.

Ar an mBord, tá ionadaithe ó údaráis náisiúnta cosanta sonraí ó thíortha an Aontais/LEE agus an Maoirseoir Eorpach ar Chosaint Sonraí. Bíonn an Coimisiún rannpháirteach i ngníomhaíochtaí agus i gcruinnithe an Bhoird ach níl cead vótála aige. Is é an Maoirseoir a chuireann an rúnaíocht ar fáil don Bhord. Déanann an rúnaíocht na cúraimí atá uirthi a chomhlíonadh go heisiach faoi threoracha Chathaoirleach an Bhoird.

Is iad príomhchúraimí an Bhoird treoir ghinearálta a thabhairt i dtaobh coincheapa atá lárnach sa RGCS agus sa Treoir maidir le Forfheidhmiú an Dlí, comhairle a chur ar an gCoimisiún Eorpach i gcúrsaí a bhaineann le cosaint sonraí pearsanta agus le tograí reachtacha nua san Aontas Eorpach, agus cinntí ceangailteacha a ghlacadh i ndíospóidí idir údaráis náisiúnta mhaoirseachta.

Cosaint Sonraí in Institiúidí agus Comhlachtaí an Aontais Eorpaigh

Reachtaíocht

Leagtar amach i Rialachán 2018/1725 na rialacha is infheidhme maidir le próiseáil sonraí pearsanta ag institiúidí, comhlachtaí, oifigí agus gníomhaireachtaí an Aontais Eorpaigh. Tá an Rialachán sin ailínithe leis an Rialachán Ginearálta maidir le Cosaint Sonraí agus leis an Treoir maidir le Cosaint Sonraí i Réimse Fhorfheidhmiú an Dlí. Tháinig sé i bhfeidhm an 11 Nollaig 2018.

An Maoirseoir Eorpach ar Chosaint Sonraí

Faoi Rialachán 2018/1725 a bunaíodh  an Maoirseoir Eorpach ar Chosaint Sonraí (MECS)Is comhlacht neamhspleách de chuid an Aontais Eorpaigh é an Maoirseoir Eorpach ar Chosaint Sonraí arb é cúram atá air monatóireacht a dhéanamh ar chur i bhfeidhm rialacha cosanta sonraí laistigh d'Institiúidí an Aontais agus gearáin a imscrúdú.

Oifigeach Cosanta Sonraí sa Choimisiún Eorpach

Oifigeach Cosanta Sonraí ceaptha ag an gCoimisiún Eorpach arb é cúram atá air rialacha cosanta sonraí sa Choimisiún Eorpach a mhonatóiriú agus a chur i bhfeidhm. Féachann an t-oifigeach cosanta sonraí chuige, ar bhonn neamhspleách, go bhfuil na rialacha um chosaint sonraí á bhfeidhmiú go hinmheánach, i gcomhar leis an maoirseoir Eorpach um chosaint sonraí.

Maoiniú

An Clár um Chearta, um Chomhionannas agus um Shaoránacht 2014-2020

Imeacht

Legislation

The data protection package adopted in May 2016 aims at making Europe fit for the digital age. More than 90% of Europeans say they want the same data protection rights across the EU and regardless of where their data is processed.

The General Data Protection Regulation (GDPR)

Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. This text includes the corrigendum published in the OJEU of 23 May 2018.

The regulation is an essential step to strengthen individuals' fundamental rights in the digital age and facilitate business by clarifying rules for companies and public bodies in the digital single market. A single law will also do away with the current fragmentation in different national systems and unnecessary administrative burdens.

The regulation entered into force on 24 May 2016 and applies since 25 May 2018. More information for companies and individuals.

Information about the incorporation of the General Data Protection Regulation (GDPR) into the EEA Agreement.

EU Member States notifications to the European Commission under the GDPR

The Data Protection Law Enforcement Directive

Directive (EU) 2016/680 on the protection of natural persons regarding processing of personal data connected with criminal offences or the execution of criminal penalties, and on the free movement of such data.

The directive protects citizens' fundamental right to data protection whenever personal data is used by criminal law enforcement authorities for law enforcement purposes. It will in particular ensure that the personal data of victims, witnesses, and suspects of crime are duly protected and will facilitate cross-border cooperation in the fight against crime and terrorism.

The directive entered into force on 5 May 2016 and EU countries had to transpose it into their national law by 6 May 2018.

30 AIBREÁN 2018
Factsheet - How will the data protection reform help fight international crime?
English
(125.47 KB - )
Íoslódáil

National data protection authorities

EU countries have set up national bodies responsible for protecting personal data in accordance with Article 8(3) of the Charter of Fundamental Rights of the EU.

European Data Protection Board

The European Data Protection Board (EDPB) is an independent European body which shall ensure the consistent application of data protection rules throughout the European Union. The EDPB has been established by the General Data Protection Regulation (GDPR).

The EDPB is composed of the representatives of the national data protection authorities of the EU/EEA countries and of the European Data Protection Supervisor. The European Commission participates in the activities and meetings of the Board without voting right.  The secretariat of the EDPB is provided by the EDPS. The secretariat performs its tasks exclusively under the instructions of the Chair of the Board.

The EDPB tasks consist primarily in providing general guidance on key concepts of the GDPR and the Law Enforcement Directive, advising the European Commission on issues related to the protection of personal data and new proposed legislation in the European Union, and adopting binding decisions in disputes between national supervisory authorities.

Data Protection in the EU Institutions and Bodies

Legislation

Regulation 2018/1725sets forth the rules applicable to the processing of personal data by European Union institutions, bodies, offices and agencies. It is aligned with the General Data Protection Regulation and the Data Protection Law Enforcement Directive. It entered into application on 11 December 2018.

European Data Protection Supervisor

Regulation 2018/1725 established a European data protection supervisor (EDPS)The EDPS is an independent EU body responsible for monitoring the application of data protection rules within European Institutions and for investigating complaints.

Data Protection Officer in the European Commission

The European Commission has appointed a Data Protection Officer who is responsible for monitoring and the application of data protection rules in the European Commission. The data protection officer independently ensures the internal application of data protection rules in cooperation with the European data protection supervisor.

Standard Contractual Clauses

Following the adoption in June 2021 of two sets of Standard Contractual Clauses (SCC) (one for the use between controllers and processors within the European Economic Area (EEA)and one for the transfer of personal data to countries outside of the EEA), the European Commission published on 25 May 2022 Questions and Answers (Q&As) to provide practical guidance on the use of the SCCs and assist stakeholders in their compliance efforts under the General Data Protection Regulation (GDPR). These Q&As are based on feedback received from various stakeholders on their experience with using the new SCCs in the first months after their adoption. The Q&As are intended to be a ‘dynamic’ source of information and will be updated as new questions arise. 

25 BEALTAINE 2022
Questions and Answers for the two sets of Standard Contractual Clauses
English
(435.42 KB - PDF)
Íoslódáil

Documents

15 MÁRTA 2019
Regulation (EU) 2016/679 - General Data Protection Regulation
English
(794.17 KB - HTML)
Íoslódáil

20 MEÁN FÓMHAIR 2017
Directive (EU) 2016/680 on the protection of natural persons regarding processing of personal data connected with criminal offences or the execution of criminal penalties, and on the free movement of such data
English
(506.95 KB - HTML)
Íoslódáil

15 MÁRTA 2019
Regulation (EU) 2018/1725 on the protection of natural persons with regard to the processing of personal data by the EU institutions, bodies, offices and agencies
English
(719.42 KB - HTML)
Íoslódáil