Privacy Policy
Introduction and Scope
This privacy policy (“Policy”) informs you of how the Federation of European Securities Exchanges (“FESE”) collects, uses and protects your personal data.
Data controller
For the purpose of this Policy, the data controller responsible for the processing of your personal data is FESE, headquartered at:
Address : Rue Montoyer 25, 1000 Brussels – Belgium
E-mail: info@fese.eu
Phone Number: +32 2 551 01 87 or +(32) 2 551 01 80
Source of personal data collection
FESE may collect information about you in various ways:
- from our members if they designate you as their representative or as a member of one of our committees.
- directly from you:
- when you visit our website www.fese.eu or interact with us through our social media accounts
- when you fill in (web)forms to attend events, receive newsletters, publications, etc.
- when you respond to online surveys and polls
- when you hand over your business card
Categories of Personal Data
FESE processes the following categories of personal data:
- Contact details you provide us with (such as your name and email address);
- Occupation, title, name of organization/security exchange, department, business postal address, business telephone number;
- Information you include in your original and any follow-up messages;
- Device data we automatically collect about your use of our website or our e-mailings, including the following:
- Data about your device and Internet connection, device’s unique ID, web browser type and version;
- Hardware and software, IP address, operating system, host domain, web pages you viewed on our website and search terms, geolocation;
- Referrer URL and web pages you visited prior to ours; and
- Log usage data consisting of traffic and location data, date and time of access and frequency, technical session and connection information
- Photos and videos taken at events, meetings, etc.
- Any other information you decide to provide us with
Purposes and Legal Bases
We only process your personal data for specific, explicit and legitimate purposes. The following table provides an overview of how FESE uses your personal data and the legal bases we rely on:
| Purpose of the processing | Legal basis |
|---|---|
| Management of your newsletter subscription | Consent |
| Providing information to website and App users (e.g., updates on FESE’s work and event details) | Consent; and Our legitimate interests in advertising our association, activities and events |
| Process and answer your queries, complaints, or any other requests you submit to us | Our legitimate interests in managing our public and communication relations and providing information about our services |
| Ensure the functionality of our website and services | Our legitimate interests in providing you with a fully operative website and services |
| Statistical analysis of the performance of our website (web audience measurement) and customization of our websites and services | Our legitimate interests in improving the user experience and tailoring our website and services to the user’s interests and preferences |
Disclosure of Personal Data
Your personal data is stored by FESE and will only be granted access on a need-to-know basis. Such access will be limited to the personal data that is necessary to perform the function for which such access is granted. Subject to the purposes described above and applicable laws and regulations, FESE will, from time to time, disclose personal data processed to the following categories of recipients:
- Authorized staff members;
- Third-party service providers only upon our request, following our instructions and excluding any other use (e.g., IT hardware, Internet and maintenance of our website);
- Regulatory authorities, governmental or quasi-governmental organizations;
Transfers of Personal Data outside the European Union
Personal data can only be transferred outside the European Union to countries that provide an adequate level of protection as the one in the European Union.
For transfers of personal data to countries outside of the European Union considered as not providing adequate protection, FESE ensures that appropriate safeguards are implemented to secure such data transfers in compliance with applicable data protection laws. We have implemented international data transfer agreements based on EU Standard Contractual Clauses to cover our international data transfers and a copy of these clauses can be obtained by contacting us at info@fese.eu.
Storage Period and Deletion
The personal data collected will be kept for as long as necessary to achieve the different purposes and any event in accordance with applicable laws and subject to applicable local retention requirements. Once the objectives have been achieved, they will be deleted or anonymized.
Protection of Personal Data
FESE is committed to protecting your personal data from unauthorized access and manipulation through organizational and technical measures. We have implemented measures designed to secure your personal data from accidental loss and from unauthorized access, use, alteration, and disclosure. Your personal data are treated in confidentiality by the persons authorised to do so and only for achieving the required purpose.
However, you should be aware that nowadays, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website.
Your rights regarding your personal data
The General Data Protection Regulation (GDPR), which is effective since May 2018, stipulates that you have the following rights:
- Right to erase your data
- Right to data portability
- Right to access your data
- Right to rectify your data
- Right to restrict processing
- Right to object
- Right to withdraw consent
You also have the possibility to lodge a complaint with the competent Data Protection Authority (DPA).