Personal Data Protection Policy
Fusion for Energy is committed to user privacy.
The policy on protection of individuals with regard to the processing of personal data by Fusion for Energy is based
on the Regulation (EC) 45/2001 concerning the rules governing the protection of individuals with regard to the
processing of personal data by Community institutions and bodies and on the free movement of such data.
What is personal data?
Personal data is any information related to an identified or identifiable natural person (Data Subject). An identifiable person is one who can
be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his or her
physical, physiological, mental, economic, cultural or social identity.
The processing of special categories of data, defined as personal data revealing racial or ethnic origin, political opinions,
religious or philosophical beliefs, trade-union membership, and of data concerning health or sex life, is prohibited, subject to certain exceptions.
How are the personal data processed by Fusion for Energy?
Fusion for Energy ensures that all personal data under its responsibility is:
- processed fairly and lawfully;
- collected for specified, explicit and legitimate purposes;
- processed adequately, relevantly and not excessively in relation to the purposes for which they are collected and/or further processed;
- accurate and up to date;
- kept in a form which permits identification of data subjects for no longer than necessary and following the retention period, not used for any other purpose other than historical, statistical or scientific purposes;
- processed confidentially and stored securely.
Further information on how your personal data are processed by Fusion for Energy may be found in the specific privacy notices for
individual processing operations (see Related Documents) and other the relevant sections of the Fusion for Energy website.
Who is the Controller?
According to Regulation (EC) 45/2001 , the Controller is defined as "the Co
mmunity institution or body, the Directorate-General, the unit or any other organisational entity which alone or jointly with others determines the purposes and means of the processing of
personal data". The main duties of the Controllers are to ensure the lawfulness of the processing of data carried out by the members of their staff, ensure the confidentiality and
the security of the processing, inform the Data Subjects of their rights and ensure that their rights can be properly exercised.
In Fusion for Energy the Controllers are normally the Heads of Department.
The specific privacy notices for individual processing operations (see Related Documents) will provide you with
the name and contact email address for the Controller responsible for the processing of your personal data.
What are my rights as the Data Subject?
The Data Subject is the person whose personal data are collected, held or processed.
The Data Subject has the right to the following information from the responsible Controller about data being processed:
- confirmation as to whether or not data related to him or her are being processed;
- information about the purposes of the processing operations, the categories of data concerned, and the recipients or categories of recipients to whom the data are disclosed;
- communication of the data undergoing processing and of any available information as to their source;
- knowledge of the logic involved in any automated decision process concerning him or her.
The Data Subject shall have the right of access to his or her data and the right to
rectification of any inaccurate or incomplete personal data. If the processing operation is unlawful the Data Subject has
the right to request the Controller to erase data (see Section 5 of Regulation 45/2001 ).
Further information on how your personal data are processed by Fusion for Energy may be found in the specific
privacy notices for individual processing operations (see Related Documents) and other the relevant sections of the Fusion for Energy website.
Who is the Data Protection Officer?
In compliance with the Regulation (EC) 45/2001 , Fusion for Energy has appointed
a Data Protection Officer (DPO) to ensure and advise on the lawfulness of the processing of the personal data. The DPO maintains a detailed register of the processing operations within
Fusion for Energy. The DPO notifies the European Data Protection Supervisor (EDPS) of the processing operations that involve the processing of sensitive personal data for his prior opinion
on the lawfulness of the processing operations, and responds to requests from the EDPS. In crucial circumstances he may investigate matters and incidents on request or on his own initiative.
Ms Angela Bardenhewer-Rating was appointed as the DPO in Fusion for Energy on 1 July 2012.
Who is the European Data Protection Supervisor?
The European Data Protection Supervisor (EDPS) is an independent supervisory authority established in
accordance with Regulation (EC) No 45/2001 . The EDPS' mission is to ensure
that the fundamental rights and freedoms of individuals - in particular their privacy - are respected when the EU institutions and bodies (including Fusion for Energy) process personal
data. The EDPS is also responsible for advising the EU institutions and bodies on all matters relating to the processing of personal data. He may inspect the EU institutions and bodies
on their compliance with the data protection requirements. The Data Subjects have the right of recourse at any time to the EDPS.
For more information see the EDPS Website.
Who can I contact in case of further enquiries on data protection in Fusion for Energy?
For any further enquiries please contact the Data Protection Officer of Fusion for Energy.