Information for data subjects regarding the processing of personal data
Pursuant to REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (EU) 2016/679 of 27 April 2016 on the protection of natural persons in the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the Regulation or GDPR.
Personal data is any information relating to an identified or identifiable natural person ("data subject");
The person concerned
A data subject is an identifiable natural person who can be identified directly or indirectly, by reference to an identifier such as name, identification number, location data, online identifier, or by reference to one or more elements that are specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Processing is an operation or a set of operations with personal data or sets of personal data, such as obtaining, recording, organizing, structuring, storing, processing, or altering, retrieving, browsing, using, disclosure by transmission, dissemination, or otherwise making available, rearranging or combining, restriction, erasure or destruction, whether by automated or non-automated means.
An information system is any organized set of personal data that is accessible according to specified criteria, regardless of whether the system is centralized, decentralized or distributed on a functional or geographical basis.
The operator is a natural or legal person, public authority, agency, or other entity that, alone or jointly with others, determines the purposes and means of personal data processing; where the purposes and means of such processing are laid down in the law of the Union or in the law of a Member State, the operator or specific criteria for determining it may be governed by the Union law or by the law of a Member State.
Breach of personal data protection
A personal data breach is a breach of security that results in the accidental or unlawful destruction, loss, alteration, or unauthorized disclosure of, or unauthorized access to, personal data that is transmitted, stored, or otherwise processed.
Consent of the data subject
The data subject´s consent is any freely given, specific, informed, and unambiguous expression of the will of the person concerned, by which the person expresses his/her consent to the personal data processing concerning him/her by the means of a statement or an unambiguous confirming act;
The information is processed by category of the data subject for better clarity as follows:
- Information for website visitors
- Information for job seekers
- Information for employees and former employees
- Information for project applicants and reviewers
- Information for visitors to the SRDA building/headquarters
The Slovak Research and Development Agency, as the operator, has appointed a Data Protection Officer (DPO) in relation to the protection of personal data pursuant to Art. 37 of the GDPR Regulation.
For more information:
Slovak Research and Development Agency
811 07 Bratislava