The Schengen Information System – SIS II
In the Schengen Information System (SIS II), every Member State can enter data about persons (and certain objects) that are wanted or searched after with a request for a specific measure to be taken if the person (or the object) is found.
Personal data in a central database
The personal data are stored in a central database that is operated by the European Union Agency for the Operational Management of Large-Scale IT Systems in the Area of Freedom, Security and Justice (eu-LISA). This data is then available for law enforcement and border control authorities in the Schengen countries.
A Member State can also enter data about persons who are not nationals of a Schengen country and who according to a decision by that country’s authority or court shall be refused entry into the Schengen area. This data becomes available for authorities who are competent for issuing visas and residence permits. In addition, authorities competent for vehicle registration in the Schengen countries have access to information about stolen or missing vehicles that are entered into the system.
Supervised by EDPS and national data protection authorities
The supervision of the processing of data in the SIS is shared between the European Data Protection Supervisor (EDPS) and the EU-countries’ national data protection authorities.
This work is carried out within the SIS Supervision Coordination Group (SIS SCG). In order to coordinate this supervision, representatives of the EDPS and the national data protection authorities meet twice a year.
The EDPS is responsible for supervising the central database and the national data protection authorities ensures that the respective country’s authorities handle the information correctly. This means that the Swedish Authority for Privacy Protection (IMY) supervises Swedish authorities’ processing of data in the SIS.
Read more about the supervision of SIS II (on the EDPS’s web site)
Data subjects’ rights
You have the right to find out if data about you are entered into the SIS II. You also have the right to request that data about you in the SIS II are rectified, deleted or restricted. If you want to exercise your rights, you should turn to the Police Authority who is the authority in Sweden responsible for personal data processing in the SIS II. If you are not satisfied with how your request has been dealt with by the Police Authority, you have the right to submit a complaint to the IMY.
Leaflet that describes the SIS II