Legal Notice - ScanMed RFC: From North to South

Legal notice / Impressum:

Verein für den Güterverkehrskorridor Skandinavien-Mittelmeer (Association of the Scandinavian Mediterranean Rail Freight Corridor)

Seat of the Association

c/o ÖBB-Infrastruktur AG
Praterstern 4,
AT-1020 Wien

Members:

Banedanmark
Trafikverket
DB Netz AG
RFI
Banenor
ÖBB-Infrastruktur AG
Øresundsbron

Register Court:

Register Number [ZVR-Zahl]:

ZVR-014580860

VAT/UID-Nr.:

ATU71943105

Steering Board Members [Vereinsvorstand]:

President

Vice-President

Managing Director

Authorized persons to represent the Association towards third parties:

President

Vice-President

Managing Director

The information on this site is subject to a privacy policy, disclaimer, and copyright notice

1 – PRIVACY POLICY

Introduction

Your privacy and trust are important to us. This Privacy Notice (“Notice”) provides important information about how the Association of the Scandinavian – Mediterranean Rail Freight Corridor (“ScanMed RFC,” “we,” or “us”) handle personal information. This Notice applies to any ScanMed RFC website or service that links to it (collectively, our “Services”). It is based on the terminology used by the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (Bundesgesetz über den Schutz personenbezogener Daten (Datenschutzgesetz 2000 – DSG 2000).

We want to be clear about our privacy practices so that you can make informed choices about the use of your information. Please read this Notice carefully and contact our Data Protection Officer if you have any questions about our privacy practices or your personal information choices.

As it is a living document we may revise this Notice from time-to-time, and your comments and contributions are welcome. The revised version will apply from the date of the publication of the revised notice on our website. Please check the ScanMed RFC website regularly to ensure you are familiar with the current version.

This Notice was last updated on September 3, 2024.

Personal information

ScanMed RFC is committed to the responsible handling and protection of personal information. Personal information means any information relating to an identified or identifiable natural person.
We collect, use, disclose and store personal information when needed to provide our Services and for our operational and business purposes as described in this Notice.

The types of personal information we collect

We collect personal information from you, for example, if you register on our SharePoint, register for an event (e.g. meeting, conference, etc.), request information, or request user support. We may ask you to provide information such as your name, email address, and phone number. In addition, as we offer strictly professional railway-related services along our Corridor, we may ask information about the name and the type of your employer (e.g. infrastructure manager (IM), railway undertaking (RU), terminal operator, etc.). Not all the personal information ScanMed RFC holds about you will always come directly from you. It may, for example, come from our members, your employer (e.g. IM, RU, terminal), other organizations, bodies and authorities we are in cooperation with (associations from the railway sector, the European Commission, etc.).

We may provide the possibility to upload your portrait picture on our website. We may also need to publish your pictures taken on some of our events. You will be explicitly asked to consent to this and with the submission of your registration we consider you agree and give an explicit consent on the above usage of your pictures on our website and social media channels.

For the sole purpose of taking coherent minutes of meetings we may record some of our Working Groups’ and governance bodies’ (i.e. Management Board and PIMs) meetings when they are held online (e.g. via Microsoft Teams) or in hybrid form (e.g. both online and in person). The recording will be subject to the participants’ explicit prior consent and kept on our SharePoint until the minutes of the meeting are approved. The participants concerned may request to access the recording.

We do not collect and process any data that may be considered sensitive personal information (e.g. racial/ethnic origin, political opinions, religious beliefs, trade union membership, physical or mental health, other medical information including biometric and genetic data, sexual life, etc.).

How we use personal information

We process personal information for these Service- and business-related purposes:

SharePoint account and administration: We use personal information such as your name, email address, phone number, and information about your employer to give you access to our SharePoint repository, provide technical and customer support, verify your identity, and send important information.
Events: We use personal information to deliver event communications to you across various platforms, such as email, telephone, and online.
Surveys and polls: If you choose to participate in a survey or poll, any personal information you provide will only be used internally and not for marketing or market research purposes.
Content management: Some of our Services provide content management and document storage. Documents and data stored by us on SharePoint may contain personal information. Our access to this information is limited to the ScanMed RFC Team, particularly the Administration & Communication Officer, with a critical business reason, such as technical support or invoicing.
Legal obligations: We may be required to use and retain personal information for legal and compliance reasons (e.g. rail regulatory body inquiry). We may also use personal information to meet our internal and external audit requirements, information security purposes, and as we otherwise believe to be necessary or appropriate: (a) under applicable laws in Austria; (b) to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, which may include such authorities outside your country of residence; (c) to enforce our terms and conditions; and (d) to protect our rights, privacy, safety, or property, or those of other persons.

When we share personal information

ScanMed RFC shares or discloses personal information when necessary to provide Services or conduct our business operations as described below. When we share personal information, we do so in accordance with data privacy and security requirements. Below are the parties with whom we may share personal information and why.

Within the ScanMed RFC Team: Personal information will be made available to ScanMed RFC staff if necessary for the provision of Services, invoicing, customer and technical support, and project management, for instance. All our employees are required to follow our data privacy and security policies when handling personal information.
Our members: We partner with our members to manage projects, events and meetings (e.g. governance and Working Group meetings, etc.). As part of these arrangements, we and our members may collect and share information about you.
Our business partners: We occasionally partner with other organizations to manage projects, or to host events and conferences. As part of these arrangements, you may be a partner of both ScanMed RFC and our partners, and we and our partners may collect and share information about you. ScanMed RFC will handle personal information in accordance with this Notice, and we encourage you to review the privacy Notices of our partners to learn more about how they collect, use, and share personal information.
Our third-party Working Groups and project leaders: We have chairpersons and project and task force leaders from our members and third parties. All of them are required to follow our data privacy and security policies when handling personal information processed by ScanMed RFC they have been entrusted with.
Our third-party IT service providers: We partner with and are supported by IT service providers around Europe. Personal information will be made available to these parties only when necessary to fulfil the services they provide to us, such as software, system, and platform support; cloud hosting services; data analytics. Our third-party service providers are not permitted to share or use personal information we make available to them for any other purpose than to provide services to us.
Third parties for legal reasons: We will share personal information when we believe it is required, such as:
- To comply with legal obligations and respond to requests from government agencies, including law enforcement and other public authorities.
- To protect our rights, users, systems, and Services.

Where we process and store information

All your personal data is collected and stored on secure online servers.

How we secure personal information

ScanMed RFC takes data security seriously, and we use appropriate technologies and procedures to protect personal information. Our information security policies and procedures are closely aligned with widely accepted international standards and are reviewed regularly and updated as necessary to meet our business needs, changes in technology, and regulatory requirements.

How long we keep personal information

We retain personal information for as long as we reasonably require it for legal or business purposes. In determining data retention periods, ScanMed RFC takes into consideration Austrian laws, contractual obligations, and the expectations and requirements of our members and users. When we no longer need personal information, we securely delete or destroy it.

Your right to access and correct your personal information

In principle, you have the rights to information, access, correction, deletion, restriction, data portability and objection regarding your personal data. We respect your rights, and we will respond to your requests for information and, where applicable, will correct, amend, or delete your personal information.

Access to personal information: If you request access to your personal information, we will comply, subject to any relevant legal requirements, including identity verification procedures. Before providing data to you, we will ask for proof of identity and sufficient information about your interaction with us so that we can locate any relevant data for you in all our IT systems.
Correction and deletion: You have the right to correct or amend your personal information if it is inaccurate or requires updating. You may also have the right to request deletion of your personal information; however, this is not always possible due to legal requirements and other obligations and factors.
Filing a complaint: If you are not satisfied with how ScanMed RFC manages your personal data, you have the right to make a complaint to a data protection regulator in Austria.

Österreichische Datenschutzbehörde

Barichgasse 40-42
1030 Wien
Tel. +43 1 52152-0
e-mail: dsb@dsb.gv.at
website: https://www.dsb.gv.at/

Connecting via social networks

Our Services do not include social networking features, so you cannot use your own social networking logins from, for example, Facebook or LinkedIn, to log into our IT systems.

Links and connections to third-party services

In general, our Services do not contain links to third-party apps, services, tools, and websites that are not affiliated with, controlled, or managed by us. However, if this is the case the privacy practices of these third parties will be governed by the parties’ own Privacy Notices (e.g. Common Interface installed on license holder’s premises). We are not responsible for the security or privacy of any information collected by these third parties. You should review the privacy Notices or policies applicable to these third-party services.

Children’s privacy

RNE provides information solutions for professionals only, and our Services are not aimed in whatever way at children.

How to contact us

We understand that you may have questions or concerns about this Notice or our privacy practices. Please feel free to contact us at gabriele.melindo@scanmedfreight.eu (Data Protection Officer).

2 – DISCLAIMER

ScanMed RFC maintains its website, SharePoint, and social media accounts to enhance public access to information about its activities and initiatives in general. Our goal is to keep this information timely and accurate. If errors are brought to our attention, we will try to correct them.

ScanMed RFC reserves the right not to be responsible or liable for the topicality, correctness, completeness or quality of the information provided. Liability claims regarding damage caused by using any information provided, including any kind of information which is incomplete or incorrect, will therefore be rejected. We will not be liable in respect of any business losses, any loss of or damage to profits, income, revenue, or anticipated savings, any loss of production, any loss of management time or office time, any loss of business, contracts, commercial opportunities or goodwill, any loss or corruption of any data, any special, indirect or consequential loss or damage, any losses arising out of a force major event. You accept that ScanMed RFC is an association under Austrian law and there is a legitimate interest in limiting the liability of its members, managers and employees. Having regard to that interest, you agree that you will not bring any claim personally against any ScanMed RFC managers or employees in respect of any losses that you may suffer in connection with the downloads from our website.

All documents on ScanMed RFC’s website are not-binding and without obligation. Nothing on it should be interpret or treated as legal advice. If you need specific advice, you should always consult a suitably qualified professional.

Our website contains links to other independent websites upon which ScanMed RFC exercises no control. Such links do not imply any endorsement or responsibility for the content or use of that website. The author is not responsible for any contents linked or referred to from his pages. If any damage occurs while using information presented there, only the author of the respective pages might be liable, not the one who has linked to these pages. Furthermore, the author is not liable for any postings or messages published somehow by unauthorized users or intruders on his websites.

Parts of the websites or the complete publication including all materials and information might be extended, updated, changed or partly or completely deleted by ScanMed RFC without separate announcement.

3 – COPYRIGHT NOTICE

Scandinavian Mediterranean Rail Freight Corridor Association owns the copyright in this website and the material on this website (from now on referred to as “ScanMed RFC”)

Reproduction is authorized, provided the source is acknowledged, save where otherwise stated, and only for information purposes and not for commercial purposes. Any duplication or use of objects such as images, diagrams, sounds or texts in other electronic or printed publications is permitted only with the explicit reference to ScanMed RFC as author and holder of the copyright.

For commercial uses of the materials downloaded or copied from this website, written authorization by ScanMed RFC is required. In these cases, please contact ScanMed RFC through our contact page.

4 – FINAL PROVISIONS

This disclaimer is to be regarded as part of the internet publication from which you were referred. If sections or individual terms of this statement are not legal or correct, the content or validity of the other parts remains unaffected by this fact.

We may revise this disclaimer without prior notice. The revised disclaimer will apply to the use of our website from the date of publication of the revised notice on the website. You are encouraged to check this page regularly so that any changes or updates are noted.

This notice will be governed by and construed in accordance with Austrian law. Any disputes relating to this disclaimer will be subject to the exclusive jurisdiction of the courts of Austria.

Date of last revision: 03/09/2024