Skip to content

Latest commit

 

History

History
79 lines (68 loc) · 9.56 KB

conference-privacy-policy.md

File metadata and controls

79 lines (68 loc) · 9.56 KB
layout title permalink
page
Privacy Policy
/privacy-policy

§ 1. GENERAL PROVISIONS

  1. This Privacy Policy sets forth the rules for the processing and protection of personal data of https://conference2023.mlinpl.org Website Users and relates to data provided by Users for the purposes of Registration, participation in the Conferences and payment by Participants.
  2. The terms not defined in the Privacy Policy but written with capital letters shall have the meaning set forth in the [Terms of Participation]({{ "/terms-of-participation" | relative_url }}).
  3. Controller shall process the personal data of Users in accordance with regulations of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (further as: “GDPR”) and other applicable laws.
  4. Controller declares to apply technical and organizational means ensuring the protection of processed personal data which are adequate in relations to threats and categories of personal data encompassed by said protection, in particular by securing data from access and theft by unauthorised persons, from processing in a manner inconsistent with the provisions of law, and from alteration, loss, damage and destruction.

§ 2. INFORMATION CLAUSE

  1. THE CONTROLLER

    1. The Controller of your data is ML in PL Association, with its registered seat in Warsaw, Aleksandra Kraushara 1a/24 Street, KRS number: 0000754960, REGON: 381658081, NIP: 1182183164.
    2. In matters related to the processing of personal data, please contact The Controller via e-mail address [email protected].
  2. DATA PROCESSING. PURPOSES AND LEGAL BASIS FOR DATA PROCESSING

    1. In connection with purposes for data processing, the Controller collects and processes personal data, making every effort to ensure that the processed personal data is adequately secured.
    2. The processing of personal data is based on the applicable law, in particular, the GDPR.
    3. The legal basis for the personal data processing is defined in Article 6 of the GDPR which governs general rules on the compliance of the personal data processing. In any case, the Controller shall process the data relevant to a given case and for the purpose for which it was collected, ensuring its appropriate protection.
    Therefore, we declare that your personal data will be processed: 1. as to the process of **recruitment for early bird registration the Conference**: 1. Your personal data is collected through the Registration Form for the following purposes: 1. **conducting the qualification process for early bird registration** for the Candidates based on the criteria set forth in the Terms of Participation and the Registration Form; * the legal basis for the processing of your personal data in this case is the necessity of processing in order to perform the contract (art. 6 point 1 b) of GDPR); 2. **measurement and statistics** which we create both for internal purposes and communicate these to the broader public in the anonymized manner (e.g. to say how many students participated in the Conference, what was the gender of the participants); * the legal basis for the processing of your personal data in this case is our legitimate interest in organisation and improvement of the Conference (art. 6 point 1 f) of GDPR). 2. as to the **participation in the Conference**: 1. for the purpose of performance of the contract to which you are the party and which is concluded by accepting the Terms of Participation and submitting the Registration Form, in particular for the purpose of enabling participation in the Conference, processing the payment and for identification of the Data Subject during the above mentioned events; 2. the scope of data collected about you in this case is e.g. your name, data necessary to process the payment and your image, if you decide to reveal it during the Conference; 3. the legal basis for the processing of data in this case is the performance of a contract to which the Data Subject is a party (art. 6 point 1 b) of GDPR) and our legitimate interest in organisation and improvement of the Conference (art. 6 point 1 f) of GDPR); 3. as to the **participation in the Conference as a contributor**: 1. for the purpose of selecting the contributors who will qualify to participate in the conference to present their posters and talks; 2. the scope of data collected about you in this case is e.g. your name, title and other information related to the your contribution; 3. the legal basis for the processing of data in this case is the performance of a contract (art. 6 point 1 b) of GDPR) our legitimate interest in organisation and improvement of the Conference (art. 6 point 1 f) of GDPR); 4. as to the reception of the email messages as the **newsletter subscribers**: 1. for the purpose of sending offers and latest news on machine learning in Poland and abroad to the subscribers by the Controller; 2. the legal basis for the processing of your personal data in this case is your consent to receiving the newsletter (art. 6 point 1 a) of GDPR). 5. as to the **job recruitment**; in cooperation with our partners and sponsors who can reach out to you to present their current job offers, if you grant your consent for passing on your personal data contained in e.g. your Curriculum Vitae; 1. the legal basis for the processing of your personal data in this case is your consent to the processing of personal data (art. 6 point 1 a) of GDPR). The consent is voluntary, but necessary in order to take part in the recruitment process. 6. as to the other **email correspondence** not connected to any services described in the points A - E above: 1. for the purpose of communication with Data Subjects willing to contact the Controller; 2. the legal basis for data processing in this case is the legitimate interest of the Controller - and more precisely - conducting correspondence in connection with the current operations carried out by the Controller.
  3. DATA PROCESSING PERIOD AND TRANSFERS

    1. Your personal data will be stored for a period necessary to perform purposes indicated in point 2.3 above or until you withdraw your consent to the processing of data, if a consent is the legal basis for processing.
    2. If personal data is collected for the purpose of performing an order or concluding a contract, the personal data is stored from the moment of data collecting until the contract termination or contract performance after the moment of its termination. In the case of personal data collection in order to fulfill obligations resulting from the law, the data shall be kept for the period of fulfilling obligations and tasks resulting from individual law provisions. In case of personal data processing for the purposes of the legitimate Controller’s interests, the data shall be kept until a reasoned objection is raised to the processing for such purposes or until an interest has been achieved.
    3. If necessary to fulfill the purposes indicated in point 2.3. of this Privacy Policy, the Controller may transfer them:
      1. To entities entitled to receive them under the law (e.g. law enforcement agencies, supervisory authorities, etc.).
      2. The entities processing personal data to our order, e.g., for the companies providing us with consulting, IT or marketing services;
      3. Our trusted business partners.
    4. In the course of processing your personal data, there may be a transfer to a third country within the meaning of the GDPR. In any transfer of your data outside the EEA, we will ensure the highest level of security.
  4. SECTION IV – RIGHTS RELATED TO PERSONAL DATA PROCESSING

    1. You have a right to:
      1. access to your personal data;
      2. rectify the personal data, including the right to correct the incorrect data and complete the incomplete data;
      3. request the personal data removal;
      4. limit personal data processing;
      5. object to the personal data processing for reasons related to your particular situation,
      6. data portability to other controllers;
      7. withdraw the consent at any time – if the processing is carried out on that basis, without prejudice to the lawfulness of processing carried out on the basis of the consent before its withdrawal.
    2. You can execute your rights by contacting The Controller at: [email protected].
    3. In addition, you have the right to lodge a complaint with the supervisory authority - President of the Office for Personal Data Protection (PUODO).
  5. FINAL PROVISIONS

    1. Providing your personal data by you is a condition of participation in the Conference. Therefore, the consequence of its evading will be the inability to participate in the Conference.
    2. Your data will not be processed in an automated way, including the form of profiling.

§ 3. FINAL PROVISIONS

  1. In order to exercise the rights described in the preceding articles, the Participant may at any time contact the Controller at [email protected]
  2. The Controller reserves the right to introduce changes to this Privacy Policy. Participants shall be informed of all changes to the Privacy Policy not less than 3 days prior to their implementation, on the main page of the Website.