The SIS database may contain information about:

  • individuals who are wanted for arrest and extradition
  • individuals who are wanted by the judicial authorities for some other reason
  • individuals who are not entitled to enter or stay in the Schengen area
  • individuals who have been reported missing
  • lost or stolen items, such as motor vehicles, vehicle registration plates or identity documents

Access to data in the SIS

You are entitled to know if and what data have been recorded about you in the SIS database. You can ask to see what has been recorded about you or items you own.

No access to data in the SIS

Access to data in the database may be refused:

  • if it would harm the purpose for which they were recorded
  • if it would violate someone else's privacy
  • during the period a request for checks is in effect

How to request access

You can ask to see data about yourself or items you own. The data controller is responsible for deciding whether or not you may be granted access to data held in the SIS.

Do you want to access data held about you in the Schengen Information System (SIS)?

Send the form to

NCIS
PO Box 2094 Vika
0125 Oslo
Norway

NCIS will forward your request to the competent data controller.

You can also send the form to the authority that decided the data should be recorded in the SIS. You must attach proof of your identity (photo ID). This could be a copy of your passport or driving license.

If you are not a Norwegian citizen, you must attach a copy of your passport, identity card or other valid proof of identity from your home country. See the full list of valid documents in the request form.

A decision on your request will be made as soon as possible. You should get a reply no more than 30 days after the competent data controller has received your request.

What to do if the data are wrong

You can ask the competent data controller to correct data that are wrong or incomplete, or delete incorrect data or data that have been recorded unlawfully. The same goes for data about items you own.

Before we can consider your request to correct or delete data held in the SIS database, you must first have been given access to or been notified about the data concerned. You must explain why you are asking for something to be corrected or deleted.

You can send your request to Norway's National Criminal Investigation Service (NCIS) or the authority that decided the data should be recorded.

Compensation

Have you suffered some harm because of the data recorded in the database? If so, you could be entitled to compensation. If any data is processed in a way that breaches SIS rules, you could also be entitled to compensation.

You must claim compensation no later than one year after you found out what data have been recorded.

Your claim must be examined by the competent data controller. You can send your claim for compensation to Norway's NCIS (see the above address), which will forward your request to the competent data controller, or to the authority that decided the data should be recorded.

Decisions on compensation claims relating to the processing of data under Regulation (EU) 2018/1862 (police cooperation) may be appealed to the National Police Directorate. Decisions on compensation claims relating to the processing of data under article 24 of Regulation (EU) 2018/1861 (border checks) or Regulation (EU) 2018/1860 (return regulation) may be appealed to the Ministry of Justice.

You may ask the Norwegian Data Protection Authority to review the decision

Has your request for access, correction, erasure or compensation been denied? In that case, you may ask the Data Protection Authority to conduct a review of the decision.

The Norwegian Data Protection Authority inspects how data is processed.

It is the Data Protection Authority's responsibility to supervise and ensure compliance with the Norwegian SIS Act and its associated regulations. The Authority must also check that any errors or deficiencies are corrected.

The Data Protection Authority can help you if you want someone to check that the data recorded in the SIS are correct and recorded and processed lawfully.

The Data Protection Authority can also advise you about the process for accessing, correcting and deleting data in the SIS, as well as making a complaint and claiming compensation.

Judicial remedies

If your rights have been violated as a consequence of the processing of data about you in the SIS database, you can always take the decision to court, regardless of whether or not you request the Norwegian Data Protection Authority to review the decision.

To find out how to access data held in the SIS database in another country that is part of the scheme, see the EU's Guide for exercising the right of access.