This Privacy Policy aims at stating clearly the methods of processing of personal data related to users/visitors of this website.
This information is given in accordance with the General Data Protection Regulation (GDPR), to whoever is connecting to the “DATEX II” website at the following address: Privacy Policy. The information applies only to the website mentioned and it does not apply to other linked websites users connect to via this website.
This website is property of the DATEX II organization, which is hosted by CEDR (Conference of European Directors of Roads) per the 1st of January 2016. The governance of the DATEX II organization is controlled by the “Rules of Procedure of the DATEX II organisation”. These rules apply to all partners in the DATEX II organization. This website is managed by the DATEX II Technical Management Group (TMG).
Web users and visitors must carefully read this Privacy Policy before sending any personal information and/or filling in any electronic form found on this website. If you have any questions regarding this privacy policy, do not hesitate to contact us via privacy_contact@datex2.eu.
1. Data and purposes for processing
Most of our services do not require any form of registration, allowing you to visit our site without telling us who you are. However, some services require you to provide us with personal data by creating a user account or by filling in a contact form. In these situations, if you choose to withhold any personal data requested by us, it will not be possible for you to gain access or upload (and manage) information to certain parts of the site or for us to respond to your query.
To create a user account or when contacting to the DATEX II organization, you are required to fill in an online form, providing us information such as name, company name, email address and country of residence. This information may also be gathered when receiving a direct e-mail from a web user. This personal information will be processed exclusively to provide the requested service and/or to fulfil the query. More specifically, the personal data is gathered for the following purposes:
a) To provide members of the DATEX II organisation access to certain parts of the site which are available only to the DATEX II organization,
b) to allow both members of the DATEX II organisation as well as other web users and visitors of the website to upload and manage information such as issues, extensions, nodes and profiles to certain parts of the site, and
c) to be able to respond to queries from web users and visitors of the site.
Regarding purpose b), two types of users can be distinguished: (1) members of the DATEX II organisation and (2) visitors to the website who are not members of the DATEX II organization.
(1) All actions by members of the DATEX II organisation are governed by the Rules of Procedure of the DATEX II organisation. This means that all contributions to the website by a member of the DATEX II organisation are under the control of the DATEX II Steering Group.
(2) Material uploaded by visitors of the website, such as issues, extensions, nodes and profiles, is linked to a user account. The user who uploaded the information is the owner of the material and is therefore also the one responsible for managing it. Their contact details will be shown on the website so other website users can contact the publisher. If a user wants to upload without sharing their contact details, it is up to the DATEX II organisation whether they will act as publisher or not. If not, the uploaded material will not be shown on the website.
The final recipients of the personal data are none other than those in charge of managing the website, the DATEX II Communication Team, and those in charge of the content shown on the website, the DATEX II Technical Management Group.
Personal information related to issues and uploaded information like profiles, nodes and extensions, is accessible to the members of the DATEX II Technical Management Group, to manage the resolution process, check the uploaded information and to contact users about progress, clarification and alignment with other stakeholders.
Non-identifiable photographs e.g. group photographs or background photographs, may be used without prior consent, on the basis of legitimate interests.
2. Methods of data processing
Data is processed through computer-based tools (such as electronic procedures) only for the limited time period necessary for the purposes according to which they have been gathered. Data is received and processed by the Data controller. The provided data will not be shared with third parties unless we’re legally obligated to comply with a request.
Cookies are small pieces of text sent by your web browser by a website you visit. A cookie file is stored in your web browser and allows this website or a third-party to recognize you and make your next visit easier and the website more useful to you.
When you use and access this website, we may place a number of cookies files in your web browser. We use cookies to enable certain functions of the website, to provide analytics and to store your preferences.
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses cookies to help the website operators analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf.
Google will not associate your IP address with any other data held by Google.
You may refuse the use of these cookies by selecting the appropriate settings upon accessing this website, however please note that if you do this you may not be able to use the full functionality of this website.
In addition to cookies related to the use of Google Analytics, third-parties cookies are also used on this website to report usage statistics on third-party modules used on this website. These cookies are strictly necessary for the operation of a website. Accordingly, we are not asking you for your specific consent for these cookies.
4. Storing data
Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes. The retention period is related to the purpose with which we have received or collected the data and any legal obligations. The retention periods are as follows:
-
For issues: 6 months after the issue is resolved.
-
For extensions, nodes and profiles: 6 months after the profile, node or extension is withdrawn or superseded by a new one.
-
For user accounts: 6 months after removing the user account.
-
For queries via contact forms: 6 months after the query has been resolved.
-
For queries via direct e-mail contact: 6 months after the query has been resolved.
Web users or visitors wishing to remove their data can contact us via privacy_contact@datex2.eu.
5. Data controller, data processors and classes of people in charge
The DATEX II Technical Management Group processes personal data as a Processor and as a Controller, as defined in the Directive and the GDPR. Inside this organization, the personal data will be processed by the employees in charge of the functions mentioned above.
6. Rights of data subjects
Web users or visitors whom the personal data refers to, have the right to have access to their personal data, the right to rectification, the right to complain to a supervisory authority, and the right to withdraw consent.
Web users or visitors have the right to confirmation as to whether or not we process their personal data and where, where we do, access to the personal data, together with certain additional information. That additional information includes details of the purposes of the processing, the categories of personal data concerned and the recipients of the personal data.
Web users or visitors have the right to have any inaccurate personal data rectified and, taking into account the purposes of the processing, to have any incomplete personal data completed.
If you believe that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection.
To the extent that the legal basis for our processing of your personal information is consent, web users or visitors have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal.
7. Security
To protect you personal data we have taken the following measures:
-
Servers and devices of our employees are equipped with current security software, such as a virus scanner and firewall.
-
We only send your data via secure internet connections (TLS, formerly SSL). You can see this at the address bar, there will be ‘https’ and a closed padlock for the url.
-
All our people who have access to personal data know exactly how carefully they have to deal with your data.
8. Exceptions
An exception to this privacy policy is to be made with regards to the use of the DATEX II issue tracker. The DATEX II issue tracker is hosted on Bugzilla, which maintains its own user guidelines. The user guidelines can be found on the Bugzilla Etiquette page. Due to Bugzilla being a Mozilla-based function, its privacy policy therefore falls under that of Mozilla. Personal information entered on the Bugzilla website in order to create a Bugzilla account with the goal of uploading or managing issues on the DATEX II issue tracker therefore falls under the Mozilla privacy policy.
9. Changes, questions, and feedback
We regularly check whether we comply with this privacy policy and will update it if necessary. If you have questions about our privacy policy, you can contact us at privacy_contact@datex2.eu.