Privacy and data protection have become increasingly crucial in our everyday life, both in private and at work. The rights to privacy and data protection have long been recognised as fundamental rights, set out in article 7 and 8 of the EU Charter of Fundamental Rights. There is a specific legislative act renewed for the institutions, bodies, offices and agencies of the European Union (Regulation (EU) 2018/1725) that applies also to the EEAS when processing personal data. The revised legal framework intends to guarantee a high level of data protection when it comes to collecting and storing personal data for the benefit of Union citizens, EU institution staff and of our partners in the world. It entered into force the same year and is harmonised with the principles of the General Data Protection Regulation (the GDPR) which is applicable for Member States' authorities, the private sector and civil society organisations.