DATA PRIVACY POLICY

Thank you for showing interest in the CYBERSECURITY MADE IN EUROPE Label, launched by European Cyber Security Organisation (“ECSO”).

ECSO is fully committed to the protection of individuals’ privacy and data protection. This notice relates to the processing of your personal data by ECSO through the CYBERSECURITY MADE IN EUROPE Label website (the “Website”) in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“GDPR”).

1. Name and Address of the controller

Data Controller, for the purposes of the GDPR, and other data protection laws applicable in Member States of the European Union and other provisions related to data protection, is:

ECSO – European Cyber Security Organisation
Avenue des Arts, 46
1000 Brussels
Belgium
Email: secretariat@ecs-org.eu
Website: www.ecs-org.eu

2. Purpose and data processed

The purpose of the processing activity is to:

  • enable to contact ECSO;
  • enable the Website’s technical functioning by collecting and processing cookies (see below the relevant section to learn about the cookies);
  • process necessary technical information relating to the Website’s visitors through log files, in order to support the Website’s security, on the basis of standard information security practices.

The following personal data are being processed:

  • Information about your activity on our Website, including technical information for security purposes, such as log files, and cookies (lawfulness of processing based on article 6 (1) (a and f)).
3. Cookies

CYBERSECURITY MADE IN EUROPE Label Website uses cookies. Cookies are short text files stored on a user’s device (such as a computer, tablet, or phone) by a website. These can be used for the technical functioning of a website or for other purposes, such as providing a user with more personalized experience.

Through the use of cookies, ECSO can provide the users of the Website with more user-friendly services that would not be possible without the cookie setting.

By means of a cookie, the information and offers on our Website can be optimised with the user in mind. Cookies allow us, as previously mentioned, to recognise our Website users. The purpose of this recognition is to make it easier for users to utilise our Website. The Website user that uses cookies, does not have to enter access data each time the Website is accessed, because this is taken over by the Website, and the cookie is thus stored on the user’s computer system. 

You may, at any time, prevent the setting of cookies through our Website by means of a corresponding setting of the Internet browser used, and may thus permanently deny the setting of cookies. Furthermore, already set cookies may be deleted at any time via an Internet browser or other software programs. This is possible in all popular Internet browsers. If you deactivate the setting of cookies in the Internet browser used, not all functions of our Website may be entirely usable.

4. Social Media

ECSO is active on three social media platforms. Our presence in the Twitter, YouTube and LinkedIn communities strengthens our online presence and visibility.

By clicking on the Twitter, LinkedIn or YouTube buttons on CYBERSECURITY MADE IN EUROPE Label, Website, you will be redirected to the selected site, which has its own cookie and privacy policies over which ECSO has no control.

The CYBERSECURITY MADE IN EUROPE Label Website does not set cookies when displaying links to our social media channels when you browse our Website. Each Social Media channel has its own policy on the way it processes your personal data when you access its website. For example, if you choose to watch one of our videos on YouTube, you will be asked for explicit consent to accept YouTube cookies; if you look at our LinkedIn activity on LinkedIn, you will be asked for explicit consent to accept LinkedIn cookies; the same applies for Twitter.

4a. Data protection provisions about the application and use of Twitter

On the Website, ECSO has integrated components of Twitter. Twitter is a multilingual, publicly-accessible microblogging service on which users may publish and spread so-called ‘tweets’. These short messages are available for everyone, including those who are not logged on to Twitter. The tweets are also displayed to so-called followers of the respective user. Followers are other Twitter users who follow a user’s tweets. Furthermore, Twitter allows you to address a wide audience via hashtags, links or retweets.

The operating company of Twitter is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, UNITED STATES.

With each call-up to one of the individual pages of this Internet site, which is operated by the Data Controller and on which a Twitter component (Twitter button) was integrated, the Internet browser on your information technology system is automatically prompted to download a display of the corresponding Twitter component of Twitter. Further information about the Twitter buttons is available under https://about.twitter.com/de/resources/buttons.

The applicable data protection provisions of Twitter may be accessed under https://twitter.com/privacy?lang=en.

4b. Data protection provisions about the application and use of LinkedIn

On the Website, ECSO has integrated components of LinkedIn. LinkedIn is a web-based professional network. It can be used to find jobs or internships, connect and strengthen professional relationships, write posts, follow company profiles and join groups.

The operating company of LinkedIn is LinkedIn, 605 W Maude Ave, Sunnyvale, CA 94085, USA.

 

With each call-up to one of the individual pages of this Internet site, which is operated by the Data Controller and on which a LinkedIn component (LinkedIn button) was integrated, the Internet browser on your information technology system is automatically prompted to download a display of the corresponding LinkedIn component of LinkedIn.

4c. Data protection provisions about the application and use of YouTube

On the Website, ECSO has integrated components of YouTube.

The operating company of YouTube is YouTube, 901 Cherry Ave, San Bruno, CA 94066 USA.

With each call-up to one of the individual pages of this Internet site, which is operated by the Data Controller and on which a YouTube component (YouTube button) was integrated, the Internet browser on your information technology system is automatically prompted to download a display of the corresponding YouTube component of YouTube.

5. Existence of automated decision-making

ECSO does not use any automatic decision-making or profiling.

6. How long will the data be processed

The period for which personal data will be processed and stored depends on the purpose(s) of the processing. The data processed on the basis of the consent granted will be processed, stored until the consent is withdrawn or an objection is raised.

7. Data subject’s rights and verification

You have the right of access to your personal data and to relevant information concerning how ECSO uses it. You have the right to rectify your personal data. Under certain conditions, you have the right to ask that we delete your personal data or restrict its use. You have the right to object to our processing of your personal data, on grounds relating to your particular situation, at any time. ECSO will consider your request, take a decision and communicate it to you.

If you have any queries concerning the processing of your personal data, you may address them to ECSO at secretariat@ecs-org.eu.

At any moment, you are able to contact ECSO – European Cyber Security Organisation to have more information about this notice and our Website. To do this, please contact secretariat@ecs-org.eu

You have the right of recourse at any time to the European Data Protection Supervisor (EDPS) at https://edps.europa.eu.