Privacy Policy

The “ECCFP gUG i.G.” (ECCFP) cares about data protection. We follow the General Data Protection Regulation (GDPR) from the European Union. The GDPR aims at giving EU citizens and more generally all data user more control about the way their data are used by an organization. A key requirement of the GDPR is to have a privacy policy that is made transparent of all users. For the European Center for Climate Foreign Policy, it is essential to be transparent about what type of data of collected, and for which purpose, if it is the case at all. Our privacy policy describes how and why we might collect, store, use and/or share (“process”) your information when you use your website at www.eccfp.eu. 

Reading this privacy policy notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not abstain from using our website. If you have questions or concerns, please do contact us at contact@eccfp.eu. 

What Information do we collect?

Personal Information you disclose to us

We collect personal information that you voluntarily provide to us when your express an interest in obtaining information about us, when you participate in activities of the ECCFP or otherwise when you contact us. The personal information that we collect depends on the context of your interaction with us and the ECCFP, the choices you make, and the products you use. The personal information we collect might include your names and email addresses. In addition, we do not process sensitive information.  

Information automatically collected 

We automatically collect information when you visit, or navigate the ECCFP website. This information does not reveal your specific identity, but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, location, information about how and when you use the ECCFP website, and other technical information. The information is primarily needed to maintain the security and operation of the ECCFP, and for our internal analytics and reporting purposes. 

Like many other organizations, we also collect information through cookies and similar technologies. The information we collect include Log and Usage Data, which are service-related, diagnostic, usage, and performance information we automatically collect when you access or use the ECCFP website, and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type, and settings and information about your activity in the ECCFP website, device event information reports. 

How do we process your Information?

We process your personal information for a variety of reasons, depending on how you interact with the ECCFP website, including to request feedback, identify usage trends, or save and protect an individual’s vital interest. To request feedback, we may process your information when necessary to request feedback and to contact you about your use of the ECCFP website. To identify usage trends, we may process information about how you use our ECCFP website to better understand how they are being used so we can improve them. To save or protect an individual’s vital interest, we may process your information when necessary to save or protect an individual’s vital interest, such as to prevent harm. 

How do we process your Information?

The General Data Protection Regulation (GDPR) and UK DFPR require us to explain the valid legal bases we rely on in order to process your personal information. As such, we may rely on the following legal bases to process your personal information, through consent, legitimate interests, legal obligations, or vital interests. In the case of consent, we may process information if you have given us the permission to use your personal information for a specific purpose. You can withdraw you consent at any time, by contacting us at contact@eccfp.eu 

In case of legitimate interests, we may process information when we believe it is reasonably necessary to achieve our legitimate organizational interests and those interests do not outweigh your interests and fundamental rights and freedoms. For instance, we may process your personal information to analyze how the ECCFP website is used to improve it, or to understand how our users use the ECCFP website to improve user experience. 

In case of legal obligation, we may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, or disclose your information as evidence in litigation in which we are involved. 

In case of vital interests, we may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party, such as situations involving potential threats to the safety of any person. 

In legal terms, we are generally the “data controller” under the European data protection law of the personal information described in this privacy policy notice, since we determine the means and the purposes of the data processing we perform. This privacy policy notice does not apply to the personal information we process as a “data processor” on behalf of our customers. In those situations, the customer that we provide services to and with who we have entered into a data processing agreement is the “data controller” responsible for your personal information, and we merely process your information on their behalf in accordance with your instructions. If you want to know more about our customer’s privacy policy, you should read their privacy policies and direct any questions you have to them. 

When and with whom do we share your personal Information?

We may share your data with third-party service providers, contractors, or agents (“third parties”) who perform services for us on our behalf and require access to such information to do that work. The third parties we may share information with are as follows, the website hosting WordPress.com (www.wordpress.com), and Google Analytics (www.analytics.google.com).  

Do we use cookies and other tracing technologies?

We may use cookies and similar tracking technologies to access or store information. Specific information about how we use such technologies and how you can refuse certain cookies is set our in our Cookie Notice.  

Do we use cookies and other tracing technologies?

We will keep your personal information for as long as it its necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements. When we have no ongoing legitimate organizational need to process your personal information, we will either delete or anonymize such information, or if this is not possible (for example, because your information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

How do we keep your Information safe?

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from the ECCFP is at your own risk. You should only access the ECCFP website with a secure environment. 

What are your privacy rights?

In some regions of the world (e.g. the EU, UK, or Canada), you have certain rights under applicable data protection laws. These may include the right (i)to request access and obtain a copy of your personal information, (ii) to request rectification or erasure, (iii) to restrict the processing of your personal information, and (iv) if applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your personal information. You can make such a request by contacting us by using the following email-address: contact@eccfp.eu. 

According to the General Data Protection Regulation (GDPR), as an individual, you have the right of access, right of information, right to rectification, right to erasure of your personal data, the right to restriction of processing, right to object to the processing of personal data. In the following, the different rights will be described. 

Right of access 

The right of access is the right for any data subject to obtain from the controller of a processing operation the confirmation that data related to him/her are being processed, the purpose(s) for which they are processed, as well as the logic involved in any automated decision process concerning him or her. This right also allows the data subject to receive communication in an intelligible form of the data undergoing processing and of information regarding the processing. This right can be exercised without constraint, at any time within 1 month  from the receipt of the request, and is free of charge (Article 14 of Regulation (EU) 2018/1725). 

Right of information 

Everyone has the right to know that their personal data are processed and for which purpose. The right to be informed is essential because it determines the exercise of other rights. The right of information refers to the information which shall be provided to a data subject whether or not the data have been obtained from the data subject. The information which must be provided relates to the identity of the controller, the purpose(s) of the processing, the recipients, as well as the existence of the right of access to data and the right to rectify the data. The right of information for the person concerned is limited in some cases, such as for public safety considerations or for the prevention, investigation, identification and prosecution of criminal offences, including the fight against money laundering. In the context of processing operations within the EC institutions (see Articles 15 and 16 of Regulation (EU) 2018/1725), this right is often fulfilled by a privacy statement. 

Right of rectification 

The right of rectification is the right to obtain from the controller the rectification without delay of inaccurate or incomplete personal data (Article 18 of Regulation (EU) 2018/1725 ). The right of rectification is an essential complement to the right of access and is important to maintain a high level of data quality. To exercise the right of rectification, the data subject usually has to write to the controller of the processing operation. By way of illustration, if you need to change your personal address or if you find that information about you is inaccurate, you should exercise your right of rectification by contacting the controller who holds these data. 

Right to restriction of processing 

Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future. As provided by Article 20 of Regulation (EU) 2018/1725, the data subject shall have the right to obtain from the controller the restriction of processing where: their accuracy is contested by the data subject, enabling though the controller to verify the accuracy, including the completeness of the data; or the processing is unlawful and the data subject opposes their erasure and demands their restriction of processing instead; or the controller no longer needs them for the accomplishment of its tasks but they have to be maintained for purposes of proof; or the data subject has objected to processing to Article 23(1) pending the verification whether the legitimate grounds of the controller override those of the data subject. Personal data restricted can only be processed with the data subject’s consent, for purposes of proof, or for the protection of the rights of a third party, or for reasons of important public interest of the Union or of a Member State. 

Right to erasure (“right to be forgotten”) 

The right to be forgotten is provided in the Article 17 of the GDPR and states that “data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay” if one of a number of conditions applies. “Undue delay” is considered to be about a month. You must also take reasonable steps to verify the person requesting erasure is actually the data subject. In Article 17, the GDPR outlines the specific circumstances under which the right to be forgotten applies. An individual has the right to have their personal data erased if:  

  • The personal data is no longer necessary for the purpose an organization originally collected or processed it. 
  • An organization is relying on an individual’s consent as the lawful basis for processing the data and that individual withdraws their consent. 
  • An organization is relying on legitimate interests as its justification for processing an individual’s data, the individual objects to this processing, and there is no overriding legitimate interest for the organization to continue with the processing. 
  • An organization is processing personal data for direct marketing purposes and the individual objects to this processing. 
  • An organization processed an individual’s personal data unlawfully. 
  • An organization must erase personal data in order to comply with a legal ruling or obligation. 
  • An organization has processed a child’s personal data to offer their information society services. 

If any if these conditions are fulfilled, and in case you wish to erase personal information stored by the ECCFP, you might contact us through the following email address: contact@eccfp.eu.  

Right to object 

According to Regulation (EU) 2018/1725 “The data subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (a) of Article 5(1), including profiling based on that provision. The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims”. This right has to be brought to the attention of the data subject at the time of the first communication at the latest and shall be presented in a clear way separately from any other information (see Article 23 sub (2) of Regulation (EU) 2018/1725). The data subject may use automated means by technical specifications in order to exercise their right to object in the context of the use of information society services, without prejudice to Articles 36 and 37 (see Article 23 sub (3) of Regulation (EU) 2018/1725 ). According to Article 23 sub (4) of Regulation (EU) 2018/1725 “Where personal data are processed for scientific or historical research purposes or statistical purposes, the data subject, on grounds relating to his or her particular situation, shall have the right to object to processing of personal data concerning him or her, unless the processing is necessary for the performance of a task carried out for reasons of public interest”. 

Right to portability of data 

According to the GDPR, “the data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where: the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) or on a contract pursuant to point (b) of Article 6(1); and the processing is carried out by automated means”. In other words, the right to data portability allows data subjects to obtain data that a data controller holds on them and to reuse it for their own purposes. Individuals are free to either store the data for personal use or to transmit it to another data controller. The data must be received in a structured, commonly used and machine-readable format. To assert the right to data portability, the data subject might contact at any time the ECCFP through the following email address: contact@eccfp.eu.  

Right to withdraw data protection consent 

Each data subject has the right according to the GDPR to withdraw his or her consent to processing of his or her personal data at any time. If the data subject wishes to exercise the right to withdraw the consent, he or she may, at any time, contact the European Center for Climate Foreign Policy by the following email address: contact@eccfp.eu. 

Do we make update to this notice?

We may update this privacy notice from time to time. The updated version will be indicated by an updated revised date and the updated version will be effective as soon as it is accessible. If we make material changes to this privacy notice, we may notify you either by posting a notice of such change or by directly sending you a notification. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.

How can you contact us about this notice?

If you have any questions about our privacy policy, you may contact our Data Protection Officer (DPO), Baptiste Aguila, by email at baptiste.aguila@eccfp.eu, or by phone at +49 (0) 17646165995, or by post at: 

ECCFP gUG i.G.

Malplaquetstraße 12  

13347 Berlin 

Germany 

If you are resident in the European Economic Area (EEA), the “data controller” of your personal information is the European Center for Climate Foreign Policy (ECCFP). The ECCFP has appointed Baptiste Aguila to be its representative in the EEA. 

How can you review, update, or delete the data we collect from you?

Based on the applicable law of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request, review, update, or delete your personal information, please contact: contact@eccfp.eu. 

This privacy policy notice was created using Termly’s Privacy Policy Generator. 

Support us now

About

Our Mission 

Our Vision

Our Values

Our Story

Our Team

 

Areas

Covernance & leadership

Biodiversity & Energy

Economy & Finance

Cooperation & Development

Security & Defence

Activities

Center for Advocacy and Visibility

Platform for Cooperation and Exchange

Think Tank for Strategy and Leadership

Network for Research and Action

Contact

Facebook

Instagram

X

LinkedIn

© 2023 ECCFP gUG i.G. All rights reserved 

Powered by ECCFP Creative Minds

Privacy Policy   Impressum