COLLECTION OF ANONYMOUS TRAFFIC DATA ON THE JRC INTERNET WEBSITES
When someone browses a JRC website, anonymous site usage information is collected via various technical means. The usage of the site is recorded in log files. These files contain no personal information, nor information about which other sites the visitor has browsed. They allow the JRC to improve the service by knowing its usage, and are processed anonymously.
PERSONAL INFORMATION PUBLISHED ON JRC INTERNET WEBSITES
All personal information displayed on any JRC website is subject to the following Specific Privacy Statement, accepted by the data subject prior to the collection of his/her personal data, and is published with his/her unambiguous consent.
PERSONAL DATA ON JRC INTERNET PAGES
SPECIFIC PRIVACY STATEMENT
Presentation on JRC web sites of contact details of senior management and key contact persons to facilitate contact with stakeholders, customers, journalists.
As a science-based organization, the JRC is a highly networked body that depends significantly on individual interaction of its staff with partners and scientists worldwide. Scientific reputation of the organization as well as of its staff is closely linked and depends in many instances on the merits or achievements of the individual.
The Internet is a prime medium for information exchange where the JRC needs to actively communicate to its target audiences as defined in the JRC External Communication strategy.
Your personal data will be collected and further processed for the purposes detailed hereafter under point 2. This processing of personnel data is under the responsibility of the Head of Unit Internal and external communication at the JRC.
As this processing collects and further processes personal data, Regulation (EC) 45/2001, of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community institutions and bodies and on the free movement of such data, is applicable.
2. What personal information do we collect, what is the legal basis, for what purpose and through which technical means?
The personal data collected and further processed are:
First name, Last name, Title, Function, work email address, work mail address, work phone number, work fax number, personal or group picture, personal CV, signature.
Legal Basis of processing:
The processing operations on personal data on JRC web sites are necessary for the performance and the support of the numerous tasks carried out by the Commission, as mandated by the Treaties, and more specifically articles 5, 7 and 211 - 219 of the Treaty of Amsterdam.
These processing operations are also necessary for the implementation of:
- COUNCIL DECISION of 19 December 2006 concerning the Specific Programme to be carried out by means of direct actions by the Joint Research Centre implementing the Seventh Framework Programme of the European Atomic Energy Community (Euratom) for nuclear research and training activities (2007 to 2011) (2006/977/Euratom);
- COUNCIL DECISION of 19 December 2006 concerning the Specific Programme to be carried out by means of direct actions by the Joint Research Centre under the Seventh Framework Programme of the European Community for research, technological development and demonstration activities (2007 to 2013) (2006/975/EC).
Purpose of processing:
Use of personal data on web sites for the purpose of providing contact details in relation with a specific activity or event or to communicate on achievements or contributions of colleagues to JRC activities.
The data collection and processing is done using the Commission's IT standards and telecommunication infrastructure. Depending on the kind of website where the information is to be published, the personal data can be stored on the Commission's EUROPA servers or on JRC servers, using a simple file system (e.g. in the case of static Internet pages) or a relational database (e.g. in the case of dynamic Internet pages or when using a dedicated Content Management System).
3. Who has access to your information and to whom is it disclosed?
Your information being published on JRC Internet websites, it can be accessed by any person in the world using the Internet or subscribing to Internet notification services.
The possibility to update or erase your personal data is only granted through User_Id / Password to a defined population of users. These users typically are: the Unit Head acting as controller of the processing of personal data and the webmasters of the websites or system administrators of the software used.
4. How do we protect and safeguard your information?
The collected personal data is stored on the servers of JRC and underlie the Commission Decision C (2006) 3602 of 17/08/2006 "concerning the security of information systems used by the European Commission" defines IT security measures in force. Annex I defines the security requirements of EC Information Systems. Annex II defines the different actors and their responsibilities. Annex III defines the rules applicable by users. See notification DPO-1946 and notification DPO-1924.
5. How can you verify, modify or delete your information?
In case you want to verify which personal data is stored on your behalf by the responsible controller, have it modified, corrected, deleted or blocked, please write an e-mail message to the functional mailbox address mentioned hereafter under "Contact Information", explicitly specifying your request.
6. How long do we keep your data?
Data are stored for as long as the data subject carries out the related function, for a maximum duration of 4 years starting from filling the authorisation form. For retention after that period, a renewed declaration of consent from the data subject is required.
7. Contact Information
Should you have any queries concerning the processing of your personal data, please address them to the controller under the following mailbox: email@example.com
On questions relating to the protection of personal data, you can contact:
- the DG JRC Data Protection Co-ordinator: firstname.lastname@example.org
- the Commission's Data Protection Officer: email@example.com
In the event of a dispute, you can send a complaint to the European Data Protection Supervisor: firstname.lastname@example.org