XVII. Personal data processing in the field of…

Informing the data subjects - Information note

As a personal data controller, the MFA provides the visa and the LBTP applicant with the information provided in art. 13 of GDPR. To inform interested parties:

In accordance with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC General Data Protection Regulation - GDPR), in its capacity of personal data controller, Ministry of Foreign Affairs, with headquarters at Aleea Alexandru 31, Sector 1, Bucharest, Romania has the obligation to administer safely and only for the specified purposes, determined by the special legal framework in force, the personal data you provide to us, in accordance with the legal provisions, about you, a member of your family or another person. Within the Ministry of Foreign Affairs, operates a person responsible for personal data protection - dpo@mae.ro.

This information refers to the purposes of collecting data for the processing and examination of applications for Romanian entry visas and local border traffic permits (LBTP), as well as the issuing of requested visas and LBTPs. Data subjects are obliged to provide the data requested in the visa * and LBTP application forms, the refusal to provide the requested data causing the inadmissibility of the visa or LBTP application, resulting in the refusal to receive the application.

The registered information is intended for use by the controller and is communicated to the following recipients, exclusive to national authorities competent in the subject matter: diplomatic missions and consular offices of Romania, the National Visa Center within the Ministry of Foreign Affairs, the General Inspectorate for Immigration, the Romanian Border Police and the National Unique Center for Electronic Passports' Personalization of the Ministry of Internal Affairs.

According to the provisions of GDPR, the data subject is entitled to be informed of the right to access to data, rectification of data, deletion of data, restriction of processing and the right not to be subject to automated processing. At the same time, the data subject has the right to oppose the processing of personal data concerning him/her and to request the deletion thereof **. For the exercise of these rights, any data subject may address a written, dated and signed application to the person responsible for Personal Data Protection of the Ministry of Foreign Affairs - dpo@mae.ro***. One also has the right to address a complaint to A.N.S.P.D.C.P. (http://www.dataprotection.ro), as well as the right to appeal to justice.

According to the provisions of art. 41 para. (1) of Law no. 271/2010 regarding the establishment, organization and operation of the National Visa Information System and Romania's participation in the Visa Information System, your data is not transferred or made available to a third party country or an international organization, except for the situations provided in art. 41 para. (2) and (3) of the same normative act.

If any of your data is incorrect, please inform us as soon as possible.

________________________________________

* Upon signing the visa/ LBTP application forms you shall be able to provide express consent to the processing of your data and you shall be able to consult, in detail, the terms and conditions regarding data processing,. The fields in the visa application forms, marked with an asterisk (*), must not be filled in by third-country nationals, family members of EU citizens, of the European Economic Area and the Swiss Confederation (husband, wife, child or dependent ascendant).

** Should you not agree with the processing of personal data concerning yourself, it shall be taken into account that the visa/ LBTP application becomes inadmissible. At the same time, if you want to delete your personal data but you have a valid visa based on that data, you shall not be able to delete it at the time you make the erasure request, according to the provisions of art. 17 para. (3) let. b) of GDPR. If no decision has been taken regarding the visa/ LBTP application, it shall no longer be possible to solve it, and it shall also be taken into account that the fee for processing the application cannot be returned. Should you oppose to your data be processed after receiving a visa / LBTP, we recommend exercising the right to erase the data.

*** Requests for the rights of data subjects to process data for visa and LBTP applications available online at www.mae.ro  shall be submitted, via a written, dated and signed request, in accordance with art. 38 para. (4) ) of the GDPR, to the person responsible with Data Protection within MFA, to the mail address dpo@mae.ro, respectively at the MFA controller headquarters, Aleea Alexandru 31, Sector 1, Bucharest, code 011822.

 

Complaint addressed to ANSPDCP:

In order to protect the rights provided by GDPR, without prejudice to any other administrative or judicial remedies, people whose personal data are subject to processing falling within the scope of this normative act may submit a complaint to ANSPDCP, according to the provisions of Art. 77 of the Regulation. Contact details of ANSPDCP are as follows:

- Address: 28–30 G-ral. Gheorghe Magheru Blvd, Sector 1, zip code 010336, Bucharest, Romania;

- E-mail: anspdcp@dataprotection.ro;

- Phone: +40.318.059.211;

- Fax: +40.318.059.602;

- Web address: http://www.dataprotection.ro/.

 

Templates of complaints to be addressed to ANSPDCP can be downloaded here: http://www.dataprotection.ro/?page=Modele_de_plangere.

 

 

Complaint addressed to the court:

 

According to art. 78 and 79 of GDPR, each natural or legal entity has the right to pursue an effective judicial remedy against a supervisory authority and against a controller or an empowered person.