An e-Service is made available on web pages in order to offer access to the JRC AGRI4CAST Data Portal service. E-Services are tools on internet websites of the Joint Research Centre (JRC), enabling public users to maintain a private space on the internet where they can request data from the AGRI4CAST data portal tailored to the user needs and save such data queries for future re-use. Personal data will be collected and further processed for the purposes detailed hereafter under point 2. This processing of personal data is under the responsibility of the Head of Unit of the thematic coordination at the JRC. The Head of Food Security Unit at the Directorate of Sustainable Resources, who manages the processing itself, acts as personal data processor. As this processing collects and further processes personal data, Regulation (EC) 45/2001 of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community institutions and bodies and on the free movement of such data is applicable.
2. What personal information do we collect, what is the legal basis, for what purpose and through which technical means?
Request for registration contains the following data fields: E-mail address, password.
Legal Basis of processing:
The Framework Programme for Research and Innovation (2014-2020) - Horizon 2020.
Registration and participation of data subjects are provided on a purely voluntary basis.
Purpose of processing:
The purpose of the processing of personal data for the e-Service is to provide secure access and information exchange, notification of users of data downloads as well as communication with the user community to collect feedback on the user experience (e.g. through questionnaires) in order to improve the e-Service in the future.
The user data are collected through the online registration process and stored inside a SQL database. The e-mail addresses are stored in the file system. The password is stored for technical reasons, but not revealed and known to any JRC-internal actor.
3. Who has access to your information and to whom is it disclosed?
The access to all personal data is only granted through user_ID / Password to a defined population of users within the Food Security Unit of the JRC. These users typically are: the Head of Unit acting as controller of the processing of personal data, the system administrator of the software, the ICT analyst to process data queries submitted. No personal data is transmitted to parties, which are outside the recipients and the legal framework mentioned.
4. How do we protect and safeguard your information?
The collected personal data is stored on the servers of JRC and underlie the Commission Decision C (2006) 3602 of 17/08/2006 “concerning the security of information systems used by the European Commission” that defines ITC security measures in force. Annex I defines the security requirements of EC Information Systems. Annex II defines the different actors and their responsibilities. Annex III defines the rules applicable by users. See notification DPO-1946.
5. How can you verify, modify or delete your information?
Registered users have direct password-protected web access to their profile and are able to update or to delete it.
6. How long do we keep your data?
The time limit for storing personal data is fixed to max. 4 years starting from filling in the registration form on the internet, unless the Controller launches an update of the registrations, asking the Data subjects to update or cancel the stored information including their personal data. Registered users can request to cancel their registration at any moment. In some cases, user_IDs unused for a defined period are automatically deleted from the system.
7. Contact Information.
Should you have any queries concerning the processing of your personal data, please address them to the controller or through eu-agri4cast-portal(at)ec.europa.eu.
On questions relating to the protection of personal data, you can contact:
- DG JRC Data Protection Co-ordinator: jrc-data-protection-coordinator(at)ec.europa.eu
- Commission's Data Protection Officer: data-protection-officer(at)ec.europa.eu
In the event of a dispute, you can send a complaint to:
- European Data Protection Supervisor: edps(at)edps.europa.eu