
Article 1 
This Regulation sets the standards laying down the characteristics and conditions for use of the databases for Union certificates of qualification, service record books and logbooks issued in accordance with Directive (EU) 2017/2397 and for documents recognised pursuant to its Article 10(2)-(3).
Article 2 
For the purposes of this Regulation, the following definitions shall apply:

((a)) ‘Union database’ means the database provided by the Commission pursuant to Article 25(2) of Directive (EU) 2017/2397 to record and exchange data on certificates of qualifications and service record books referred to in Article 25(1) of Directive (EU) 2017/2397 and on certificates of qualifications and service record books recognised pursuant to its Article 10(3);
((b)) ‘European hull database (EHDB)’ means the database provided by the Commission pursuant to Article 25(2) of Directive (EU) 2017/2397 to record and exchange the data on the logbooks referred to in Article 25(1) of that Directive;
((c)) ‘National registers’ means the registers of the Union certificates of qualification, service record books and logbooks and, where relevant, of documents recognised pursuant to Article 10(2) of Directive (EU) 2017/2397, which are established and kept by Member States pursuant to Article 25(1) of that Directive
((d)) ‘crew member identification number’ (CID) means a number generated by the Union database that identifies a crew member registered in that database and that is unique to the holder;
((e)) ‘Status “active”’ means that certificates of qualification and specific authorisations are valid;
((f)) ‘Status “expired”’ means that certificates of qualification and specific authorisations are no longer valid because the validity period came to an end or because they have been replaced by a new certification of qualification or specific authorisation following a need for change of administrative data or the validity period coming to an end;
((g)) ‘Status “suspended”’ means that certificates of qualification and specific authorisations are no longer valid because measures have been taken by competent authorities in accordance with Article 14(2) of Directive (EU) 2017/2397;
((h)) ‘Status “withdrawn”’ means that certificates of qualification and specific authorisations are no longer valid because measures have been taken by competent authorities in accordance with Article 14(1) of Directive (EU) 2017/2397;
((i)) ‘Status “lost”’ means that certificates of qualification and specific authorisations have been declared lost to the competent authority;
((j)) ‘Status “stolen”’ means that certificates of qualification and specific authorisations have been declared stolen to the competent authority;
((k)) ‘Status “destroyed”’ means that certificates of qualification and specific authorisations have been declared destroyed to the competent authority.
((l)) ‘metadata’ means data processed in the Union database for the purposes of sending or exchanging electronic communications content; including data used to trace and identify the source and destination of a communication, data on the location of the electronic communications content, and the date, time, duration and type of communication.
Article 3 

1. The Commission shall set up the Union database. It shall manage it in accordance with the requirements laid down in Annex I. It shall be responsible for its technical operations and its maintenance. The Commission shall take all measures necessary to ensure the confidentiality, integrity and availability of the Union database.
2. Member States that issue certificates in accordance with Directive (EU) 2017/2397 shall make available machine-to-machine to the Union database the registers referred to in Article 25(1) of Directive (EU) 2017/2397 concerning the data referred to in Article 25(1) of Directive (EU) 2017/2397.
3. Without prejudice to paragraph 4 each of the Member States’ competent authority designated as controller for the data processed in the national registers and the Commission shall be joint controllers for the processing of personal data in the Union database. Responsibilities shall be allocated among joint controllers in accordance with Annex III.
4. The Commission shall be regarded as controller for the processing of personal data necessary to grant and manage access rights to the Union database.
Article 4 

1. Member States shall record the data on the logbooks referred to in Article 25(1) of Directive (EU) 2017/2397 in the EHDB,
2. Conditions for the use of the EHDB for the purpose of recording the data related to logbooks in accordance with Article 25(2) of Directive (EU) 2017/2397 are laid down in Annex II.
Article 5 
This Regulation shall enter into force on the twentieth day following that of its publication in the Official Journal of the European Union.
It shall apply from 18 January 2022 with the exception of its Article 3(1) and (4) that shall apply from the date of entry into force of this Regulation.
This Regulation shall be binding in its entirety and directly applicable in all Member States.Done at Brussels, 20 January 2020.
For the Commission
The President
Ursula VON DER LEYEN
ANNEX I
1.  1.1. The Union database shall provide a consolidated overview of the data in the certificates of qualifications and on the service record books referred to in Article 25(1) of Directive (EU) 2017/2397 which are kept in Member States’ national registers established and kept pursuant to Article 25(1) of that Directive.
 1.2. The Union database shall also provide information on certificates of qualifications and service record books recognised pursuant to Article 10(2) or 10(3) of Directive (EU) 2017/2397 where the Commission has granted access to it to an authority of a third country, in accordance with Article 25(4) of Directive (EU) 2017/2397.
 1.3. The Union database shall provide a user interface (‘the Union database web portal’) through which the authorised users shall be able to access data in accordance with their access rights.

2.  2.1. The Commission shall grant access rights to individual users corresponding to the user profiles laid down in Table 1, on the basis of a list provided by the Member States.
 2.2. 

User profiles Definitions Access rights
Certification authorities Competent authorities designated to issue, renew or withdraw certificates of qualifications, specific authorisations and services record books referred to in Article 26 of Directive (EU) 2017/2397. Read and write in relation to functionalities 3.1 to 3.5.
Authorities in charge of suspension Authorised users in competent authorities for the suspension of certificates of qualifications and specific authorisations referred to in Article 26 of Directive (EU) 2017/2397. Read and write in relation to functionalities 3.3 and 3.4.
Enforcement authorities Authorised users in competent authorities detecting and combating fraud and other unlawful practices referred to in Article 26 of Directive (EU) 2017/2397. Read-only in relation to functionalities 3.1, 3.2, 3.3 and 3.5.
Registers’ keepers Authorised users in competent authorities desigated to keep the registers referred to in Article 26 of Directive (EU) 2017/2397. Read and write in relation to functionalities 3.1 to 3.5 if not exercised by certification authorities or authorities in charge of supensions
Statistics offices Authorised users in national or international offices in charge of collecting statistical data. Read-only in relation to functionality 3.5.
International organisations Authorised users in international organisations that have been provided access to, in accordance with Article 25(4) of Directive (EU) 2017/2397 and Article 46 of Regulation (EU) 2018/1725. Read-only access to be determined in relation to functionalities 3.2, 3.3 and 3.5 following the result of the assessment concerrning the level of protection of natural persons and compliance with this Regulation
Authorities from third countries Authorised users in designated competent authorities from third countries that have been provided access to, in accordance with Article 25(4) of Directive (EU) 2017/2397 and Article 46 of Regulation (EU) 2018/1725. To be determined in relation to functionalities 3.1 to 3.5 following the result of the assessment concerrning the level of protection of natural persons and compliance with this Regulation
Commission Authorised users in Commission staff
1.. in charge of keeping the Union database; or
2.. in charge of inland navigation policies. 
— Provider of the technical solution for all functionalities;
— Read-only in relation to functionality 3.5

3. 
The following functionalities shall be provided through the Union database:
 3.1. 
The Union database shall allow certification and enforcement authorities to check, whether a crew member is already registered in the system. This shall be done either on the basis of a crew member identification number (CID) or of data contained in an identity document provided by the crew member. In the case of on-line services, the identification of a crew member shall be made with the support of the dataset as set out under Regulation (EU) 2015/1501.

Providing no person with a similar identity-related dataset is found in the system following a search by a certification authority, the crew member shall be registered in the system.
 3.2. 
The Union database shall provide read access to data on certificates of qualifications and service record books as made available by the national registers.
 3.3. 
The Union database shall provide read access to the status of certificates of qualifications and write access to record a suspension of a certificate of qualification in the Union database.

The standard certificate statuses are the following: ‘active’, ‘expired’, ‘suspended’, ‘withdrawn’, ‘lost’, ‘stolen’ or ‘destroyed’.
 3.4. 
The Union database shall allow certification authorities and authorities in charge of suspensions to be notified of modifications or of requests in the registers concerning certificates of qualification or specific authorisation that they have issued or suspended.
 3.5. 
The Union database shall contain features to provide data for authorised users to perform searches for statistical purposes.
 3.6. 
The Commission shall update the metadata of the Union database upon notification of modification of corresponding data in a national register.
 3.7. 
In case the system is not able to complete a functionality, this fact and its reason shall be notified to the relevant user. The request or the data shall be temporarily buffered in the Union database and the transaction automatically repeated until the error or deficiency has been addressed and the functionality completed.
 3.8. 
Users shall access the Union database through the Commission authentication service (EU Login).
 3.9. 
The Union database shall log all login information and transactions for monitoring and debugging purposes and allow the generation of statistics about these logins and transactions for processing by Commission staff.

4.  4.1. 

((a)) routing metadata;
((b)) access right tables;
((c)) CIDs with:

((i)) the holder’s list of types of certificates and of specific authorisations with their respective issuing authority and status;
((ii)) the serial number of the holder’s active service record book, where relevant;
((iii)) the pointer to the national register that hosts the holder’s most recent personal identity-related data.
 4.2. The Union database may also keep data referred to under Article 25 of Directive (EU) 2017/2397 for certificates of qualifications and service record books recognised pursuant to Article 10(3) when the Commission has refused access to an authority of a third country, in accordance with Article 25(4) of Directive (EU) 2017/2397.

5.  5.1. The connection between the Union database and the national registers shall be based on the Commission’s secure electronic registered delivery service (CEF eDelivery).
 5.2. The exchange of information shall be based on standard data-structuring methods and shall be expressed in XML format.
 5.3. The service time frame shall be 24/7 days, with an availability rate of the system of at least 98 % excluded scheduled maintenance.

6.  6.1. The reference data such as code lists, controlled vocabularies and glossaries shall be kept in the European Reference Data Management System (ERDMS), including, where relevant, the translation in the EU official languages.

7.  7.1. Any processing of personal data by the authorised users in Member States shall be carried out in accordance with Union law on the protection of personal data, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council.
 7.2. The Commission shall carry out all processing of personal data provided for in this Regulation in accordance with Regulation (EU) 2018/1725.
 7.3. The personal data referred to in Article 25(1) of Directive (EU) 2017/2397 shall be accessed and processed only for the execution of the functionalities referred to in Section 3 and by the authorised users.
 7.4. The personal data referred to in Section 4 shall not be stored in the Union database for longer than is necessary for the purposes for which the personal data are processed and not after crew members’ retirement. The holder’s list of types of certificates and of specific authorisations shall not include those certificates and authorisations that have expired, have been withdrawn or destroyed, have been declared lost or stolen once they have been replaced by a new certificate or authorisation.
 7.5. Personal data processed for the purpose of the functionality described under point 3.9 shall not be retained in the Union database for more than 6 months.
 7.6. Personal data other than those referred to in points 7.4 and 7.5 shall not be retained in the Union database for longer than strictly necessary for the transaction to be completed.
 7.7. The data available for statistical purposes shall be anonymised and aggregated. Statistical information that has been duly anonymised and aggregated may be retained indefinitely.

8.  8.1. For the purposes related to the operation of the Union database, the Commission shall maintain contact with the Member States through a single contact point designated by each Member State among the competent authorities referred to in Article 26(g) of Directive (EU) 2017/2397.

ANNEX II
1. The data related to logbooks shall be accessed and processed only by the authorised users referred to in Table 1.

2. The Commission shall grant access rights to users corresponding to the user profiles laid down in Table 1, on the basis of a list provided by the Member States through the single contact points referred to in Delegated Regulation 2020/474, as well as to the international organisations and authorities of a third country, in accordance with Article 25(4) of Directive (EU) 2017/2397.

3. The instructions in Annex III and Annex IV on full access and read-only access to and processing of the data in the EHDB of Delegated Regulation 2020/474 on EHDB shall apply.

4. Any processing of personal data by authorised users shall be carried out in accordance with the Union law on the protection of personal data, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council.

5. 

User profiles Definitions Access rights
Certification authorities Authorised users in competent authorities for the issuing of logbooks in accordance with Article 26 of Directive (EU) 2017/2397. Full-access
Enforcement authorities Authorised users in competent authorities detecting and combating fraud and other unlawful practices in accordance with Article 26 of Directive (EU) 2017/2397. Read-only
Statistics offices Authorised users in national or international offices in charge of collecting statistical data. Read-only
International organisations Authorised users in international organisations that have been provided access to EHDB in accordance with Article 25(4) of Directive (EU) 2017/2397 and Article 46 of Regulation (EU) 2018/1725. Read-only access to be determined following the result of the assessment concerning the level of protection of natural persons
Authorities from third countries Authorised users in designated competent authorities from third countries that have been provided access to in accordance with Article 25(4) of Directive (EU) 2017/2397 and Article 46 of Regulation (EU) 2018/1725. To be determined following the result of the assessment concerrning the level of protection of natural persons

ANNEX III
1. The Member States, represented by the competent authorities, determine the purposes and means of processing of personal data in the national registers. The Commission, by keeping/managing the Union database which provides for the exchange of data among Member States, is also a controller. The Member States and the Commission are joint controllers for the processing of personal data in the EU database.

2. Each of the joint controllers shall comply with relevant Union and national legislation to which the respective controller is subject.

3. 

((a)) ensuring that the Union database complies with the requirements applicable to Commission’s communication and information systems, including those concerning the protection of personal data and the application of data protection rules on security of the processing. The Commission shall carry out an information security risk assessment and ensure an appropriate level of security;
((b)) responding to the requests of data subjects addressed directly to it in relation to the Union database and publishing a data protection information notice to fulfil information requirements. Where appropriate and in particular when the request concerns rectification and erasure of personal data, the Commission shall foward the request of the data subject to the relevant single contact point(s) that shall address it. In cases where a request is addressed directly to the Commission, it shall inform the data subject on the follow-up given to the request;
((c)) communicating any personal data breaches within the Union database to the single contact points referred to in Section 8.1 of Annex I, to the European Data Protection Supervisor and to the relevant individuals where there is a high risk in accordance with Articles 34 and 35 of Regulation (EU) 2018/1725;
((d)) identifying the categories of staff and other individuals to whom access to the Union database may be granted and ensuring that access by all those concerned is compliant with applicable data protection rules;
((e)) ensuring that Commission staff who have access to crew members’ personal data within the Union database, are adequately trained to ensure that they perform their tasks in compliance with the rules applicable to the protection of personal data, and are subject to the obligation of professional secrecy under Union law.

4. 

((a)) collecting and processing the personal data of applicants, and for processing the personal data they obtain from/exchange through the Union database. Collecting and processing personal data shall be done in accordance with Regulation (EU) 2016/679, in particular to ensure lawful collection of data, provide appropriate information, keep the data accurate (including erasing outdated data or profiles where relevant) and ensure appropriate security of the data in the national register(s).
((b)) acting as the contact point for the crew members, including when they exercise their rights, responding to the requests of crew members and ensuring that crew members whose data are processed through the Union database and national registers are enabled to exercise their rights in compliance with data protection legislation. In this context, they shall cooperate with other Member States’ competent authorities via the single contact points and with the Commission to address appropriately the requests of data subjects addressed to it, to other Member States or to the Commission. Member States competent authorities that have received the data subject request shall inform the data subject on the follow-up given to the request;
((c)) communicating any personal data breaches with regard to crew members data processed through the Union database to the Commission, to the single contact point referred to in section 8.1. of Annex I, to the competent supervisory authority at national level and, where so required, to relevant crew members, in accordance with Articles 33 and 34 of Regulation (EU) 2016/679 or if requested by the Commission;
((d)) identifying, in compliance with access rights to users corresponding to the user profiles laid down in the table 1 of Annex I, staff whom shall be granted access to crew members’ personal data within the Union database and communicating it to the Commission;
((e)) ensuring that their staff who have access to crew members’ personal data within the Union database, are adequately trained to ensure that they perform their tasks in compliance with the rules applicable to the protection of personal data, and are subject to the obligation of professional secrecy in accordance with national law or rules established by national competent authority.
