Last updated: 10 October 2025

1) Data Controller

2) Personal Data We Collect

• Identification data: first name, last name, email address, phone number.
• Event-related data: registration, attendance, badge details, submitted abstracts (titles, authors, content), optional logistics preferences (e.g., dietary, accessibility), if provided.
• Communication data: information you send via our forms or email (requests, feedback, attachments).
• Technical & browsing data: IP address, device/browser info, logs, cookies/trackers (see “Cookies & trackers”).

3) Purposes & Legal Bases

• Respond to enquiries sent via the contact form. Legal basis: legitimate interest or steps prior to a contract.
• Manage registrations and event logistics (participants, speakers, programme, badges). Legal basis: contract performance.
• Abstracts & scientific programme management (submission, review, publication in the programme and/or book of abstracts). Legal basis: contract performance / legitimate interest; consent where required.
• Send newsletters or updates if you have opted in. Legal basis: consent (you may withdraw at any time).
• Site improvement & audience statistics. Legal basis: legitimate interest and/or consent for analytics cookies, as applicable.
• Compliance with legal obligations (e.g., accounting, tax). Legal basis: legal obligation.

4) Data Recipients

Access is restricted to authorised ENEA personnel and, where necessary:

• Processors acting on our behalf (e.g., hosting, maintenance, registration platforms, abstract management tools, emailing services).
• Public authorities where required by law or regulation.

We never sell your personal data.

5) Retention Periods

• Contact requests: up to 3 years after the last interaction.
• Registration/participation data: for the duration of the event, then up to 5 years for accounting/legal purposes.
• Cookies/trackers: up to 13 months for cookies subject to consent, then deletion or anonymisation.

6) Cookies & Trackers

The website may use:

• Strictly necessary cookies (site operation and security).
• Audience measurement cookies (e.g., analytics), subject to your consent where required.
• Third-party cookies (e.g., embedded videos, social networks), subject to your consent where required.

On your first visit, a banner allows you to accept or refuse non-essential cookies. You can change your preferences at any time via the banner (when available) or your browser settings.

7) International Transfers

Data are primarily hosted within the European Union (e.g., EU-based hosting). If any processors transfer data outside the EEA (for instance, certain analytics or email providers), we ensure that appropriate safeguards are in place (e.g., European Commission Standard Contractual Clauses), or an applicable adequacy decision exists.

8) Your Rights

Under the GDPR and applicable data protection laws, you have the right to:

• Access your data;
• Rectify inaccurate or incomplete data;
• Erase data in certain cases (“right to be forgotten”);
• Restrict processing;
• Object to processing, including for direct marketing;
• Portability (receive your data in a structured, commonly used, machine-readable format);
• Withdraw consent at any time for processing based on consent.

To exercise your rights, please contact us. You also have the right to lodge a complaint with the CNIL (France).

9) Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction.

10) Updates to This Policy

We may update this Privacy Policy to reflect legal, technical, or organisational changes. The effective date is indicated at the top of this page.

---

See also: Legal Notice