Data Protection for EU Funded Surveys
Processing operation: Targeted consultation activities (including surveys, interviews and focus groups)
Data Controller: European Commission, Directorate-General for Neighbourhood and Enlargement negotiations (DG NEAR) – Directorate A – Unit A4: MFF, Programming & Evaluation in charge of the targeted consultation activity – Evaluation of intervention(s)
Record reference: DPR-EC- 01011
This privacy statement concerns the processing operation ‘Targeted consultation activities’ – ‘evaluation of intervention(s)’ developed in the framework of the Evaluation des opérations d’appui budgétaire au Maroc de 2013 à 2019, undertaken by the Data Controller, as presented below.
2. Why and how do we process your data?
- Obtain the views of the respondents of the targeted consultation activity. In view of the design, evaluation and revision of initiatives it is indispensable for the Commission to receive input and views from those who are considered to be concerned by the policy or initiative.
- Obtain the views of stakeholders to explore a subject for which very limited information is available. This exploratory targeted consultations activity (hereafter, ‘targeted consultation’) will provide further information to the Commission necessary to take basic conceptual decisions.
3. On what ground(s) do we process your personal data?
We process your personal data, because:
(a) processing is necessary for the performance of a task carried out in the public interest;
(b) processing is necessary for compliance with a legal obligation to which the controller is subject;
(d) it is based on your consent, for one or more specified purposes:
- Participation to the interview(s) ;
- Participation to the online survey(s) ;
- Publication of the identity of the stakeholder or respondent;
- Publication of audio or video recordings.
The Union law which is the basis for the processing based on Articles 5(1)(a) and (b) of Regulation (EU) 2018/1725 is the Treaty of the European Union, and more specifically its Articles 1 and 11, Article 298 of the Treaty on the Functioning of the European Union, read in conjunction with Recital 22 of Regulation (EU) 2018/1725), as well as the Protocol 2 on the application of the principles of subsidiarity and proportionality.
4. Which personal data do we collect and further process?
In order to carry out this processing operation the Data Controller collects the following categories of personal data:
- Name and surname,
- E-mail address of the respondent,
- Name of the organisation on whose behalf the respondent is contributing,
- Personal data included in the response or contribution to the targeted consultation (if the targeted consultation at hand requires so).
Furthermore, you may spontaneously provide other, non-requested personal data in the context of your reply to the targeted consultation.
5. How long do we keep your personal data?
6. How do we protect and safeguard your personal data?
7. Who has access to your personal data and to whom is it disclosed?
- any personal data on which you consented to their publication;
- personal data spontaneously provided by you in your contribution (without it being required by the consultation activity.
8. What are your rights and how can you exercise them?
9. Contact Information
- The Data Controller
If you would like to exercise your rights under Regulation (EU) 2018/1725, or if you have comments, questions or concerns, or if you would like to submit a complaint regarding the collection and use of your personal data, please feel free to contact the Data Controller.
European Commission, Directorate-General for Neighbourhood and Enlargement negotiations (DG NEAR) – Directorate A – Unit A4: MFF, Programming & Evaluation at NEAR-EVAL- MONITORING@ec.europa.eu.
- The Data Protection Officer (DPO) of the Commission
You may contact the Data Protection Officer (DATA-PROTECTION-OFFICER@ec.europa.eu) with regard to issues related to the processing of your personal data under Regulation (EU) 2018/1725.
- The European Data Protection Supervisor (EDPS)
You have the right to have recourse (i.e. you can lodge a complaint) to the European Data Protection Supervisor (email@example.com) if you consider that your rights under Regulation (EU) 2018/1725 have been infringed as a result of the processing of your personal data by the Data Controller.