Data privacy
EU-MIDCAP, as part of ICMPD, is committed to compliance with Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data. All staff and contractors are thus required to comply with the following data protection principles.
Data protection principles
Personal data shall be collected for specific, explicit and legitimate business purposes only based on considerations of organisational need and the needs and interests of the data subject. Only data relevant for the specific purpose and for which active consent was obtained may be collected and processed.
- All personal data shall be processed in a fair and transparent manner.
- All personal data shall be accurate and be kept up to date. When found to be inaccurate it shall be corrected as soon as possible.
- Personal data shall only be used for the specified purpose for which active consent was obtained.
- Personal data which is no longer used for the specified purpose or is known to be inaccurate shall be deleted/destructed or, where deletion is not feasible, access must be restricted so that no one apart from those responsible for technical maintenance of the space it is saved in has access.
- While business contacts are available to all staff and made available to implementing partners, beneficiaries and contractors as required, access to private and sensitive data is restricted to persons who need access for carrying out their respective function for as long as they carry out this function based on a secure authentication mechanism including strong passwords.
- Processing activities of personal data owned by ICMPD may only be performed by external parties based on the conclusion of a binding written contract that sets out the purpose and duration of the processing and ensures that the processor meets technical and organisational requirements to ensure the effective protection of the rights of the concerned data subjects.
Contacts
Users may update their personal information or request information or deletion at any time in the respective forms or by writing to
EU-MIDCAP, as part of ICMPD, follows ICMPD’s privacy policy requirements. For any general enquiries about the ICMPD privacy policy or data held by ICMPD you may write to
Experts in the Expert Action Roster- Special Terms and Conditions for Personal Data
Users will provide personal data for purposes of registration and as Expert in the EU-MIDCAP Expert and Action Roster (EAR) Database and to receive email communications from EU-MIDCAP.
Users are responsible for the accuracy and completeness of their personal data, including contact details provided to EU-MIDCAP.
The use of personal data in the Database is not intended to limit the rights of the personal data owners to access, rectify and delete their personal data in accordance with Regulation (EU) 2016/679.
1. Processing of personal data
Users’ personal data are collected and further processed only to the extent necessary for registration and use of the Database. The Database is administrated and operated by ICMPD under the responsibility of the Controller, the European Commission.
ICMPD, the European Commission and the ICMPD Contractor are legally bound to comply with the applicable legislation on the protection and processing of personal data, and more specifically with Regulation (EU) 2016/679.
2. Access to personal data and purpose
Only EU-MIDCAP Consortium Members and the European Commission have access to personal data of the Users recorded in the Database. All Database users have access to their personal data recorded in the Database and can modify their profile as needed.
The Database is stored on the server of an ICMPD contractor. The name of the ICMPD Contractor shall be provided to users upon request. Users have no administration rights to modify or delete the data stored at the data centre located in ATW Dataland, 1132 Budapest, Victor Hugo u. 11-15. If Users wish to modify or delete their personal data, or have questions or requests about the information submitted please contact EU-MIDCAP at:
3. Protection and safeguard of personal data
Access to personal data is provided only based on due authentication through user ID and password.
ICMPD and its contractors use technical infrastructure protected against unauthorised access and mal-ware as well as transfer systems consistent with industry standards.
4. Retention of personal data
All personal data received and stored shall be erased upon request. Otherwise, Experts´ personal data shall remain visible in the Database only to authorised personnel.