Privacy Policy
Privacy Symposium aims and ambition
The Privacy Symposium conference (hereafter referred to as the “Conference”) aims at supporting international dialogue, cooperation and knowledge sharing on data protection, compliance and innovative technologies. The Conference is co-organised by several partners and intends to support dialogue and cooperation among experts and stakeholders engaged in data protection through regular conferences and meetings.
Data Controller and Users
The Conference is organised by an Organising Committee that gathers several organisations, including the foundation Mandat International located in Geneva, Switzerland (hereafter referred to as the “Controller”) that serves as data controllers of the privacy symposium website and registration process on behalf of the Organising Committee.
The term “Users” refers to any user of the website and/or participant to the Conference.
The term “Services” refers to the Conference and related activities, including the registration process and communication with the Users.
Purpose and Legal Basis
ECCP processes personal data for the sole purposes of its aims, activities and Services, including:
Personal Data is collected on the legal basis of prior informed consent, and where applicable on legitimate interest basis, such as security of the online services.
Data Minimisation
The Controller avoids collecting unnecessary personal data and follows “data protection by design” and “data minimisation” policies for data processing and retention.
How Data Can Be Collected
The Controller can receive information and personal data through its websites, email notifications, and other interactions means, and may include:
Policy Towards Children
In principle, our Services are not directed to persons under 16 years of age. Any participant to a Controller event who is a minor of age shall have a parental agreement before sharing any personal data with us. Anyone who becomes aware that someone under 16 years of age has provided us with personal data without a parental agreement should contact us.
Data Storage and Retention Period
Controller stores its data in Europe (mainly Switzerland). The data retention period is minimised and data that are not useful anymore are deleted. The data retention period is determined by taking into account the legal, security, management and other legitimate Service requirements.
Recipients, Sharing and Transfer of Information
Personal data are processed with care and strict rules are applied to avoid any unnecessary data transfers to third parties or to geographic locations that may expose the data at risk. We may share personal data in the following cases:
Privacy Symposium Newsletter
Visitors can voluntarily register to the newsletter of the Privacy Symposium. The newsletter service is provided by the company Infomaniak. There’s no third-party tracking in messages we send through Infomaniak besides Infomaniak’s own analytics, which may aggregate how many subscribers open a message or click the links inside. Infomaniak stores your email addresses in Europe. Infomaniak’s privacy policy is available at the following link: https://www.infomaniak.com/en/legal/confidentiality-policy
You can unsubscribe from the newsletters at any time. To do so, either send us a request through the contact form on the conference website or follow the link at the end of the newsletter.
Security
We use physical, technical, and administrative measures to safeguard information in our possession against loss, theft and unauthorised use, disclosure, or modification. Please note however, that no data transmission or storage can be guaranteed to be 100% secure. As a result, while we strive to protect the information we maintain, we cannot ensure or warrant the security of any information that you transmit to us. If you identify any weakness in our security, please inform us.
Data Subject Rights
Users have rights on their personal data. You may contact the data protection officer of the Controller in order to assert your rights as a Data Subject, including the right to access, rectify, erase your personal data; the right to withdraw consent and to restrict or object to the processing of your personal data; and the right to portability of your personal data. Data Subjects also have the right to lodge a complaint with a supervisory authority in case their rights would be violated.
Information on Data Processing
The Controller does not use the personal data collected on this website to perform automated decision making (as defined in Art. 22 of the GDPR) or to profile the data subjects. Some online services and tasks can be automated, such as registrations to our events or newsletter, but they are not based on analysing the personal data or profile of the data subject.
Registration and Payment
Registration and payment services are performed by external services acting data processors, including:
Grenadine Technologies Inc. (www.grenadine.co) based in Montreal, Canada, a jurisdiction covered by an adequacy decision of the European Commission. More on Grenadine Privacy Policy at: https://events.grenadine.co/about-us/grenadine-event-planner-privacy-policy/
Stripe (www.stripe.com) is processing the credit card payment transactions. You will find more details on Stripe Privacy policy at: https://stripe.com/es-419-ch/privacy.
Names and affiliations of registered participants my be shared on a need basis with partners involved in the organising and access control to the conference, including Ca’Foscari University and its foundation.
External Links
The website of the conference may include hyperlinks to external pages and resources, such as video files, that are provided and controlled by third parties and are subject to distinct privacy and cookies policies.
Continuous Data Protection Policy Enhancement and Collective Monitoring
We are interested to hear your suggestions for enhancing our data protection and privacy policy. If you identify any area of improvement, any inconsistency, or any data protection breach by the processors, please inform us without any delay through the contact form of the conference website.
Changes to this Policy
We reserve a right to revise this Privacy Policy and make amendments at our sole discretion. The most current version of the policy will govern our use of your information and will be available on the Conference website: https://www.privacysymposium.org. By continuing to access or use the Services after those changes become effective, you agree to be bound by the revised Privacy Policy.
Data Controller Contact Details
The foundation Mandat International (hereafter “Controller”) is located in Switzerland at 15 Avenue de Secheron, 1202 Geneva, Switzerland.
The Controller and its data protection officer can be reached by regular post mail or through the contact form on the conference website.
Interpretation Services
The Conference may use third-party interpretation services for some of its sessions. In principle, only speakers' content and questions of the public are likely to be interpreted. Human and automated interpretation services are provided by or leveraging on the following service providers:
Service providers are not supposed to store any data beyond the duration of the sessions to be interpreted, and no further processing of the data is authorised by the conference.
Remote Participation
Third party services may be used by the venue and Ca' Foscari University for remote participation, including:
For both services, data are intended to be processed in Europe.
Cookies Policy
Cookies we use on the Privacy Symposium website
We aim at avoiding and minimising the use of any cookies. Therefore, this website does not use first party cookies and does its best effort to avoid third party cookies except where required for specific services such as registrations and online payments. While the registration forms are visually integrated in the conference website, the forms for the registration are provided and hosted on external servers handled by third parties acting as data processors. You can find additional information on the cookies and privacy policy of the processor in the following pages:
Granadine (registration form and service):– Privacy Policy: https://events.grenadine.co/about-us/grenadine-event-planner-privacy-policy/
Stripe (credit card payment processing service):– Privacy policy: https://stripe.com/es-419-ch/privacy– Cookies settings: https://stripe.com/es-419-ch/cookie-settings
General Information about Cookies
The following is a general overview of what Cookies are and is for informational purposes only.
A cookie is a small text file that a website, app or other platform stores on your device with information on your browsing and use. Cookies were initially developed to improve user experience online, for instance to remember the Users login, preferences and other customisation functions. They also help in understanding Users’ interaction with the website and learning what can be improved.
There are two types of cookies depending on its lifespan:
Cookies can also be classified depending on the cookie owner:
Depending on its purpose, cookies can be divided into the following groups:
User’s Consent
According to the European General Data Protection Regulation (GDPR), users must be informed about the cookies used by the websites they visit. Users must provide their prior informed consent, except for some technical cookies, such as:
For Profiling cookies, namely those aimed at creating user profiles and used to send advertising messages in line with the preferences shown by the user during navigation, the user’s prior consent is necessary.
We reserve a right to revise this Cookie Policy and make amendments at our sole discretion. The most current version of the policy will govern our use of your information and will be available on the: https://www.privacysymposium.org. By continuing to access or use the Services after those changes become effective, you agree to be bound by the revised Cookie Policy.