in EU

European Parliament accused of failing to protect employees’ personal data


Brussels (The Brussels Morning Newspaper) – Austrian advocacy physique NOYB has filed two complaints with the EU privateness watchdog in opposition to the European Parliament, blaming it for inadequately defending workers’ private knowledge.

How Did the European Parliament Fail to Protect Personal Data?

Noyb has filed two objections in opposition to the European Parliament over a large knowledge breach that affected the non-public knowledge of over 8,000 workers members. Noyb, a non-profit group in any other case comprehended as ‘none of what you are promoting,’ has filed complaints in opposition to the European Parliament after a recruitment portal referred to as ‘PEOPLE’ was violated.

What Sensitive Information Was Compromised within the Data Breach?

Attackers acquired delicate knowledge, together with ID playing cards, passports, prison histories, residence paperwork, and even marriage certifications that included the sufferer’s sexual orientation. According to Noyb, to use for a job within the EU Parliament, you could report back to a recruitment platform referred to as PEOPLE, the place you could provide details about your self. This contains “heaps of private knowledge,” together with ID playing cards, passports, residence and training paperwork, prison information, and marriage certificates.

Was the PEOPLE Recruitment Portal the Source of the Violation?

The violation itself occurred earlier this 12 months and was discovered on April twenty fifth. It’s nonetheless unknown whether or not it was the results of hacking or one other publicity. On April twenty sixth, 2024, the European Parliament made ex-and present workers conscious that “each single doc…uploaded to PEOPLE (had) been compromised.” “At the time of submitting this grievance, it’s nonetheless unclear how lengthy the assailants have been in a position to entry the non-public knowledge of the candidates,” Noyb acknowledged.

Those involved have been requested to vary their IDs and passports “as a precautionary measure.”

Is the European Parliament Compliant with GDPR Standards?

Noyb argues that the Parliament has “lengthy been conscious of cybersecurity vulnerabilities.” In November 2023, a cybersecurity evaluation indicated that the group’s cybersecurity didn’t meet business requirements. Furthermore, the non-profit mentioned that the European Parliament isn’t conceding with the GDPR’s knowledge minimization and retention necessities.

According to Noyb, the EU GDPR wants European establishments to solely course of knowledge that’s “enough, related and restricted to what’s obligatory in relation to the needs for which they’re processed.” However, the European Parliament has maintained these recruitment recordsdata for 10 years. “This is much more worrying once you consider that these recordsdata additionally include specifically protected delicate data…which may reveal individuals’s ethnicity, political beliefs, non secular beliefs, or sexual orientation,” Noyb states.

Noyb has filed two complaints with the EU Data Protection Supervisor (EDPS) on behalf of workers throughout the European Parliament. The non-profit additionally signifies that the EDPS imposes an “applicable organisational effective to forestall related violations sooner or later.”

Brussels Morning is a every day on-line newspaper based mostly in Belgium. BM publishes distinctive and unbiased protection on worldwide and European affairs. With a Europe-wide perspective, BM covers insurance policies and politics of the EU, important Member State developments, and appears on the worldwide agenda with a European perspective.


accuseddataemployeesEuropeanfailingParliamentpersonalProtect

Written by Editor

Leave a Reply

Your email address will not be published. Required fields are marked *

Good sleep habits important for overweight adults, study suggests

Cucumber TikTok trend blamed for hit to Iceland’s supply