The European Parliament adopted a legislative resolution on the proposal for a regulation of the European Parliament and of the Council establishing the conditions for accessing other EU information systems for ETIAS purposes and amending Regulation (EU) 2018/1240, Regulation (EC) No 767/2008, Regulation (EU) 2017/2226 and Regulation (EU) 2018/1861.

The European Parliament's position adopted at first reading under the ordinary legislative procedure amends the Commission's proposal as follows:

Access from the ETIAS Central Unit to other EU information systems, Europol data and Interpol databases

Regulation (EU) 2018/1240 of the European Parliament and of the Council established the European Travel Information and Authorisation System (ETIAS) for third-country nationals exempt from the visa requirement when crossing the external borders of the Union. ETIAS makes it possible to assess whether the presence of such third-country nationals on the territory of the Member States would pose a security or illegal immigration risk or a high epidemic risk.

This Regulation amends Regulations of the European Parliament and of the Council (EU) 2018/1240, (EC) No 767/2008, (EU) 2017/2226, (EU) and 2018/1861 in order to enable the ETIAS central system to carry out checks against the Schengen Information System (SIS), the Visa Information System ( VIS ) the Entry/Exit System ( EES ), Eurodac and the database on criminal records of third-country nationals ( ECRIS-TCN ), as well as Europol data and the Interpol databases on Stolen and Lost Travel Documents (SLTD) and Travel Documents Associated with Notices (TDAWN).

The amending regulation allows the connection of the ETIAS Central System to these databases and defines the data that can be accessed for ETIAS purposes, as well as the conditions and rights of access of the ETIAS Central Unit and the ETIAS National Units. Access to the relevant data in these systems should enable the authorities to assess the security or immigration risk of applicants and to decide whether to issue or refuse a travel authorisation.

Access by Member States, through the ETIAS National Units, to other EU information systems should be in accordance with their participation in the various legal instruments.

Application form and personal data of the applicant

The amended text specifies that the applicant will have to answer the questions by indicating whether he or she has been convicted in the previous 25 years of a terrorist offence or in the previous 15 years of any other criminal offence listed in the Annex, and if so when and in which country.

Automated processing

The ETIAS Central System should send an automated notification to the ETIAS Central Unit.

The European Search Portal (ESP) , established by Regulation (EU) 2019/817 and Regulation (EU) 2019/818 of the European Parliament and of the Council, should enable the data stored in ETIAS and the data stored in the other EU information systems concerned to be queried in parallel.

The ETIAS Central System should verify:

- whether the travel document used for the application corresponds to a travel document reported lost, stolen, misappropriated or invalidated in SIS;

- whether the applicant is subject to a refusal of entry and stay alert entered in SIS;

- whether the applicant is currently reported as an overstayer or whether he or she has been reported as an overstayer in the past in the EES;

- whether the applicant is subject to an alert in respect of persons wanted for arrest for surrender purposes on the basis of a European Arrest Warrant or wanted for arrest for extradition purposes in SIS.

Where there are doubts about the identity of the applicant or where the automated verifications have reported a hit, the application should be processed manually by the competent authorities.

The ETIAS Central Unit should provide periodical reports to the Commission and eu-LISA on false hits that are generated during the automated checks.

Refusal of authorisation

Applicants who have been refused a travel authorisation should have the right to appeal. Appeals should be conducted in the Member State that has taken the decision on the application and in accordance with the national law of that Member State.

During the appeal procedure, the appellant should be given access to the information in the application file in accordance with the data protection rules of this Regulation. The ETIAS National Unit of the Member State responsible should provide applicants with information regarding the appeal procedure. That information should be provided in one of the official languages of the countries listed in Annex II to Regulation (EC) No 539/2001 of which the applicant is a national.

Fallback procedures in case of technical impossibility of access to data by carriers

Where technical difficulties make it impossible for carriers to access the ETIAS Information System through the carrier gateway, the ETIAS Central Unit should provide operational support to carriers in order to limit the impact on passenger travel and carriers to the extent possible.

Implementation

The Commission may adopt delegated acts concerning the definition of the conditions for matching data contained in a record, alert or file of other EU information systems consulted with data contained in an ETIAS application file.

It may adopt implementing acts (i) to establish the technical arrangements for the implementation of certain data retention provisions and to further specify the rules concerning the support to be provided to carriers by the ETIAS Central Unit and (ii) to lay down the details of fallback procedures in case of technical impossibility for carriers to access the data and to further specify the rules concerning the support to be provided to carriers by the ETIAS Central Unit.

The Committee on Civil Liberties, Justice and Home Affairs adopted the report by Jeroen LENAERS (EPP, NL) on the proposal for a regulation of the European Parliament and of the Council establishing the conditions for accessing other EU information systems for ETIAS purposes and amending Regulation (EU) 2018/1240, Regulation (EC) No 767/2008, Regulation (EU) 2017/2226 and Regulation (EU) 2018/1861.

As a reminder, the proposal for a regulation defines the technical amendments necessary to fully set up the European Travel Information and Authorisation System (ETIAS). It amends the legal acts establishing the EU information systems that are necessary for establishing their relation with ETIAS.

The committee considered that, following the recommendations of the substitute impact assessment by the European Parliament Research Services, improvements were needed as regards certain articles.

The committee recommended that the European Parliament’s position adopted at first reading under the ordinary legislative procedure should amend the proposal as follows:

Automated processing

The ETIAS Central System should compare the relevant data to the data present in a record, file or alert registered in the ETIAS Central System, SIS, the EES, VIS, Eurodac, ECRIS-TCN, Europol data and Interpol SLTD and TDAWN databases.

In particular, the ETIAS Central System should verify:

- whether the applicant corresponds to a person whose data is recorded in the ECRIS-TCN for a conviction in the past 20 years for terrorists offences or a conviction in the past 10 years for any other serious criminal offences as listed in the Annex to Regulation (EU) 2018/1240 where those criminal offences are punishable under national law by a custodial sentence or a detention order for a maximum period of at least three years;

- whether the applicant is subject to an alert on return entered in SIS.

ETIAS Central Unit

Members proposed that the ETIAS Central Unit should provide periodical reports to the Commission and eu-Lisa concerning false hits generated during the automated processing. The Central Unit should seek the

cooperation of and information from ETIAS National Units in that regard.

Manual processing of applications by the ETIAS National Units

In the event of hits on SIS Return, the ETIAS national Unit of the Member State that is processing the application should:

- where the return decision is accompanied by an entry ban, immediately inform the issuing Member State through the exchange of supplementary information. The issuing Member State should immediately delete the alert on return and enter an alert for refusal of entry and stay;

- where the return decision is not accompanied by an entry ban, immediately inform the issuing Member State through the exchange of supplementary information, in order that the issuing Member State delete the alert on return without delay.

Where hits are identified, the European Search Portal should provide temporary read-only access to the results of the automated processing in the application file to the ETIAS Central Unit, until the end of the manual process. Where the data made available correspond to those of the applicant or where doubts remain, the unique ID code of the data having triggered a hit should be kept in the application file.

Fallback procedures in the case of a technical impossibility to access data by carriers

Members stressed that the ETIAS Central Unit should provide operational support to carriers. The ETIAS Central Unit should establish procedures to provide such support in Standard Operational Procedures. The Commission should, by means of implementing acts, specify the nature and the extent of the support to be provided and the means to provide such support.

PURPOSE: to define the technical amendments necessary to fully set up the European Travel Information and Authorisation System (ETIAS).

PROPOSED ACT: Regulation of the European Parliament and of the Council.

ROLE OF THE EUROPEAN PARLIAMENT: the European Parliament decides in accordance with the ordinary legislative procedure and on an equal footing with the Council.

BACKGROUND: Regulation (EU) 2018/1240 of the European Parliament and of the Council created the European Travel Information and Authorisation System (ETIAS) for third-country nationals exempt from the requirement to be in possession of a visa when crossing external borders. It laid down the conditions and procedures to issue or refuse a travel authorisation.

ETIAS enables consideration of whether the presence of those third-country nationals in the territory of the Member States would pose a security, illegal immigration or high epidemic risk.

The ETIAS Regulation provides that the personal data contained in the applications will be compared with the data contained in records, files or alerts:

- in alerts recorded in other EU information systems or databases (the ETIAS Central System, the Schengen Information System (SIS), the Visa Information System (VIS), the Entry/Exit System (EES) or Eurodac), and the European Criminal Records Information System for third-country nationals (ECRIS-TCN);

- in Europol data;

- in the Interpol databases (the Interpol Stolen and Lost Travel Document database (SLTD) or the Interpol Travel Documents Associated with Notices database (TDAWN)).

Not all data are collected or recorded in the same way in the other EU information systems and Europol data. For instance, ‘first names of parents of applicants’ are collected by ETIAS, but not in most of the other systems to be queried by ETIAS.

In order to enable the verification referred to in Article 20 of Regulation (EU) 2018/1240, it is necessary to amend the legal acts establishing the European Union's information systems to ensure interoperability with ETIAS. Without this interoperability, ETIAS cannot enter into service.

CONTENT: the proposal defines the technical amendments necessary to fully set up the ETIAS system. It amends the legal acts establishing the EU information systems that are necessary for establishing their relation with ETIAS.

As a result, it is necessary to amend Regulations of the European Parliament and of the Council (EU) 2018/1240, (EC) No 767/2008 , (EU) 2017/2226 , (EU) 2018/1861 (SIS border) in order to connect the ETIAS Central System to the other EU information systems and to Europol data and to specify the data that will be sent to and from those EU information systems and Europol data.

As compared to the ETIAS Regulation, this proposal only specifies in more details which data is to be compared to which data in the other EU information systems and provides with the necessary amendments as regards granting access rights to those other systems to ETIAS Central and National Units.

This proposal therefore presents amendments to the ETIAS Regulation to specify that the ETIAS Central System would build upon the EES Central System’s hardware and software components in order to establish a shared identity repository for the storage of the identity alphanumeric data of both ETIAS applicants and third-country nationals registered in EES. This shared identity repository would be the basis for the implementation of the common identity repository once the co-legislators adopt the legislative proposals on the interoperability of information systems.

The proposal builds on the Schengen acquis on the crossing of external borders and visas. It therefore takes into account the consequences of the various protocols and agreements signed with the associated countries.