Privacy Statement - SRB-FBF-SAFE academic event

The Single Resolution Board (SRB) processes your personal data in accordance with the Regulation (EU) 2018/1725 (EUDPR).

The privacy statement explains the reasons for processing your personal data, the way the SRB collects, handles and ensures protection of all personal data. It also specifies the contact details of the responsible SRB unit where you may exercise your rights, the SRB Data Protection Officer and the European Data Protection Supervisor (EDPS).

The SRB is the data controller determining the purposes and means for the processing of your personal data. The SRB’s Communications Team (HELLO [a] srb.europa.eu (HELLO[at]srb[dot]europa[dot]eu)) is responsible for the processing.

The Florence School of Banking and Finance (FBF) is joint controller when it processes your personal data in order to host this academic event on its Zoom platform.

The purposes of processing your personal data are the following:

• To manage the registration for the SRB-FBF-Safe academic event.
• The overall organisation and management of the online event.

The legal basis for processing your personal data is Article 5(1a) and recital 22 EUDPR. The processing is necessary for the performance of a task carried out in the public interest by the SRB in conjunction with the Regulation (EU) 806/2014 establishing the organisation and functioning of the SRB.

At the FBF, personal data will be processed in accordance with the EUI’s Data Protection Policy (President’s Decision No. 10 of 18 February 2019 regarding Data Protection at the EUI) as well as under the specific modalities outlined in the Privacy statement for events organised at the Robert Schuman Centre for Advanced Studies.

Articles 5(1d) and 7 EUDPR on participants’ consent. During the meeting registration/ invitation, information is provided to participants as to how consent to the recording can be provided. Consent can be withdrawn at any time. Participants who do not wish to be recorded are informed to: (a) indicate a pseudonym rather than their clear name when they connect to the session where possible, (b) switch their camera and microphone off, and (c) ask questions in the chat function. Personal data will no longer be processed once consent has been withdrawn, but prior processing will remain lawful.

When you attend an online event organised by the European University Institute (EUI), photography, audio or video recording and live broadcasting/webstreaming may occur.

Recorded material may also be published and may be reproduced in various media including the EUI website, social networks and TV channels, in connection with the event. The EUI will use this material for the sole purpose of reporting or promoting its activities and in strict compliance with data protection regulations in force at the EUI.

• Registration information, e.g. name, business email address.
• When logging in, participants may be requested to indicate only their first name. If technically feasible, even if participants have a personal account for the respective platform they do not need to sign in to the platform to participate in the event, signing in is only necessary for the event organiser.
• User generated information, e.g. meeting recordings, uploaded files exchanged via an event platform.
• Analytics data, e.g. User name, Email, Join and leave time, time in seconds, country/region name

When the SRB processes personal data for the above-mentioned purposes, the following persons may access your personal data on a strict need-to-know basis:

• Dedicated SRB staff members.
• Dedicated staff members of event partners Florence School of Banking and Finance and Leibniz Institute for Financial Research (SAFE)
• The online web streaming platform Zoom will access the username and email address, first and last name (if available) and country of connection.

For exclusive technical purposes, Zoom applies the following rules with relation to third country data transfers: https://drive.google.com/file/d/1Vl0t0J7GU8VW45LfWZEXdhxKOzVqa64p/view

The SRB keeps your personal data for the time necessary to fulfil the purposes mentioned at part 3:

• After the event, personal data are kept as long as follow-up actions to the event are
• required, or for a maximum of one year. Any locally stored personal data will be deleted by the meeting organiser in
• line with the event’s privacy statement.
• Host and usage information are kept for a maximum period of 3 years.
• Chat messages exchanged among participants during the meeting are deleted after it
• ends.

Data retention at the FBF is regulated on the basis of the Privacy statement for events organised at the Robert Schuman Centre for Advanced Studies, available at: https://www.eui.eu/Documents/RSCAS/RulesForms/RSCASEVENTSNOTIFICATIONFORM.pdf

You have the rights to access your personal data and correct any data that are inaccurate or incomplete. You also have the rights to delete your personal data, restrict or object to the processing of your personal data.

You can exercise your rights by emailing the SRB Unit that organises the online meeting (HELLO [a] srb.europa.eu (HELLO[at]srb[dot]europa[dot]eu)).

You may contact the SRB’s Data Protection Officer at SRB-DPO [a] srb.europa.eu (SRB-DPO[at]srb[dot]europa[dot]eu) for questions relating to the protection of your personal data.

If you believe that your rights under the EUDPR have been violated as a result of the

processing of your personal data, you have the right to lodge a complaint with the European

Data Protection Supervisor at any time.

Please note that there will be photos taken during the event’s presentations based on the prior consent of the speakers (presenters/panel participants). These photos may be published on SRB’s and FBF’s websites and/or relevant social media channels.

The focus of the photos will be on the speakers only and not on specific views/pictures of event’s participants (other than speakers).

Still, should your photo be taken, and you would like to have this photo removed, please contact SRB at HELLO [a] srb.europa.eu (HELLO[at]srb[dot]europa[dot]eu) and we will do so as soon as possible.