Privacy Policy

(“The Organiser”) respects and values your privacy. The Organiser has developed the privacy policy (“Privacy Policy”) to inform you about how your personal information is collected and processed (“Personal Data”).

The Organiser processes your Personal Data by observing the rights of natural persons to the lawful processing of Personal Data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (“Regulation”) and other regulatory enactments regarding privacy and data processing.

The Privacy Policy takes effect from the moment you have submitted Personal Data in the registration form (“Registration Form for EFPRA 2025”) on the internet platform, when applying yourself or for another person for “EFPRA congress 2025” further known as “Event”.

Purposes of Personal Data Processing

The Organiser processes your Personal Data or Personal Data of another person, whom you have applied for, for the following purposes:

  1. registration for participation in the Event and ensuring participation in the Event;
  2. processing of the payment for participation in the Event (if you are the payer);
  3. communication with you regarding participation in the Event;
  4. sending of informative materials about the Event, if you have chosen to receive them;
  5. sending of informative materials about other services offered by the Organiser, if you have chosen to receive such information.

Personal Data Categories

The following Personal Data may be processed for the above provided purposes: Your or the person’s, whom you have applied for, name, surname, contact information, payment details (e.g., account number), if the participation fee is paid by a natural person, photos and videos, other Personal Data – any additional information or comments containing Personal Data provided by you in any way.

Photos and videos may be captured at the Event, as well as live video streaming may take place. In such a case informative signs are placed at the entrance to the Event, which inform you that photos and videos are captured during the Event or video streaming is taking place. Photos and videos of the person may be posted on the Organiser’s website and/or social networks, as well as in the mass media.

If you do not want to be seen in photos and/or videos, please contact the Organiser before the Event – the Organiser will take appropriate measures within its limits to prevent you from being photographed or filmed.

If your photo is taken during the Event and you would like it to be removed, please contact the Organiser and your photo will be removed.

If you have applied for another person for participation in the Event, by submitting the Registration Form you confirm that you have received the relevant person’s consent to the processing of Personal Data for the purpose of registering their participation in the Event, as well as have informed the respective person that photos and videos may be captured during the Event and/or live video streaming may take place.

Legal Grounds for Personal Data Processing

The legal grounds for the processing of your Personal Data is the performance of the agreement (Article 6 (1) (b) of the Regulation), your consent to the processing of Personal Data (Article 6 (1) (a) of the Regulation), the legitimate interests of the Organiser (Article 6 (1) (f) of the Regulation) and provision of the Organiser’s legal obligations (Article 6 (1) (c) of the Regulation).

Personal Data Controller and Data Processors

The Organiser shall be considered the Data Controller within the meaning of the Regulation regarding the processing of your Personal Data or Personal Data of the person you have provided in the Registration Form.

For the purpose of providing the service or in cases as provided by the regulatory enactments your Personal Data is or may be transferred for processing to third parties – data processors, including to SIA “ABC idea” – the provider of Mitto.me platform, which provides the Organiser the registration services of the event.

SIA “ABC idea”
Registration number: 40103285126
Address: Andromedas gatve 1-70, Riga, LV-1084, Latvia
E-mail: info@mittoevents.com
Phone: +371 20777714
Website: www.mittoevents.com

The Organiser takes appropriate contractual and organisational measures to ensure that your Personal Data is only processed in accordance with the purposes set out in this Privacy Policy and only in accordance with the applicable regulatory enactments, and in compliance with the relevant instructions and confidentiality and security measures of the Organiser.

The Organiser may be obliged to transfer your Personal Data to public administration institutions or officials in the cases specified by the regulatory enactments and/or upon their request. Upon your request the Organiser is obliged to provide you with detailed information about the recipients of your Personal Data, unless the disclosure of such information is prohibited by the regulatory enactments. The request to receive information about persons, to whom the Organiser has handed over your Personal Data for processing must be sent to the Organiser’s e-mail address: info@efpra2025riga.eu

Please contact the Organiser, if you would like to receive additional information about the transfer of your Personal Data to data processors.

Duration of Storage of Personal Data

The Organiser keeps your Personal Data for as long as it is required for the purpose for which the relevant Personal Data is processed:

Personal Data that is processed for the registration of your participation in the Event, communication with you about the Event, ensuring the course of the Event, sending informative materials about the Event, summarising the course of the Event is stored for no longer than 2 years;

Personal Data that is processed for the purpose of collection of payments is stored for the term specified in the regulatory enactments regarding the accounting procedures;

Personal Data that is processed for the purpose of observing the agreement on participation in the Event is stored for as long as you or the Organiser can implement the legitimate interests arising from the respective agreement;

Personal Data that is processed by the Organiser for the purpose of sending information that is not related to the Event is stored until you have withdrawn your consent to receive such informative notices. You can withdraw your consent to receive informative notices that are not related to the Event by sending an appropriate notice to the Organiser’s email address: info@efpra2025riga.eu. Upon the receipt of such notification, all Personal Data processed for such purpose shall be deleted immediately.

Data Security

The Organiser takes appropriate technical and organisational measures to ensure the secure processing of your Personal Data. The Organiser applies appropriate security policies and procedures to protect your personal information from unauthorised access, unauthorised processing or disclosure, alteration or destruction. Your Personal Data is stored in information systems with restricted access: it is only available to those who require it, and who have undertaken to observe the confidentiality of the processing of Personal Data.

Your Rights

  1. Access rights: you have the right to know whether the Organiser processes your Personal Data and what Personal Data is available to the Organiser, as well as the right to request more accurate and detailed information about the processing of Personal Data;
  2. Rectification rights: the Organiser is obliged to correct erroneous Personal Data and specify incomplete Personal Data;
  3. Right to erasure: the Organiser is obliged to delete your Personal Data at your request in the cases specified in the regulatory enactments;
  4. Right to restrict processing: In the cases specified by the regulatory enactments, the Organiser is obliged to restrict the use of Personal Data at your request;
  5. Right to data portability: in the cases specified by the regulatory enactments, you have the right to receive the Personal Data available to the Organiser in a structured, commonly used and machine readable format;
  6. Right to object: if the Organiser processes your Personal Data on the basis of a legitimate interest, you have the right to object to the processing of your Personal Data for the relevant purpose. You may object to the processing of your Personal Data for direct marketing purposes at any time, and the Organiser is obliged to terminate such processing of Personal Data;
  7. You have the right to lodge a complaint with the Data State Inspectorate.

Data State Inspectorate
11/13-11 Blaumaņa Street, Riga, LV-1011
Phone: +371 67 22 31 31
Fax: +371 67 22 35 56
E-mail: info@dvi.gov.lv

Contact information of the Organiser: info@efpra2025riga.eu