Article 1. Privacy principle
- The controller of personal data shall be the Ordering Party of the Conference (hereinafter "Ordering Party" or "Controller") who ordered the organisation of the Conference to the Organiser.
- The Ordering Party and the Organiser attach great importance to the protection of privacy and confidentiality of personal data entered by Internet users to electronic formats made available on the Conference Website.
- The Ordering Party and the Organiser shall select and apply appropriate technical and organisational measures to protect personal data processing with due diligence. Only duly authorised persons shall have full access to databases.
- Personal data are protected against unauthorised access as well as against their processing in violation of applicable laws.
- Visitors to the Conference Website may view it without providing personal details.
Article 2. Basis for personal data processing
- Personal data are processed by the Controller according to the law, including in particular to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter "GDPR") in order to
- execute the contract in connection with the user's application for participation in the Conference as a Participant or a Speaker and participation therein, pursuant to Art. 6(1)(b) of GDPR;
- comply with the legal obligations of the data Controller, pursuant to Art. 6(1)(c) of GDPR (e.g. accounting and tax obligations);
- make or protect claims, under Art. 6(1)(f) of GDPR;
- pursue the legitimate interest of the Controller, consisting in the marketing of products or own services, pursuant to Art. 6(1)(f) of GDPR.
- Specification of personal data is voluntary, but the consequence of failure to provide the data is the inability to participate in the Conference.
- The user shall not provide the Controller with personal data of third parties. If, however, the user provides such data, the user shall always declare that he/she holds the relevant consent of the third parties to provide the data to the Controller.
Article 3. Scope of personal data processing
- The Controller processes the range of data specified by the user in the electronic forms available on the Website, pursuant to Art. 2(4) and Art. 3(3) hereof.
- The data provided by the users are used to conduct the Conference, and for statistical purposes.
- IP addresses are collected during internet connections for technical purposes, related to server control. In addition, IP addresses are used to collect general, statistical demographic information (e.g. about the region from which the connection is made).
Article 4. Personal data processing control
- The user is required to provide full, current and true data.
- Each user whose personal data are processed by the Controller shall have the right to access their data and the right to rectify, delete them, restrict processing, the right to transfer data, the right to object to data processing based on the legitimate interest of the Controller.
- The user may exercise the rights set forth hereinabove by sending to the Organiser's e-mail address: firstname.lastname@example.org a relevant request, together with the specification of the full name and e-mail address of the user.
- The user shall have the right to make a complaint to the supervisory authority when the user thinks that the processing of his/her personal data violates the provisions of GDPR.
Article 5. Provision of personal data
Users' details may be provided to the entities authorise to receive them under applicable law, including to the competent judicial authorities. Personal data may be transferred to the entities processing them to the order, i.e. to the Organiser, partners providing technical services (development and maintenance of IT systems and websites), entities providing accounting and book-keeping services. Personal data will not be transferred to a third country/an international organisation;
Article 6. Retention period and other information
- Personal data will be retained only for the period necessary to accomplish the purpose regarding the exercising of the contract for participation in the Conference as a Participant or a Speaker, and after its expiry, for the period necessary to protect or make any possible claims or to comply with the legal obligation of the Controller (e.g. resulting from tax or accounting regulations).
- Personal data processed for the legitimate interest of the Controller consisting in the marketing of products or own services will be retained for the period for lodging an objection by the user.
- Personal data shall not be processed automatically by the Controller.
Article 7. Cookies
- In principle, two types of cookies are used - "session" and "permanent":
- session cookies are temporary files that are stored on the user's device until the user leaves the website or disables the software (web browser);
- permanent cookies are files that are stored on the user's device for the time period specified in the cookies parameters or until they are manually deleted by the user.
- The software used for web sites browsing (web browser) usually allows for the storage of cookies on the user's terminal equipment by default. The user can change these settings. The web browser makes it possible to delete cookies. It is also possible to block cookies automatically. Detailed information in this respect are included in the help section or in the documentation of the web browser. Accordingly, using cookies and personal data collected through them, for instance for marketing purposes, is connected with the user's consent. This consent may be expressed through appropriate configuration of the browser, and it may be withdrawn at any time, in particular by clearing the history of cookies and disabling cookies in the web browser settings.