Information on personal data processing
When processing the personal data, we always proceed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the personal data processing and on the free movement of such data and repealing Directive 95/46 / EC (General Regulation on the protection of individuals with regard to the processing of personal data and on the free movement of such data, hereinafter referred to as the “GDPR”) and in accordance with the relevant national regulations governing the protection of the personal data or regulating the activities of the Mendel University in Brno.

University contact details:

  • Registered office of the University: Zemědělská 1, Brno
  • Name of the University: Mendel University in Brno
  • MENDELU Rectorate: Building A
  • Mailing address: Zemědělská 1665/1, 613 00 Brno, Czech Republic
  • Telephone: +420 545 131 111
  • Email: info@mendelu.cz
  • Web: www.mendelu.cz
  • Company identification No.: 62156489
  • Tax ID No.: CZ62156489
  • Databox ID: 85ij9bs


Contact details of the Data Protection Officer:

  • Martin PERNICA
  • Mendel University in Brno
  • Zemědělská 3
  • 613 00 Brno, Czech Republic
  • Email: dpo@mendelu.cz


Contact details of the conference manager:

  • Pavlína PANCOVÁ ŠIMKOVÁ
  • Department of Forest Protection and Wildlife Management
  • Faculty of Forestry and Wood Technology
  • Mendel University in Brno
  • Zemědělská 3
  • 613 00 Brno, Czech Republic
  • Email: pavlina.simkova@mendelu.cz


Mendel University in Brno hereinafter referred to as “administrator” or “MENDELU”, is the administrator of the personal data at the conference “Uneven-aged silviculture: insights into forest adaptation in times of global change”.

Purpose of the personal data processing
The processing of the personal data provided by participants is necessary for the preparation and organization of the conference.


Categories of processed personal data

  • identification data (name, surname, academic title),
  • contact details (address of permanent residence, contact address, email, telephone number),
  • photography

 

Legal grounds for personal data processing
The legal basis for the processing of the personal data is Article 6 (1) (b) and (f) of the GDPR, as their processing is necessary for the performance of the contract (especially ensuring your participation in the conference) and for legitimate interests of MENDELU (especially sending organizational messages, photo documentation of the conference).
In some cases, the personal data may be processed on the basis of Article 6 (1) (c) of the GDPR due to their necessity to fulfil MENDELU’s legal obligation. 


Personal data transfer
The personal data are not transferred to other persons except in the following cases:

  • Obligation to transfer the personal data is imposed on MENDELU by a special legal regulation;
  • Conference participant has agreed to the transfer of the personal data.

When processing the personal data within the conference, there is no automated decision-making, on the basis of which acts or decisions would be made, the content of which would be an interference with the rights or legitimate interests of citizens. 

 

Period of the personal data retention

The personal data are only processed for 48 months. After the expiration of this period, the personal data are destroyed or are further stored for the period specified in the MENDELU disposal plan, issued in accordance with Act No. 499/2004 Coll., On Archiving and Records Service.

 

Overview of participants rights concerning personal data protection

As a data subject, participants have the following rights provided to prove personal identity:

  • Right to access the personal data under the conditions stated in Article 15 GDPR; participants are entitled to find out which of the personal data are processed and retained by MENDELU, the purpose, legal grounds, manner and period of processing and recipients to whom the personal data are made accessible;
  • Right to rectification of inaccurate or incomplete data under the conditions stated in Article 16 GDPR. As a data subject, participants are also obliged to notify MENDELU of changes in the personal data and to prove that such changes have occurred, and provide MENDELU with the necessary cooperation in case we find inaccuracies in the data we process about participants;
  • Right to erasure under the conditions stated in Article 17 GDPR. This right shall be exercised only if MENDELU fails to demonstrate justified reasons for the personal data processing;
  • Right to restriction of processing under the conditions stated in Article 18 GDPR. This right shall be exercised only if participants deny the accuracy of the personal data, the reasons for and expediency of their processing or if participants object to their processing;
  • Right to notification of rectification or erasure of the personal data or restriction of processing under the terms stated in Article 19 GDPR, made by the MENDELU as the Controller with the exception of cases where this proves impossible or involves a disproportionate effort;
  • Right to portability of the personal data which participant provided on the basis of a consent or contract and which are processed by MENDELU through automated means under the terms stated in Article 20 GDPR. Right to obtain such data in a structured, commonly used, machine-readable and interoperable format and right to request that the MENDELU transmit the data to another controller determined by participants, if technically feasible. However, the Controller does not process the obtained personal data by automated means;
  • Right to raise an objection to the processing of the personal data concerning participant, which applies only to processing carried out in the public interest or for a legitimate interest of the Controller under the terms stated in Article 21 GDPR;
  • Right not to be subject to a decision based solely on automated processing, including profiling, under the terms stated in Article 22 GDPR. However, the Controller does not take any fully automated decision-making or processing without the influence of human judgement, that would have legal effects or other significant impacts on the data subject;
  • Right to lodge a complaint with a supervisory authority, in the Czech Republic the Office for Personal Data Protection, under Article 77 GDPR.


Information on how to use participants´ rights can be found on the website.