Processing Activities

Search


Data subject categories

Fields

Purpose
Description
Processed data
Recipients
Supporting assets
reference number

Results

  • Activity: Prevention and management of conflicts of interests applicable to the bodies of BBI JU
    Reference number DPO-4-03
    Data subject category Relatives of the data subject
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is processed for the sole purpose of applying the rules for the prevention and management of conflicts of interest applicable to the members of the bodies of the BBI JU listed under Article 4(1) of the Statutes in order to ensure the handling of situations where potential conflicts of interest may arise in a transparent and consistent manner.
    Description
    Collecting and screening declarations of confidentiality and non-conflict of interests signed by all members of the BBI JU bodies before appointment, after appointment   and spontaneously at any time in the course of their duties (ad-hoc Declaration).
    The name of the Members of Governing Board, Scientific Committee, States Representatives Group together with the name of their employer or any organisation which pays them  shall be published on the  JU’s website.The declarations of interest by the Members of the Governing Board shall be available for public scrutiny  with due respect to the applicable EU rules on protection of personal data  and access to documents
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Membership of a professional association Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Memberships Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors n/a
    Restrictions of data subject rights
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Executive Director, Legal Manager, DPO, Data subject themselves: , Individuals/organisations in direct relationship with controller: Chairperson and Vice chair person of the relevant body or group
    Joint controllers n/a
    privacy policy url On-going
    Last updated 12.05.2020
    internal reference DPO-4-03
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Salary
    Reference number DPO-1-06
    Data subject category Relatives of the data subject
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected in order to determine the staff member’s entitlements. Documents are collected by the HR Officer and sent to the relevant Commission service (PMO) which will process the data in order to determine the financial rights of the staff member.
    Description
    Salary slips, allowances
    Processed data Education Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Family composition Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Financial information Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Personal characteristics Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Personal details Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Processors n/a
    Restrictions of data subject rights
    n/a
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Data kept according to the security measures adopted by the European Commission, Health data processed with the principles of medical confidentiality by HR officer, Obligation of confidentiality of the staff, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Staff members: Financial team, Human resources Manager, European Commission and its services: Medical Service, Other: BBI JU Executive Director, European Commission and its services: PMO
    Joint controllers PMO
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-06
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Occupational health
    Reference number DPO-1-02
    Data subject category Relatives of the data subject
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Management of health data in the workplace
    Description
    Management of health data in the workplace 
    Processed data Family composition Public interest article 5 a) of regulation 2018/1725 3 years
    Health data Art. 10 §2 (b) regulation 2018/1725 10 years after end of contract
    Processors
    • External service provider ('contractor') (EEA)
    • Secured IT data base (Joint Sickness Insurance Scheme) (Belgium)
    Restrictions of data subject rights
    no specific restrictions in place at bbi ju. the medical files are kept at the commission's medical services. commission decision (eu) 2019/154 of 30 january 2019 laying down internal rules concerning the restriction of the right of access of data subjects to their medical files.
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Health data processed with the principles of medical confidentiality by HR officer, Obligation of confidentiality of the staff, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients n/a
    Joint controllers DG Human Resources and Security, PMO
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-02
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Prevention and management of conflicts of interests applicable to the bodies of BBI JU
    Reference number DPO-4-03
    Data subject category Members of the Governing Board
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is processed for the sole purpose of applying the rules for the prevention and management of conflicts of interest applicable to the members of the bodies of the BBI JU listed under Article 4(1) of the Statutes in order to ensure the handling of situations where potential conflicts of interest may arise in a transparent and consistent manner.
    Description
    Collecting and screening declarations of confidentiality and non-conflict of interests signed by all members of the BBI JU bodies before appointment, after appointment   and spontaneously at any time in the course of their duties (ad-hoc Declaration).
    The name of the Members of Governing Board, Scientific Committee, States Representatives Group together with the name of their employer or any organisation which pays them  shall be published on the  JU’s website.The declarations of interest by the Members of the Governing Board shall be available for public scrutiny  with due respect to the applicable EU rules on protection of personal data  and access to documents
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Membership of a professional association Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Memberships Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors n/a
    Restrictions of data subject rights
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Executive Director, Legal Manager, DPO, Data subject themselves: , Individuals/organisations in direct relationship with controller: Chairperson and Vice chair person of the relevant body or group
    Joint controllers n/a
    privacy policy url On-going
    Last updated 12.05.2020
    internal reference DPO-4-03
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Prevention and management of conflicts of interests applicable to the bodies of BBI JU
    Reference number DPO-4-03
    Data subject category Members of Scientific Committee
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is processed for the sole purpose of applying the rules for the prevention and management of conflicts of interest applicable to the members of the bodies of the BBI JU listed under Article 4(1) of the Statutes in order to ensure the handling of situations where potential conflicts of interest may arise in a transparent and consistent manner.
    Description
    Collecting and screening declarations of confidentiality and non-conflict of interests signed by all members of the BBI JU bodies before appointment, after appointment   and spontaneously at any time in the course of their duties (ad-hoc Declaration).
    The name of the Members of Governing Board, Scientific Committee, States Representatives Group together with the name of their employer or any organisation which pays them  shall be published on the  JU’s website.The declarations of interest by the Members of the Governing Board shall be available for public scrutiny  with due respect to the applicable EU rules on protection of personal data  and access to documents
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Membership of a professional association Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Memberships Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors n/a
    Restrictions of data subject rights
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Executive Director, Legal Manager, DPO, Data subject themselves: , Individuals/organisations in direct relationship with controller: Chairperson and Vice chair person of the relevant body or group
    Joint controllers n/a
    privacy policy url On-going
    Last updated 12.05.2020
    internal reference DPO-4-03
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Prevention and management of conflicts of interests applicable to the bodies of BBI JU
    Reference number DPO-4-03
    Data subject category Members of States Representatives Group
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is processed for the sole purpose of applying the rules for the prevention and management of conflicts of interest applicable to the members of the bodies of the BBI JU listed under Article 4(1) of the Statutes in order to ensure the handling of situations where potential conflicts of interest may arise in a transparent and consistent manner.
    Description
    Collecting and screening declarations of confidentiality and non-conflict of interests signed by all members of the BBI JU bodies before appointment, after appointment   and spontaneously at any time in the course of their duties (ad-hoc Declaration).
    The name of the Members of Governing Board, Scientific Committee, States Representatives Group together with the name of their employer or any organisation which pays them  shall be published on the  JU’s website.The declarations of interest by the Members of the Governing Board shall be available for public scrutiny  with due respect to the applicable EU rules on protection of personal data  and access to documents
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Membership of a professional association Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Memberships Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors n/a
    Restrictions of data subject rights
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Executive Director, Legal Manager, DPO, Data subject themselves: , Individuals/organisations in direct relationship with controller: Chairperson and Vice chair person of the relevant body or group
    Joint controllers n/a
    privacy policy url On-going
    Last updated 12.05.2020
    internal reference DPO-4-03
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Prevention and management of conflicts of interests applicable to the bodies of BBI JU
    Reference number DPO-4-03
    Data subject category BBI JU DPO
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is processed for the sole purpose of applying the rules for the prevention and management of conflicts of interest applicable to the members of the bodies of the BBI JU listed under Article 4(1) of the Statutes in order to ensure the handling of situations where potential conflicts of interest may arise in a transparent and consistent manner.
    Description
    Collecting and screening declarations of confidentiality and non-conflict of interests signed by all members of the BBI JU bodies before appointment, after appointment   and spontaneously at any time in the course of their duties (ad-hoc Declaration).
    The name of the Members of Governing Board, Scientific Committee, States Representatives Group together with the name of their employer or any organisation which pays them  shall be published on the  JU’s website.The declarations of interest by the Members of the Governing Board shall be available for public scrutiny  with due respect to the applicable EU rules on protection of personal data  and access to documents
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Membership of a professional association Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Memberships Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors n/a
    Restrictions of data subject rights
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Executive Director, Legal Manager, DPO, Data subject themselves: , Individuals/organisations in direct relationship with controller: Chairperson and Vice chair person of the relevant body or group
    Joint controllers n/a
    privacy policy url On-going
    Last updated 12.05.2020
    internal reference DPO-4-03
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: External audits and ex-post controls
    Reference number DPO-5-02
    Data subject category JU Staff: temporary
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected and managed for the sole purpose of preparing and communicating the audit reports by the external auditors.
    Description
    Personal data is collected in the conduct of checks and financial controls of grant agreements or service contracts aimed at verifying beneficiary's or contractor's or subcontractors' or third parties' compliance with all contractual provisions (including financial provisions). The purpose of the control is to check that the action and the provisions of the grant agreement or contract are being properly implemented and to assess the legality and regularity of the transaction underlying the implementation of the EU budget..
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation (article 5 (b) of regulation 2018/1725) 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors
    • Audit management system (Belgium)
    Restrictions of data subject rights
    no restriction per se in the bbi ju related operations but no information on the scope of the decision laying down internal rules for the court of auditors.
    Security measures Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU staff: Executive Director, Internal Control Coordinator, Head of Administration & Finance, Data Protection Officer, Administration and Finance Support team, Police or legal organisations: European Court of Auditors, European Commission and its services: EDPS, European Commission and its services: Accounting Officer of the European Commission
    Joint controllers n/a
    privacy policy url
    Last updated 12.05.2020
    internal reference
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Teleworking
    Reference number DPO-1-07
    Data subject category JU Staff: temporary
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose The purpose of this processing operation is to manage in a legal, standardized and centralized framework all temporal aspects of a jobholder's framework with respect to the management and monitoring of the implementation of teleworking. In particular, the treatment consists in identifying the persons authorized to telework according to various criteria such as the possibilities of telework, the interest of the service or the motivation of the person. The persons concerned have the possibility of making a request for telecommuting either casual or structural via Sysper.
    Description
    Management of the teleworking requests and agreements; planning regarding the ordering of ICT tools and devices for the performance of telework. Staff members are granted access to an electronic tool in which they can launch a request for teleworking. 
    Processed data Family composition Public interest article 5 a) of regulation 2018/1725 10 years after the extinction of all rights of the staff member and any dependents
    Habits Public interest article 5 a) of regulation 2018/1725 10 years after the extinction of all rights of the staff member and any dependents
    Health data Public interest article 5 a) of regulation 2018/1725 10 years after the extinction of all rights of the staff member and any dependents
    Personal details Public interest article 5 a) of regulation 2018/1725 3 years
    Profession Public interest article 5 a) of regulation 2018/1725 3 years
    Processors
    • IT Tool SYSPER (Belgium)
    Restrictions of data subject rights
    n/a
    Security measures Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU staff: Executive Director, Line Managers, HR Manager, Data subject themselves: Right to access and rectify their own data in SYSPER.
    Joint controllers DG DIGIT, DG Human Resources and Security
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-07
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Salary
    Reference number DPO-1-06
    Data subject category JU Staff: temporary
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected in order to determine the staff member’s entitlements. Documents are collected by the HR Officer and sent to the relevant Commission service (PMO) which will process the data in order to determine the financial rights of the staff member.
    Description
    Salary slips, allowances
    Processed data Education Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Family composition Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Financial information Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Personal characteristics Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Personal details Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Processors n/a
    Restrictions of data subject rights
    n/a
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Data kept according to the security measures adopted by the European Commission, Health data processed with the principles of medical confidentiality by HR officer, Obligation of confidentiality of the staff, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Staff members: Financial team, Human resources Manager, European Commission and its services: Medical Service, Other: BBI JU Executive Director, European Commission and its services: PMO
    Joint controllers PMO
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-06
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Occupational health
    Reference number DPO-1-02
    Data subject category JU Staff: temporary
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Management of health data in the workplace
    Description
    Management of health data in the workplace 
    Processed data Family composition Public interest article 5 a) of regulation 2018/1725 3 years
    Health data Art. 10 §2 (b) regulation 2018/1725 10 years after end of contract
    Processors
    • External service provider ('contractor') (EEA)
    • Secured IT data base (Joint Sickness Insurance Scheme) (Belgium)
    Restrictions of data subject rights
    no specific restrictions in place at bbi ju. the medical files are kept at the commission's medical services. commission decision (eu) 2019/154 of 30 january 2019 laying down internal rules concerning the restriction of the right of access of data subjects to their medical files.
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Health data processed with the principles of medical confidentiality by HR officer, Obligation of confidentiality of the staff, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients n/a
    Joint controllers DG Human Resources and Security, PMO
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-02
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: External audits and ex-post controls
    Reference number DPO-5-02
    Data subject category JU Staff: contractual
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected and managed for the sole purpose of preparing and communicating the audit reports by the external auditors.
    Description
    Personal data is collected in the conduct of checks and financial controls of grant agreements or service contracts aimed at verifying beneficiary's or contractor's or subcontractors' or third parties' compliance with all contractual provisions (including financial provisions). The purpose of the control is to check that the action and the provisions of the grant agreement or contract are being properly implemented and to assess the legality and regularity of the transaction underlying the implementation of the EU budget..
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation (article 5 (b) of regulation 2018/1725) 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors
    • Audit management system (Belgium)
    Restrictions of data subject rights
    no restriction per se in the bbi ju related operations but no information on the scope of the decision laying down internal rules for the court of auditors.
    Security measures Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU staff: Executive Director, Internal Control Coordinator, Head of Administration & Finance, Data Protection Officer, Administration and Finance Support team, Police or legal organisations: European Court of Auditors, European Commission and its services: EDPS, European Commission and its services: Accounting Officer of the European Commission
    Joint controllers n/a
    privacy policy url
    Last updated 12.05.2020
    internal reference
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Teleworking
    Reference number DPO-1-07
    Data subject category JU Staff: contractual
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose The purpose of this processing operation is to manage in a legal, standardized and centralized framework all temporal aspects of a jobholder's framework with respect to the management and monitoring of the implementation of teleworking. In particular, the treatment consists in identifying the persons authorized to telework according to various criteria such as the possibilities of telework, the interest of the service or the motivation of the person. The persons concerned have the possibility of making a request for telecommuting either casual or structural via Sysper.
    Description
    Management of the teleworking requests and agreements; planning regarding the ordering of ICT tools and devices for the performance of telework. Staff members are granted access to an electronic tool in which they can launch a request for teleworking. 
    Processed data Family composition Public interest article 5 a) of regulation 2018/1725 10 years after the extinction of all rights of the staff member and any dependents
    Habits Public interest article 5 a) of regulation 2018/1725 10 years after the extinction of all rights of the staff member and any dependents
    Health data Public interest article 5 a) of regulation 2018/1725 10 years after the extinction of all rights of the staff member and any dependents
    Personal details Public interest article 5 a) of regulation 2018/1725 3 years
    Profession Public interest article 5 a) of regulation 2018/1725 3 years
    Processors
    • IT Tool SYSPER (Belgium)
    Restrictions of data subject rights
    n/a
    Security measures Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU staff: Executive Director, Line Managers, HR Manager, Data subject themselves: Right to access and rectify their own data in SYSPER.
    Joint controllers DG DIGIT, DG Human Resources and Security
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-07
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Salary
    Reference number DPO-1-06
    Data subject category JU Staff: contractual
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected in order to determine the staff member’s entitlements. Documents are collected by the HR Officer and sent to the relevant Commission service (PMO) which will process the data in order to determine the financial rights of the staff member.
    Description
    Salary slips, allowances
    Processed data Education Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Family composition Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Financial information Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Personal characteristics Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Personal details Public interest article 5 a) of regulation 2018/1725 8 years after the extinction of all rights of the person concerned and of any dependents
    Processors n/a
    Restrictions of data subject rights
    n/a
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Data kept according to the security measures adopted by the European Commission, Health data processed with the principles of medical confidentiality by HR officer, Obligation of confidentiality of the staff, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Staff members: Financial team, Human resources Manager, European Commission and its services: Medical Service, Other: BBI JU Executive Director, European Commission and its services: PMO
    Joint controllers PMO
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-06
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf
    Activity: Occupational health
    Reference number DPO-1-02
    Data subject category JU Staff: contractual
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Management of health data in the workplace
    Description
    Management of health data in the workplace 
    Processed data Family composition Public interest article 5 a) of regulation 2018/1725 3 years
    Health data Art. 10 §2 (b) regulation 2018/1725 10 years after end of contract
    Processors
    • External service provider ('contractor') (EEA)
    • Secured IT data base (Joint Sickness Insurance Scheme) (Belgium)
    Restrictions of data subject rights
    no specific restrictions in place at bbi ju. the medical files are kept at the commission's medical services. commission decision (eu) 2019/154 of 30 january 2019 laying down internal rules concerning the restriction of the right of access of data subjects to their medical files.
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Health data processed with the principles of medical confidentiality by HR officer, Obligation of confidentiality of the staff, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients n/a
    Joint controllers DG Human Resources and Security, PMO
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-1-02
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: External audits and ex-post controls
    Reference number DPO-5-02
    Data subject category Candidates applying for open vacancies (TA, CA, and SNE)
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected and managed for the sole purpose of preparing and communicating the audit reports by the external auditors.
    Description
    Personal data is collected in the conduct of checks and financial controls of grant agreements or service contracts aimed at verifying beneficiary's or contractor's or subcontractors' or third parties' compliance with all contractual provisions (including financial provisions). The purpose of the control is to check that the action and the provisions of the grant agreement or contract are being properly implemented and to assess the legality and regularity of the transaction underlying the implementation of the EU budget..
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation (article 5 (b) of regulation 2018/1725) 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors
    • Audit management system (Belgium)
    Restrictions of data subject rights
    no restriction per se in the bbi ju related operations but no information on the scope of the decision laying down internal rules for the court of auditors.
    Security measures Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU staff: Executive Director, Internal Control Coordinator, Head of Administration & Finance, Data Protection Officer, Administration and Finance Support team, Police or legal organisations: European Court of Auditors, European Commission and its services: EDPS, European Commission and its services: Accounting Officer of the European Commission
    Joint controllers n/a
    privacy policy url
    Last updated 12.05.2020
    internal reference
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: External audits and ex-post controls
    Reference number DPO-5-02
    Data subject category Experts and BBI JU contractors
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected and managed for the sole purpose of preparing and communicating the audit reports by the external auditors.
    Description
    Personal data is collected in the conduct of checks and financial controls of grant agreements or service contracts aimed at verifying beneficiary's or contractor's or subcontractors' or third parties' compliance with all contractual provisions (including financial provisions). The purpose of the control is to check that the action and the provisions of the grant agreement or contract are being properly implemented and to assess the legality and regularity of the transaction underlying the implementation of the EU budget..
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation (article 5 (b) of regulation 2018/1725) 7 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 7 years
    Processors
    • Audit management system (Belgium)
    Restrictions of data subject rights
    no restriction per se in the bbi ju related operations but no information on the scope of the decision laying down internal rules for the court of auditors.
    Security measures Data kept according to the security measures adopted by the European Commission, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU staff: Executive Director, Internal Control Coordinator, Head of Administration & Finance, Data Protection Officer, Administration and Finance Support team, Police or legal organisations: European Court of Auditors, European Commission and its services: EDPS, European Commission and its services: Accounting Officer of the European Commission
    Joint controllers n/a
    privacy policy url
    Last updated 12.05.2020
    internal reference
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Selection and recruitment of interims
    Reference number DPO-01-1 (interims)
    Data subject category Interim staff selected via an external contractor on behalf of the European Commission
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Data are processed for the purpose of organising the selection and recruitment procedures for interims at the BBI JU.
    Description
    Collecting applications of candidates, screening tables, pre-selection reports, selection reports, written tests, interview questions, offers for posts, short lists, reserve lists, reserve list letters, negative letters etc. 


    Processed data Education Contractual obligation article 5 c) of regulation 2018/1725 , public interest article 5 a) of regulation 2018/1725 6 months
    Health data Contractual obligation article 5 c) of regulation 2018/1725 , public interest article 5 a) of regulation 2018/1725 6 months
    Juridic data Public interest article 5 a) of regulation 2018/1725, contractual obligation article 5 c) of regulation 2018/1725 For the duration of the selection procedure only
    Personal characteristics Contractual obligation article 5 c) of regulation 2018/1725 , public interest article 5 a) of regulation 2018/1725 6 months
    Personal details Contractual obligation article 5 c) of regulation 2018/1725 , public interest article 5 a) of regulation 2018/1725 6 months
    Profession Contractual obligation article 5 c) of regulation 2018/1725 , public interest article 5 a) of regulation 2018/1725 6 months
    Processors
    • DAOUST (Belgium)
    • Randstad (Belgium)
    Restrictions of data subject rights
    n/a
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Data kept according to the security measures adopted by the European Commission, Health data processed with the principles of medical confidentiality by HR officer, Obligation of confidentiality of the staff, Once the procedure is closed, electronically stored data erased, Signature of absence of conflict of interest , Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU staff members: members of the selection committee, HR manager, BBI JU Excutive Director, External contractors under framework contract with the European Commission : Randstad, Daoust
    Joint controllers n/a
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-01-1 (interims)
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: EU Survey Tool for event registrations
    Reference number DPO-4-04
    Data subject category Registrants or attendees sent through the EU Survey tool
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected in order to share information about the event on BBI JU and EUROPA websites and social media accounts, to ensure all necessary organisational steps to allow participants access on the premises of the event’s venue, for the management of the event itself, to ensure event follow-up activities.
    Description
    Collecting personal data for the purposes of participation in an on-line survey in order to to participate in a BBI JU event on a voluntary basis.This specific on-line service consists of an on-line form made available on the EUSurvey application, managed by the European Commission. 
    Processed data Health data Explicit consent article 5 d) of regulation 2018/1725, public interest article 5 a) of regulation 2018/1725 1 month after the results of the survey have been aggregated
    Personal details Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 1 month after the results of the survey have been aggregated
    Profession Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 1 month after the results of the survey have been aggregated
    Processors
    • EUSurvey IT System (Belgium)
    Restrictions of data subject rights
    n/a
    Security measures Data kept according to the security measures adopted by the European Commission, Secure transfer of data, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: BBI JU Communication team, European Commission and its services: Authorized staff
    Joint controllers DG DIGIT
    privacy policy url
    Last updated 12.05.2020
    internal reference DPO-4-04
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Internal Audtis
    Reference number DPO-5-01
    Data subject category JU staff
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected and managed for the purpose of independent, risk-based and objective assurance and consulting services designated to add value and improve the operations of the BBI JU.
    Description
    Audit procedures to check the regularity of the transactions and the quality of financial management of the JU
    Processed data Education Processing is necessary to protect the vital interests of the data subject or another natural person (article 5(e) regulation 2018/1725), public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 7 years
    Financial information Processing is necessary to protect the vital interests of the data subject or another natural person (article 5(e) regulation 2018/1725), public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 7 years
    Personal details Processing is necessary to protect the vital interests of the data subject or another natural person (article 5(e) regulation 2018/1725), public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 7 years
    Profession Processing is necessary to protect the vital interests of the data subject or another natural person (article 5(e) regulation 2018/1725), public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 7 years
    Processors
    • External experts (contractors, intra and extra-muros) (EEA)
    • Randstad (Belgium)
    Restrictions of data subject rights
    no restriction per se in the bbi ju related operations but commission decision (eu) 2018/1961 of 11 december 2018 laying down internal rules concerning the provision of information to data subjects and the restriction of certain of their rights in the context of the processing of personal data for the purpose of internal audit activities.
    Security measures Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Police or legal organisations: European Court of Auditors, Other: BBI JU staff members: Interanl Control Coordinator, Administration and Finance team, Other: BBI JU Executive Director, Other: IAS, European Commission and its services: EDPS
    Joint controllers n/a
    privacy policy url
    Last updated 12.05.2020
    internal reference
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: E-newsletter subscription
    Reference number DPO-4-03
    Data subject category Recipients (“general public”) having requested or explicitly consented to remain in the BBI JU database and to continue receiving emails, invitations to events, alerts, e-news, newsletters and other relevant information from BBI JU.
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose sending emails, invitations to events, alerts, e-news, and other relevant information , Subscription to the BBI JU electronic newsletter and related services (alerts, notifications, etc). Establishing a list of email addresses to which each issue of the e-newsletter is sent
    Description
    Subscription to the BBI JU electronic newsletter and related services (alerts, notifications, etc). Establishing a list of email addresses to which each issue of the e-newsletter is sent; sending emails, invitations to events, alerts, e-news, and other relevant information 
    Processed data Personal details Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 Data is deleted once a subscriber unsubscribes. Unless BBI JU receives a positive reply from the data subject, the personal details will no longer remain in the BBI JU database and therefore the data subject will not receive any more communication from BBI JU. In any case, personal data will not be kept for longer than necessary, for the purpose for which they were collected or further processed. days
    Profession Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 Data is deleted once a subscriber unsubscribes. Unless BBI JU receives a positive reply from the data subject, the personal details will no longer remain in the BBI JU database and therefore the data subject will not receive any more communication from BBI JU. In any case, personal data will not be kept for longer than necessary, for the purpose for which they were collected or further processed. days
    Processors
    • Mailchimp (USA)
    Restrictions of data subject rights
    n/a
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Data not displayed to the wider public, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: External services provider: Maichchim, Other: BBI JU communication team
    Joint controllers n/a
    privacy policy url to be included
    Last updated 12.05.2020
    internal reference DPO-4-03
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Event registration and Organisation
    Reference number DPO-4-02
    Data subject category Registrants/Attendees of events
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Register interested persons for effective management of meetings, provide access to the BBI JU event venues, and maintain participant’s lists as well as allowing possible event follow-up actions including feedback collection, specific communication activities and sharing of presentations
    Description
    Register interested persons for effective management of meetings, provide access to the BBI JU event venues, and maintain participant’s lists as well as allowing possible event follow-up actions including feedback collection, specific communication activities and sharing of presentations 
    Processed data Health data Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 5 years
    Personal details Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 5 years
    Profession Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 5 years
    Video tapes and photographs Public interest article 5 a) of regulation 2018/1725, explicit consent article 5 d) of regulation 2018/1725 5 years
    Processors
    • External service provider ('contractor') (EEA)
    Restrictions of data subject rights
    n/a
    Security measures Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: Internal and extra-muros service providers: ABCPharma, Data subject themselves: Othe Participants, Other: BBI JU communication team
    Joint controllers n/a
    privacy policy url To be included
    Last updated 12.05.2020
    internal reference DPO-4-02
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Submission of proposals, evaluation, selection, negotiation and award of Grant Agreements
    Reference number DPO-3-02
    Data subject category Members of the consortia
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Receipt of proposals from consortia in response to an open call, evaluation and selection and award
    Description
    Receipt of proposals from consortia in response to an open call, evaluation and selection and award
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 1. Files of successful grant applications are kept for 7 years after the end of the respective contract or the closing of the action.2. Files of unsuccessful or withdrawn grant applications might be kept for up to 5 years after the closure of the particular procedure to allow for all possible appeals.Anonymous or encrypted data can be retained for a longer period for statistical, scientific or historical purposes. Personal data not updated for 7 years will be removed from any relevant database. year
    Financial information Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 1. Files of successful grant applications are kept for 7 years after the end of the respective contract or the closing of the action.2. Files of unsuccessful or withdrawn grant applications might be kept for up to 5 years after the closure of the particular procedure to allow for all possible appeals.Anonymous or encrypted data can be retained for a longer period for statistical, scientific or historical purposes. Personal data not updated for 7 years will be removed from any relevant database.
    Personal characteristics Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 1. Files of successful grant applications are kept for 7 years after the end of the respective contract or the closing of the action.2. Files of unsuccessful or withdrawn grant applications might be kept for up to 5 years after the closure of the particular procedure to allow for all possible appeals.Anonymous or encrypted data can be retained for a longer period for statistical, scientific or historical purposes. Personal data not updated for 7 years will be removed from any relevant database.
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 1. Files of successful grant applications are kept for 7 years after the end of the respective contract or the closing of the action.2. Files of unsuccessful or withdrawn grant applications might be kept for up to 5 years after the closure of the particular procedure to allow for all possible appeals.Anonymous or encrypted data can be retained for a longer period for statistical, scientific or historical purposes. Personal data not updated for 7 years will be removed from any relevant database.
    Processors
    • European Commission (Belgium)
    Restrictions of data subject rights
    n/a
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Automated system (Grants management), Data kept according to the security measures adopted by the European Commission, Obligation of confidentiality of the staff, Signature of absence of conflict of interest , Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients Other: External experts evaluating the proposals, Other: BBI JU staffs members, External contractors under framework contract with the European Commission : , Other: BBI JU Executive Director, European Commission and its services:
    Joint controllers European Commission
    privacy policy url https://ec.europa.eu/research/participants/data/support/legal_notice/h2020-ssps-grants-sedia_en.pdf
    Last updated 12.05.2020
    internal reference DPO-3-02
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Experts and evaluation of the proposals
    Reference number DPO-3-01
    Data subject category Experts
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Personal data is collected for the selection and the management (including reimbursements of expenses and payment where appropriate) of independent experts appointed by BBI JU to advise on or assist with: the evaluation of proposals, the monitoring of the implementation of actions carried out under Horizon 2020, advice or assistance with other tasks related to BBI JU activities.
    Description
    Database of experts for participation in evaluations and/or reviews; appointment letters
    Processed data Education Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725, regulation (eu) no 1291/2013 of the european parliament and of the council of 11 december 2013 establishing horizon 2020 - the framework programme for research and innovation (2014-2020), title viii of the eu financial regulation (grants) 10 years
    Financial information Title viii of the eu financial regulation (grants), regulation (eu) no 1291/2013 of the european parliament and of the council of 11 december 2013 establishing horizon 2020 - the framework programme for research and innovation (2014-2020), public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725 10 years
    Personal details Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725, regulation (eu) no 1291/2013 of the european parliament and of the council of 11 december 2013 establishing horizon 2020 - the framework programme for research and innovation (2014-2020), title viii of the eu financial regulation (grants) 10 years
    Profession Public interest article 5 a) of regulation 2018/1725, legal obligation article 5 b) of regulation 2018/1725, regulation (eu) no 1291/2013 of the european parliament and of the council of 11 december 2013 establishing horizon 2020 - the framework programme for research and innovation (2014-2020), title viii of the eu financial regulation (grants) 10 years
    Processors
    • EC external service providers (contractors or subcontractors) under direct or framework service procurement contracts (EEA)
    Restrictions of data subject rights
    n/a
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Appropriate technical and organisational security measures, giving due regard to the risks inherent in the processing and to the nature of the personal data concerned, Automated system (Grants management), Data kept according to the security measures adopted by the European Commission, Obligation of confidentiality of the staff, Staff dealing with this processing operation is designated on a need-to-know basis, Standard clause for the processing of personal data included in the contract
    Recipients Other: BBI JU Executive Director, Other: BBI JU Staff members: Staff participating in the selection of external experts, European Commission and its services:
    Joint controllers Research Executive Agency
    privacy policy url https://ec.europa.eu/research/participants/data/support/legal_notice/h2020-ssps-experts-sedia_en.pdf
    Last updated 12.05.2020
    internal reference DPO-3-01
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

  • Activity: Recruitment of staff & trainees
    Reference number DPO-1-01
    Data subject category Candidates
    Controller BBI JU (Brussels)
    Data protection officer DPO@BBI.europa.eu
    Purpose Evaluation, selection and recruitment of staff and trainees
    Description
    Evaluation, selection and recuitment of staff and trainees
    Processed data Education Articles 22a and 22b of the eu staff regulations and articles 11 and 81 of the ceos 10 years
    Family composition Articles 22a and 22b of the eu staff regulations and articles 11 and 81 of the ceos 10 years after end of contract
    Health data Contractual obligation article 5 c) of regulation 2018/1725 , articles 12 - 15 and 82 - 84, 86 of the conditions of employment of other servants of the european communities (ceos) For the duration of the selection procedure only
    Juridic data Contractual obligation article 5 c) of regulation 2018/1725 , articles 12 - 15 and 82 - 84, 86 of the conditions of employment of other servants of the european communities (ceos) For the duration of the selection procedure only
    Location information Articles 22a and 22b of the eu staff regulations and articles 11 and 81 of the ceos 10 years after end of contract
    Personal details Articles 22a and 22b of the eu staff regulations and articles 11 and 81 of the ceos 10 years after end of contract
    Profession Articles 12 - 15 and 82 - 84, 86 of the conditions of employment of other servants of the european communities (ceos) 10 years after end of contract
    Processors
    • Randstad (Belgium)
    Restrictions of data subject rights
    Security measures Access control and technical measures such as physical locks and/or secure connections and firewalls, Data not displayed to the wider public, Obligation of confidentiality of the staff, Premises abide by the European Commission's security decisions and provisions, Staff dealing with this processing operation is designated on a need-to-know basis
    Recipients n/a
    Joint controllers n/a
    privacy policy url https://www.bbi-europe.eu/sites/default/files/privacy-policy-for-recruitment-of-temporary-agents-and-contract-agents.pdf
    Last updated 12.05.2020
    internal reference DPO-1-01
    Exercising your rights https://www.bbi-europe.eu/sites/default/files/documents/Legal%20and%20Privacy%20Notice%20BBI%20JU%20website_2019.pdf

Powered by GDPR Central.