Whereas
European University Foundation (EUF) has organized, in execution of the EDSSI project, a series of trainings to be held via web, which will take place on the ZOOM platform which EUF uses for the realization of these meetings;
the participant, at the moment of registration
grants
to European University Foundation, located at Château de Munsbach 31, rue du Parc 5374 Munsbach Luxembourg, registered in the Trade and Companies Register of Luxembourg under no G190, to its authorized collaborators, the right to film and/or record, even through authorized third parties, with photographic and phonographic means on digital or any other current support, its image, voice, name, intervention and performance during the realization of the meetings provided in connection with [insert project name or context of the organisation]. The release of this waiver is voluntary but essential for the completion and participation in the meetings in question, since they must necessarily take place in virtual mode through electronic devices. EUF will have the right to use and also publish the related videos, images and recordings, within three years from the event, within the scope of press releases for editorial purposes or diffused on institutional social networks, on monitors visible to the public during events organized by EUF, in any venue allowed by the law, by any known or future invented means, within the limits of the law, of all copyrights, of the rights granted and in any case of any other right related to the image and in full respect of the dignity and decorum of the subject filmed. As a consequence of the above, EUF is the sole holder of the filming, recordings, interventions and whatever transited on the [ZOOM or other] platform during the above-mentioned web meetings. The shooting and the use of the images are to be considered free of charge. EUF will process the participant’s data and the contents recorded during the web meetings, for the purposes related to the project, as per the privacy policy statement referred to below, in full compliance with EU Regulation 2016/679. In compliance with applicable laws, it is also forbidden for all participants to telematic meetings to record, photograph or disseminate in any way and by any means the whole or any part of the content emerged during the virtual meeting, which are images and/or data of any participant connected, even through screenshots of the screens.
Privacy Policy pursuant to EU Regulation 679/2016 – General Data Protection Regulation (“GDPR”).
Dear Mr./Mrs,
as required by the applicable laws, we wish to inform you about the processing of your personal data and your rights, you as follows:
1. Data Controller
The Data controller is European University Foundation, located at Château de Munsbach 31, rue du Parc 5374 Munsbach Luxembourg, registered in the Trade and Companies Register of Luxembourg under no G190 (hereinafter, EUF).
In order to contact the Data Controller on privacy matters, it is possible to write to: contact@uni-foundation.eu.
The updated list of Data Processors and Authorized Processors is available by contacting EUF at the same address.
2. Personal data subject to processing
In order to carry out the activities related to the webinar and to satisfy your request for updates on the events and activities organized or promoted by EUF, we use your identification data including contact details (e-mail), data related to your job position and employer, photos and videos of the above events you decide to participate in.
3. Purpose, legal basis and nature of processing
The collection and processing of your personal data is done in order to:
- allow you to participate in the webinars;
- be able to carry out the obligations inherent to the initiatives and activities organized;
- involve you in initiatives and activities organized or promoted by EUF;
- fulfil any obligations of managerial, administrative and accounting nature related to the Data Controller;
- fulfil any legal obligations
- fulfil the reporting obligations related to the EDSSI project;
- pursue the legitimate interest of the Controller.
In relation to the fulfilment of obligations provided for by state laws, regulations and EU legislation, or by provisions issued by authorities empowered to do so by law and by supervisory or control bodies, the relevant treatment does not require the consent of the person concerned.
The provision of the above-mentioned data is functional to the participation in the webinar and is a necessary requirement for access to related activities. Failure to provide such data will make it impossible to execute the registration, your request to participate, and to comply with the obligations related to them.
The Data Controller may process your common personal data in order to
- inform you in paper and/or telematic form (newsletter) about the activities organized and/or promoted by the Controller;
- communicate them in part to collaborators or entities in partnership.
The communication of such data is optional, but necessary in order to receive updates on the activities mentioned. You may object to this purpose of processing at any time. The opposition will not have any effect on the pursuit of the main purpose of registration or participation in the webinar.
The data you provide will be treated according to the principles of fairness, lawfulness, relevance, proportionality and transparency for the management of the relationship and to respond to your requests.
The Controller does not use automated decision-making processes concerning your personal data and does not make profiling.
4. Recipients
Your personal data will be processed in paper, computer or telematic form by the Controller’s internal staff and external collaborators authorized to process them. The list is available from the Data Controller, by contacting them at the above address. The data may also be collected and processed by subjects with which the Controller’s collaborates. The data may also be communicated to service providers of the Controller such as, computer service companies, outsourcing companies, cloud services, consultants and professionals, insurance companies, credit recovery companies, fraud control companies, institutions and/or patronages, companies or organizations the Controller has appointed as responsible for the specific treatment and whose list is available at the Data Controller, contacting them at the above address.
5. Data transfer
The Data Controller does not transfer your personal data to third countries outside the European Union, however it reserves the right to use cloud services in accordance with the provisions of Articles 44 et seq. of the GDPR.
6. Data retention
Personal data will be stored until the cessation of the Controller’s activities related to the purposes indicated above, and in compliance with their legal obligations. Personal data that does not need to be stored in relation to the purposes indicated, will be deleted or transformed into anonymous form. The information systems used to manage the information collected are configured, already in origin, in order to minimize the use of the same.
7. Rights of the Data Subject
As a data subject, you may exercise the rights under Art. 15 et seq. GDPR according to which:
- you can obtain confirmation of the existence or not of personal data concerning you, even if not yet recorded, and their communication in intelligible form;
- you can obtain information on: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applied in the event of processing carried out with the aid of electronic instruments; d) the identity of the Data Controller and Data Processors; e) the subjects or categories of persons to whom the data may be communicated or who can learn about them as appointed representative in the State, managers or agents;
- you may obtain: a) the updating, rectification or, when interested, integration of data; b) the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed; c) certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
- you may oppose, in whole or in part, for legitimate reasons, the processing of personal data concerning him, even if pertinent to the purpose of collection.
Where applicable, you also have the rights under Art. 16-21 GDPR (Right of rectification, right to be forgotten, right to restriction of processing, right to data portability, right to object), as well as the right to complain to the Supervisory Authority.
Requests should be addressed to the Data Controller at the above-mentioned address.