The Commission websites must assure adequate protection of data, including personal data, sent over the Internet against various types of risks, including risks to the data’s confidentiality and integrity.


All Commission websites must use the Transport Layer Security (TLS/SSL) protocol (over which internet protocols like HTTP can work) to protect the communication between client and server side. The combination of the HTTP protocol over SSL/TLS protocol is known as HTTPS, therefore a connection to a secure website is recognised by its URL starting with https:// instead of simply http://.

In addition:

Further good practice include:

Data protection

Any personal data that is processed as part of any task relating to the development of the European Commission's web presence must be done so in compliance with the Regulation on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data (EU 2018/1725). Please refer to this guide's section on data protection for more information. 

Related links

the URL structure section of this guide provides information on how URLs for European Commission websites should be structured.

Contact and support

Need further assistance on this topic? Please contact either the team in charge of the Europa Domain Management (EU Login required).