The Entry/Exit System is, at heart, a database — and understandably, travelers want to know exactly what it holds about them. EES records personal and biometric data on every non-EU traveler crossing the Schengen border. Here is precisely what is collected, how long it is stored, who can see it, and the data-protection framework the EU says governs it.
What Personal Data EES Records
On your first crossing under the Entry/Exit System, the following goes into your EES file: your name, date of birth, nationality and gender; your passport (or travel document) number, issuing country and expiry date; and, on every trip, the date, time and place of each entry and exit. Refusals of entry are also recorded. This replaces the passport stamp with a precise, searchable digital record.
What Biometrics Are Collected
Two biometric identifiers: a facial image and fingerprints. Not everyone gives both. Visa-exempt travelers give both a facial image and fingerprints. Visa-required travelers give only a facial image, because their fingerprints are already held in the separate Visa Information System from their visa application. Children under 12 give only a facial image — no fingerprints. The fingerprints and facial scan page covers the capture process in detail.
How Long Is Your Data Kept?
EES stores your record for three years from your most recent entry or exit. This retention is what makes repeat crossings fast — within that window, the border only needs to verify you against the stored file rather than re-enrol you. If your three years lapse without a crossing, you re-register on your next trip. If you overstay, your data is kept longer and you are flagged, which can affect future entries and ETIAS applications.
Who Can Access EES Data?
EES is operated by eu-LISA, the EU agency for large-scale IT systems. Access is granted to border, immigration and visa authorities of the participating countries, and under defined conditions to law-enforcement bodies for serious-crime and terrorism purposes. The EU states the system operates in full respect of fundamental rights and data protection, with the biometric technology designed to reduce mistaken identity and racial profiling rather than increase it.
The Privacy Framework
EES sits within the EU's data-protection regime, and travelers have rights over their data, including rights of access and correction through the relevant authorities. The stated purposes are specific: detecting overstayers, identifying document fraud and forged passports, and supporting border security — not general surveillance. Whether that reassures you or not, the practical reality is that crossing a Schengen border as a non-EU national now means being in the database. For how this pairs with the pre-travel system, see EES vs ETIAS.
Frequently Asked Questions
What data does EES collect?
Your name, date of birth, nationality, gender, and passport number, issuing country and expiry; the date, time and place of every entry and exit; refusals of entry; and biometrics — a facial image plus fingerprints (facial image only for visa holders and children under 12).
How long does EES keep my data?
Three years from your most recent crossing. This retention makes repeat trips fast, since the border verifies you against the stored record rather than re-enrolling you. Overstays are kept longer and flagged.
Does EES take fingerprints from everyone?
No. Visa-exempt travelers give fingerprints and a facial image. Visa-required travelers give only a facial image, as their fingerprints are already in the Visa Information System. Children under 12 give only a facial image.
Who can access EES data?
The system is run by eu-LISA. Border, immigration and visa authorities of participating countries have access, and law-enforcement bodies under defined conditions for serious crime and terrorism. The EU says it operates with full data-protection safeguards.
Is EES data secure and private?
The EU states EES operates in full respect of fundamental rights and data protection, with defined purposes — detecting overstayers, spotting document fraud, and border security. Travelers have data-access and correction rights through the relevant authorities.
EES is already live at the border. ETIAS — the online pre-authorization that pairs with it — launches late 2026. Alert subscribers get the official €20 link the day the portal opens, before the fee-mill imitators.
Join the Portal-Open Alert →