How the European Union External ActionEEAS collects, processes and stores personal data ?
Data Protection is a tool to ensure protecting information that identifies you and any other natural person. It is one of the fundamental rights in the EU laid down also in the Charter of Fundamental Rights (Articles 7 and 8). This right is guaranteed to any individual including third parties, whose data the EEAS and the Union Delegations may process for an explicit purpose. All personal data are handled in accordance with the pertinent EU legislative framework (Regulation (EU) 2018/1725) with regard to the processing of personal data. When collecting, processing and storing personal data, the EEAS and the Union Delegations have the obligation to keep records and document processes in order to demonstrate data protection compliance. It is also our responsibility to inform individuals, whose data we process, if personal data is kept and to communicate the rights in relation to this process. In order to comply with this legal obligation we use Privacy Statements. These are data protection notices which provide information how we collect, handle and retain personal data.
Each statement contains information on the following:
- Why the personal information is being processed and on what legal basis
- What type of data is collected
- Who controls and processes the data
- How long the data is kept
- Who the recipients of the data are, to whom it may be disclosed
- How we ensure security of the data
- How the individuals can exercise their rights in this matter
- How to contact the Data Protection Officer and the European Data Protection Supervisor in case of recourse
In relation to the different purposes and types of data that we collect, process and keep, the EEAS Privacy Statements will provide the necessary information, for instance on events and meetings, contact lists and also on how data is processed by the EEAS website.