How and why the European Brokerage Commission uses personal data and how this applies in different areas of our work

 

This privacy notice informs you of what to expect when the European Brokerage Commission (EBC) collects personal information about individuals (herein referred to as "personal data"). It is crucial that you read this together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal data about you, so that you are fully aware of how and why we are using your data. This privacy notice supplements any other notices and is not intended to override them.

 

To understand how personal data are used across the EBC, we explain the core activities that we undertake and how we may use the personal data that we collect to perform these activities and the lawful basis behind it. We also provide information about your rights.

 

The General Data Protection Regulation (GDPR)

 

The European General Data Protection Regulation (EU) 2016/679 ("Regulation"), which came into force on 25 May 2018, establishes a single legal framework for the protection of personal data in all EU Member States. The Regulation contributes to the homogeneous application of personal data protection legislation across the EU, strengthens the fundamental rights of residents, and establishes a framework of strict control on data controllers and processors.

 

Data Collection

 

Personal data means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). Depending on our work's aspect, we may collect various types of personal data, including contact details, demographic information, and other relevant personal information.

 

Data Collection Methods

 

We use various methods to collect data from and about you, which include direct interactions, submissions of forms and documents, and interactions through digital platforms. Our collection methods are designed to ensure the accuracy and relevance of the data collected.

 

Controller

 

The EBC is the controller and responsible for your personal data (referred to as the "Commission", "Organization", "we", "us", or "our" in this privacy notice).

 

Our Data Protection Officer (DPO)

 

As a public authority, we appoint a Data Protection Officer (DPO) who oversees our data protection compliance, advises on our data protection obligations, and acts as our contact point for data protection matters.

 

Data Usage and Sharing

 

We do not share or transmit data to third parties unnecessarily. In cases where the EBC has an obligation to share data, such as with other public authorities or supervisory authorities, we ensure that such exchanges are conducted under strict regulatory compliance.

 

International Data Transfers

 

We may transfer personal data internationally only where necessary, ensuring that appropriate safeguards are in place as dictated by the Regulation.

 

Data Retention

 

We retain personal data only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

 

Your Legal Rights

 

Under the Regulation, you have various rights, including the rights to access, correct, erase, or restrict the processing of your personal data.

 

Changes to the Privacy Notice

 

We keep our privacy notice under regular review and will communicate any changes to you.