P5ay8

eGovernment in the European Union May 2015Legal frameworkMain legal texts impacting on the development of eGovernmentData Protection/PrivacyRegulation (EC) No 45/2001 of the European Parliament and of the Council of 18 December2000 on the protection of individuals with regard to the processing of personal data by theCommunity institutions and bodies and on the free movement of such data [Official JournalL8 of 12.01.2001].This Regulation contains provisions aiming to protect personal data processed by EuropeanUnion (EU) institutions and bodies. These provisions aim to ensure a high level of protectionfor personal data managed by Community institutions and bodies.This Regulation also provides for the establishment of a “European Data ProtectionAuthority”, an independent Community authority responsible for monitoring the correctapplication of the data protection rules by the EU institutions and bodies. This authority willbe comparable to the data protection authorities established by Member States inaccordance with Directive 95/46/EC on data protection. Citizens will thus be able to lodgecomplaints directly with that authority if they consider their data protection rights under theRegulation have not been respected.Each Community institution and body shall appoint at least one person as Data ProtectionOfficer with the task of cooperating with the Data Protection Supervisor and ensuring thatthe rights and freedoms of the data subjects are unlikely to be adversely affected by thedata processing. Citizens enjoy legally enforceable rights under the Regulation, such as theright to access, rectify, block or delete personal data relating to them in files held by theCommunity institutions and bodies.Directive 97/66/EC of the European Parliament and of the Council, of 15 December 1997,on the processing of personal data and the protection of privacy in the telecommunicationssectorDirective 97/66/EC specifically deals with the protection of privacy intelecommunications. It states that Member States must guarantee the confidentiality ofcommunication by means of national regulations. Any unauthorised listening, tapping,storage or other kinds of interception or surveillance of communications is illegal. Wherecalling-line identification is offered, users must be given the option not to subscribe to thisservice, or not to have their identification revealed when making a telephone call.Conversely, subscribers to this service must have the option to reject incoming calls fromindividuals who have blocked their calling-line identification. Additionally, the Directivestates that where printed or electronic telecommunication directories exist, individuals areentitled to have their data removed from the list, in principle, at no cost.It has been repealed by Directive 2002/58/EC. This directive is part of the Electroniccommunications regulatory framework, which is discussed below.[20]