Data protection notice 

In order to carry out our duties to EU citizens, we may process some of your personal data (also known as ‘personal information’). We process this data pursuant to Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data.

We may process your personal data for a number of reasons, including dealing with public requests for information, petitions, parliamentary activities, events, visitor information, staff matters and complaints, just to name a few. Regulation 2018/1725 sets out the scope of the information about you that we might process, how we might use it and how you can request access to it.

We also keep records of activities involving personal data processing (e.g. data collection, storage and use). This register of activities is publicly accessible and must contain certain pieces of information explaining the purpose and conditions of the personal data processing operations. You can consult our Data Protection Register to find out more about how we process your personal data in the course of our activities.

What does this notice cover?

This data protection notice covers the publicly available websites we publish online under the europarl.europa.eu domain (also named ‘europarl’).

It covers the basic navigation of our websites but does not cover e-services we may offer, such as contact or registration forms.

For each e-service made available on one of our websites, there will be a dedicated data protection notice informing you about the purpose of the processing of your personal data, the legal basis, the categories of personal data collected, how long we keep your personal data, details of your data protection rights and who to contact should you wish to exercise those rights.

We advise you to consult the specific data protection notice before using the e-service of the websites we publish. The processing of personal data through these e-services is described in the relevant records made available in our Data Protection Register.

Who processes your personal data (who is the data controller)?

The europarl domain is home to a variety of websites based on different technologies and maintained by different editorial and IT teams. There is therefore no single data controller for europarl, but several.

If you want to contact one of our data controllers, please contact the DG COMM Webmaster Unit of the Directorate-General for Communication, which acts as a hub and will redirect your request to the appropriate data controller.

You may contact the Webmaster Unit by email at webmaster@europarl.europa.eu or by post, in a sealed envelope, at:

European Parliament

Directorate-General for Communication,

Directorate for Campaigns,

Webmaster Unit, for the attention of the Head of Unit,

60 rue Wiertz / Wiertzstraat 60,

1047 - Bruxelles/Brussel,

Belgium

Why do we process your personal data?

Parliament collects your personal information only to the extent necessary to fulfil a specific purpose related to our tasks as an institution. We process your personal data in order to analyse, monitor and diagnose our technical infrastructure and applications, as well as for security purposes. Your data is collected, processed and stored in server logs that help us to achieve operational security, investigate incidents, monitor our network and provide user assistance.

What is the legal basis for our data processing?

We are legally permitted to process data on the basis of Article 5 (1)(a) of Regulation (EU) 2018/1725 interpreted in the light of Recital 22, since it is necessary for the performance of tasks carried out in the public interest by the European Parliament.

What personal data do we collect?

We collect some of your personal data in our server logs. However, in line with the principle of data minimisation, we limit the collection of any personal data as much as possible.
The personal data we collect on our infrastructure is:

  • Your device’s IP address;
  • The protocol you used (http; https; rtmp, etc.);
  • Your device’s operating system;
  • Your browser;
  • The date and time of your connection;
  • The pages of the European Parliament’s website you visited;
  • The volume of data you downloaded.

The European Parliament processes personal data in accordance with the principles and provisions of Regulation (EU) 2018/1725.

Your personal data is not subject to automated decision-making.

Do we share your personal data?

We share personal data exclusively with trusted recipients, when it is necessary for the purposes specified and only with the categories of recipients identified.
Our trusted recipients are:

  • our colleagues in the European Parliament’s Directorate-General for Innovation and Technological Support (DG ITEC) who are in charge of internal IT and cloud infrastructure. They may access your personal data in order to provide appropriate technical support;
  • our cloud service providers, which are bounded by specific contractual clauses and by the obligations deriving from Regulation (EU) 2018/1725.

We do not share your personal data with any non-EU country or international organisation.

Under certain legally permitted conditions we may disclose your personal information to third parties, such as the European Anti-Fraud Office, the Court of Auditors, or law enforcement authorities, if necessary and proportionate for specific lawful purposes.

How long do we store your personal data for?

Your data is recorded in daily log files, which are stored for between thirty days and six months and then backed-up for between six months and a year. We automatically delete all data at the end of the defined period.

For further information on the server logs and backups of our IT infrastructure, we invite you to consult records no 177 and 179 in our Data Protection Register:

  • ­ no 177: DG ITEC ICT infrastructure provision and supervision operations related to European Parliament’s ICT equipment, networks and systems (running on DG ITEC ICT infrastructure)
  • no 179: DG ITEC backup operations on European Parliament’s ICT equipment, networks and systems (running on DG ITEC ICT infrastructure)


Do we use cookies?

Yes, we use cookies.
Our cookie policy and the list of cookies we place on users’ devices are available online on  our cookie policy page and our cookie inventory page

Do we use local storage?

We use your browser’s local storage to support our Multimedia Centre website, which hosts our videos, and for our web streaming platform, which enables the live streaming and the recording of all debates, such as plenary and committee meetings, as well as of specific events taking place within the European Parliament.

Below, you can find the data stored in your browser.

  • europarl|{id}
    Purpose: to record the cache for the streaming player in the Multimedia Centre website.
  • featured.content.list.filter
    Purpose: to record the type of media selected by the user in the ‘Most relevant media’ section of the homepage in the Multimedia Centre website.
  • kaltura-player-js_audioLanguage
    Purpose: to record the language of the audio track of videos watched on the player used for the Multimedia Centre website (Kaltura player).
  • kaltura-player-js_textLanguage
    Purpose: to record the language of the subtitles of videos watched on the player used for the Multimedia Centre website (Kaltura player).
  • theoplayer-session-id
    Purpose: to securely maintain the session of the user during their whole visit when using the Multimedia Centre streaming player.

Note:
You can find more information about the data processed by the Multimedia Centre and the web streaming platform in their dedicated records, available in the Data Protection Register.

Do we use tracking technologies?

We do not normally use tracking technologies such as web beacons, browser fingerprinting or tracking pixels. In specific cases when some form of tracking is required, we describe the process in a specific data protection notice made available on the website concerned.

Do we allow third party content?

Our websites may provide links to external websites that are not covered by this data protection notice. Third parties have their own privacy and cookie policies over which we have no control. We recommend that you inform yourself about their specific privacy policies.

What rights do you have and how can you exercise them?

You have the right:

  • to access your personal data;
  • to rectify your personal data if it is inaccurate or incomplete;
  • to erase your personal data.

In some cases you may also have the right:

  • to restrict the processing of your personal data;
  • to data portability;
  • to object to the processing of your personal data lawfully carried out pursuant to Article 5(1)(a) of Regulation (EU) 2018/1725 of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data.

If you would like to exercise your rights or have questions concerning the processing of your personal data, you may write to us:

  • by email at webmaster@europarl.europa.eu
  • by post, in a sealed envelope, at European Parliament, Directorate-General for Communication, Directorate for Campaigns, Webmaster Unit, to the attention of the Head of Unit, 60 rue Wiertz / Wiertzstraat 60, 1047 Bruxelles/Brussel, Belgium.

If you have any remarks or complaints regarding the way we process your personal data, please contact the Data Protection Officer of the European Parliament by writing to data-protection@europarl.europa.eu.

In all situations, you have the right of recourse to our supervisory authority, the European Data Protection Supervisor (EDPS), by writing to edps@edps.europa.eu. Further information can be found on the EDPS page about Complaints.

Social Media – Your privacy

In addition to our websites, we also use social media platforms to promote our activities.

You can share our web pages and access our social media accounts via icons on our website. To protect your privacy, our icons do not store any cookies on your device. They will redirect you to the social media platform concerned by opening a new browser tab.

When we use a social media widget on our pages, the content is only displayed after you have explicitly accepted its privacy policy and consented to continue. As each social media channel has its own privacy policy, we strongly recommend that you read the policy carefully before using the channel.

If you have any questions or concerns about how we use social media platforms, you can find further information in our dedicated data protection record ‘European Parliament presence on social media’, available in our Data Protection Register.