Privacy policy

Introduction

The processing of personal data through the fi-compass website (hereinafter the website) is performed by the European Investment Bank (EIB) and the European Commission (EC) acting as joint controllers. The EIB and its processors have day-to-day responsibility for the collection and processing of data in relation to the fi-compass platform. The data is accessible by the EC as required in relation to the delivery of the platform, its events and other activities.

Your personal data is processed in compliance with Regulation 2018/1725 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC.

What types of personal data do we collect?

Below is the information we collect from you:

For all website visitors:

  • Anonymised IP address of visitors;
  • Browsing information; Cookies.

Cookie name

Source

Purpose

Expiry time

Login secure cookies

 

Drupal

User authentication - username/password login.

User session management.

24 days

cookie-agreed

Drupal

Agree privacy policy - indicate whether the user clicked on Agree  the privacy policy button.

1 year

has_js

Drupal

Use javascript - indicate whether the user's browser use javascript or not.

1 day

Self-hosted secure cookies

_pk_ref, _pk_cvar, _pk_id, _pk_ses, _pk_hsr

Piwik/Matomo

Website usage statistics, page visits, clicks, downloads,  without any personal data.

13 months

6 months

30 minutes

30 minutes

 

For registered user only:

  • Name and Surname;
  • Contact details (e.g. email address, place of residence, phone number, etc.);
  • Future communication preferences including subscription preferences and areas of interest in one or more topics on which you decide to receive more information (optional);
  • fi-compass also keeps track of the opening rates of emails sent for statistical and reporting purposes.

Purpose of processing

We collect and process your personal information in order to raise awareness about EU financial instruments. For this purpose, we update you via emails and newsletters about financial opportunities and upcoming events. In addition, we analyse aggregated website visits to enhance and adopt our communication.

What are the legal basis for which we process your personal data?

fi-compass collects and processes your personal data, primarily, for performance of a task carried out in the public interest or in the exercise of official authority vested in the EIB and the EC. In very specific circumstances (i.e. newsletters), your consent would serve as a legal basis.

How long do we keep your data?

For each processing activity, there is a defined retention period that specifies for how long the personal data is kept. Depending on the processing activity, the retention periods are as follows:

fi-compass editorial content 15 years
fi-compass user management/newsletter 5 years after last activity by user
fi-compass event management 10 years
fi-compass analytics 2 years
fi-compass face to face meeting tool 5 years

Who has access to your personal data?

Only the staff of the fi-compass team in the EIB and the EC and its processors have access to your data. We use processors to support our operational team, for hosting of the website, mass mailing, and simple website analytics. We do not transmit any data to parties, which are outside these recipients. Only in case of audit or judicial procedures, the Court of Auditors, the Court of Justice and the European Anti-Fraud Office (OLAF) might be involved. fi-compass does not share personal data with third parties for direct marketing.

International transfers

Most of processing of your personal data takes place in the EU. Since some of our processors are US-based companies, some of your personal data may be transferred to the US under the EU-US Privacy Shield agreement. Where a processor is listed as being in the “Privacy Shield” this means that the relevant entity has been certified as being part of the EU-US Privacy Shield Framework administered by the US Department of Commerce and has agreed to adhere to the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement, and Liability.

What are your rights with respect to your personal data?

As a data subject you have the right to access, rectify and, where processed on the basis of your consent, you may also request the erasure of your data. Moreover, you also have the right to object or restrict processing of your data, as well as you have a right to withdraw your consent for the processing related to newsletters.

Please note that for certain processing activity such as processing supported by our face-to-face meeting application, you can change you privacy setting in your profile.

You also have the right to lodge a complaint to the European Data Protection Supervisor.

How to contact us?

You can contact us for any aspect regarding your personal data, by sending a written request to the fi-compass team acting on behalf of the data controller responsible for your information, or to our Data Protection Officer as follows:

By email: webmaster@fi-compass.eu

By post: Head of fi-compass, European Investment Bank, 98-100, bd Konrad Adenauer. L-2950 Luxembourg