• inform Commission departments collecting personal data (‘controllers’) and persons whose data are collected (‘data subjects’) of their rights and obligations under Regulation 45/2001
  • ensure Commission departments comply with the law when processing personal data
  • investigate data‑protection matters
  • keep a register of processing operations on personal data by Commission departments
  • cooperate with the European Data Protection Supervisor

Leadership and organisation