The processing of personal data concerns: description of contacts list holding postal and/or telematic address details of individual or organisation-related persons. This processing is managed at the Joint Research Centre (JRC) by the Disaster Directorate for Space, Security and Migration in relation with Horizon 2020 - the Framework Programme for Research and Innovation (2014-2020) for the purpose mentioned under point 2. As this processing collects and further processes personal data, Regulation (EC) 45/2001, of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community institutions and bodies and on the free movement of such data, is applicable. The Unit Head of "Inter-institutional, International Relations and Outreach" acts as Controller of the processing of personal data covered by generic notification "CONTACTS LISTS & NETWORK PARTNERS DATABASES AT THE JRC " (DPO-1924). The JRC co-ordinator (e.g. Unit Head) of the Disaster Risk Management Unit, E1, manages the processing itself, under the responsibility of his Director who acts as Processor.
The only data collected is an email address associated to a username and password, necessary to be authenticated by the service.
Personal data are collected and processed in order to communicate with the data subjects about the JRC research activities related to the Framework Programme for Research and Innovation (2014-2020).
Personal data are normally collected through classical databases or Excel forms and stored on JRC servers.
Access to the personal data is allowed to authorized officials and other staff of the JRC. No personal data is transmitted to parties, which are outside the recipients and the legal framework mentioned. In some specific cases, personal contact data could be published on a publicly available website of the JRC. An additional opt-in/opt-out option is proposed to confirm acceptance to such publication.
The collected personal data is stored on the servers of JRC and underlie the Commission Decision C (2006) 3602 of 17/08/2006 “concerning the security of information systems used by the European Commission” defines IT security measures in force. Annex I defines the security requirements of EC Information Systems. Annex II defines the different actors and their responsibilities. Annex III 2 defines the rules applicable by users.
The data subject can send a message to the Controller or to the address mentioned under "Contract Information", by explicitly specifying your request to have your personal data modified or deleted. Special attention is drawn to the consequences of a delete request, in which case any trace to be able to contact you will be lost.
Your personal data is kept as long as follow-up actions linked to the above mentioned purpose are necessary. All personal data will be deleted at the end of the Framework Programme for Research and Innovation (Horizon 2020).
In case you have questions related to this processing or concerning any information processed in this context, or on your rights, feel free to contact:
Complaints, in case of conflict, can be addressed to the European Data Protection Supervisor: edps@edps.europa.eu
