What is an EES – Entry/Exit System?
The Entry/Exit System (EES) is an automated IT system that will replace the manual stamping of passports at the external borders of the Schengen Area. It will register third-country nationals each time they cross the borders for short stays.
Launch date: Initial implementation begins on October 12, 2025, with full deployment expected by April 2026..
Key Features of the EES:
- Electronic recording of entry, exit, and refusal of entry for third-country nationals.
- Use of biometric data (facial image and fingerprints).
- Monitoring of stay duration (maximum 90 days within any 180-day period).
- Automatic detection of overstays..
Who does it apply to?
The EES applies to third-country nationals (non-EU/Schengen citizens) who:
- Hold a short-stay visa, or
- Are visa-exempt but entering the EU for a short stay (e.g. tourists, business travelers).
- This includes citizens of countries such as the USA, UK, Canada, Serbia, Bosnia and Herzegovina, and others.
Who Is Exempt?
- EU and Schengen citizens (including Iceland, Norway, Liechtenstein, and Switzerland).
- Holders of long-term residence permits or visas in an EU country.
- Travelers entering Ireland or Cyprus, as these countries do not participate in the EES.
- Individuals with special status, such as:
Objectives of the EES:
- Modernize border control and reduce waiting times.
- Prevent identity fraud and document forgery.
- Enhance internal security within the EU.
- Improve tracking of entries, exits, and duration of stay.
Impact on business travel
Employees from third countries who frequently travel to the EU will need to:
- Undergo biometric registration (photo + fingerprints).
- Comply with the 90/180-day rule.
- Be aware that overstays will be automatically recorded, potentially affecting future travel.
Initial delays at border crossings are expected during the rollout phase due to biometric data collection. Companies should plan accordingly and inform employees of the new procedures.
Employer Responsibilities:
- Track employees’ travel and duration of stay in the EU.
- Prevent unauthorized overstays.
- Update travel policies and HR procedures to ensure compliance.
GDPR and Data Protection
The EES involves the collection of biometric data, which is sensitive under the General Data Protection Regulation (GDPR). The system is designed to fully respect fundamental rights and data protection standards.
- Legal Basis: Governed by EU Regulation (EU) 2017/2226.
- Purpose: Identification, entry/exit tracking, and fraud prevention.
- Data Retention: Up to 3 years, or 5 years in case of overstays or entry refusals.
- Individual Rights:
- Right to information and access to personal data.
- Right to correct inaccurate data.
- Right to lodge a complaint with a data protection authority.
- Security: Managed by eu-LISA, the EU agency for large-scale IT systems in the area of freedom, security, and justice.