The Ministry for the Environment, Energy and Regeneration of the grand harbor
This privacy policy (hereinafter referred to as the “Policy”) sets out information about how the Ministry for the Environment, Energy and Regeneration of the grand harbor (hereinafter referred to as the “Ministry”, “We” or “Our”) processes and uses Personal Data pertaining to Our Visitors and/or Users. We are firmly committed to respecting individuals’ privacy and confidentiality of their Personal Data. In fact, We shall not collect any personal information about you as a Visitor unless you provide it voluntarily.
All Personal Data shall be processed in accordance with the Data Protection Act (Chapter 586 of the Laws of Malta) (hereinafter referred to as the “Act”) and subsidiary legislations thereunder and the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as the “General Data Protection Regulation” or “GDPR”).
“Application” or “App” refers to the BeEfficient Application, which App has as its primary objective the raising of awareness on water conservation.
“Controller” or “Data Controller” means any natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the Processing of Personal Data.
“Data subject” refers to any living person (natural person) whose Personal Data is being collected, held or processed.
“Minors” refers to natural persons below the age of eighteen (18) years.
“Personal Data” or “Personal Information” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Processor” or “Data Processor” means a natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller.
“Processing” means any operation/s which is/are performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“User” refers to any individual who opts to create a personal profile on the App.
“Visitor” refers to any individual who downloads and visits the App and also includes those who may not be registered as Users.
The Data Controller responsible for the Processing of Personal Data of Data Subjects for the purposes outlined in this Policy is the Ministry for the Environment, Energy and Regeneration of the grand harbor located at Barriera Wharf, Valletta Malta.
Personal Data shall be collected solely from those individuals who elect to create a personal profile on the App. To create a personal profile, the prospective User shall input the following Personal Data:
– Name and surname
– Locality (optional)
– Age (NB: only individuals aged twenty-five (25) years or over will be able to create a personal profile)
– Type of household
– Number of household users
– E-mail address
All information provided in the Contact Us/Feedback form will dealt-with with strict confidence according to law.
We shall not process the Personal Data of individuals below the age of twenty-five (25) years.
In the event that We become aware of any Personal Data collected from a Minor without parental consent, the necessary steps will be taken to ensure that the said Personal Data is removed expeditiously and efficiently. Should the public be aware or believe that We may be holding any Personal Data collected with regards to a Minor without obtaining prior consent of the parents or legal guardian/s, kindly inform us as soon as possible by sending an email on dpo.meer@gov.mt.
Your Personal Data may be collected in a number of ways including:
1. Registration
We shall collect Personal Data in the process of submission of a registration form to create a personal profile on the App.
2. Contact Us/Feedback
When using the App, Data Subjects may be required to provide their contact details for communication purposes. All information provided in the Contact Us/Feedback form will be processed following your provision of consent.
3. IP Address and location
The web server keeps limited logs about IP addresses or the location of your computer on the Internet, for systems administration and troubleshooting purposes. We do not use IP address logs to track your session or your behavior on our site.
The following are the legal bases for Processing Personal Data in relation to the App:
– when the Data Subject has given consent to the Processing of his/her personal data to create his/her profile and make use of the App;
– when We have a legitimate interest to process the data, except where such interests are overridden by the interests or fundamental rights and freedoms of the Data Subject which require protection of Personal Data.
There may be instances where We have to share your Personal Data with various categories of persons. We may disclose your personal data with our employees, officers and professional advisors. Your Personal Data may be shared with other government departments, agencies and public bodies. It may also be shared with Our technology suppliers, for example Our hosting provider. However, We shall not:
• Sell or rent your data to third parties
• Share your data with third parties for marketing purposes
When We share your Personal Data with third parties, We make sure that such parties process this Personal Data in a safe and secure manner.
We will also share your data if we are required to do so by law.
Personal data shall not be transferred to third parties located outside the EU or European Economic Area (EEA) unless specifically instructed to do so in writing by the Data Subject or mandated by provision of law or ordered by a duly empowered competent body.
The rights afforded to yourself in connection to your Personal Data are the following:
• The Right to Access Personal Data – the Data Subject may send Us a request to access all Personal Data that the Ministry holds in his/her respect. To avail of this right, kindly send an e-mail to dpo.meer@gov.mt. We will do Our best to attend to the Data Subject’s request within one (1) month. In case of more complex requests, the timeframe will be extended by a further one (1) month. Should the Data Subject disagree with Our judgement, s/he can complain to the Information and Data Protection Commissioner (hereinafter referred to as the “IDPC”) on https://idpc.org.mt/en/Pages/contact/complaints.aspx
• The Right to Rectification – the Data Subject’s right to request that any inaccurate or incomplete Personal Data held by the Ministry is corrected accordingly. In such instances, kindly send an email to dpo.meer@gov.mt;
• The Right to Erasure (“Right to be Forgotten”) – the Data Subject’s right to request that his/her Personal Data is deleted. On a general note, We will comply with the Data Subject’s request in this regard. However, We may have the necessity not to comply with the request if retention of the data is required for us to be compliant with a legal obligation and/or such data would be required by Us to exercise or defend any legal claims.
• The Right to be Informed – the Data Subject has the right to be given clear information regarding how his/her Personal Data is processed. We do this by means of this Policy which will be duly revised from time to time and by means of any future communications directly with the Data Subject on a case-by-case basis.
• Right to Object – the Data Subject may object regarding his/her Personal Data being processed including when such Processing is based on legitimate interest and the right to object to his/her Personal Data being processed for direct marketing purposes;
• Right to Data Portability – the Data Subject has the right to put forward a request asking Us to provide him/her with certain personal data which s/he had provided the Ministry in a structured, commonly used and machine-readable format. When technically feasible, the Data Subject may also request that his/her Personal Data be transferred to a third-party controller of his/her choice;
• The Right to Withdraw Consent – the Data Subject can also withdraw any consent given at any time; and
• The Right to Lodge a Complaint – the Data Subject has the right to lodge a complaint against any Personal Data breach by communicating such breach to the IDPC. The IDPC may be notified by filling in the complaint form available at https://idpc.org.mt/en/Pages/contact/complaints.aspx
The Controller shall only retain the Users’ Personal Data for such time that the User keeps his or her profile on the App. The Personal Data of the Users shall be automatically deleted from the server once the respective User deletes his/her profile from the App.
Cookies are small pieces of data that the site transfers to the user’s computer hard drive when the user visits the website. We hereby confirm that this App does not make use of cookies.
We are committed to doing all that we can to keep your data secure. We undertake to put in Our best efforts to keep any disclosed Personal Information secure by implementing the appropriate technical and organizational measures with the aim of protecting such Personal Data. For example, We protect your data using encryption. We also make sure that any third parties that We deal with keep all personal data they process on our behalf secure by entering into Data Processing Agreement setting out the standards that such parties must adhere to whilst processing Personal Data.
Notwithstanding Our efforts to protect Personal Data, no system can guarantee that Personal Data will not be compromised at any point.
The Ministry undertakes to hold accurate and where necessary up-to-date Personal Data. In view of this, Data Subjects are asked to keep Us informed of any changes that might occur to Personal Data throughout the previously stipulated data retention timeframes.
We may update the Policy from time to time in order to reflect changes to Our practices or for other operational, legal or regulatory reasons.
If you have any concerns with regards to Our privacy methods and processes, please contact Our Data Protection Officer by email on dpo.meer@gov.mt
In case you are not satisfied with Our response, you may contact the Information and Data Protection Commissioner of Level 2, Airways House, High Street, Sliema SLM 1549 or by visiting their website at https://idpc.org.mt.
Last Updated: 12th February 2024
