2025 Congress – Bucharest Dental Council (CMSB)
This Privacy Policy has been drawn up following the provisions of Regulation (EU) 2016/679 on the protection of natural persons concerning the processing of personal data (General Data Protection Regulation – GDPR), and reflects the firm commitment of the Bucharest Dental Council (CMSB) to ensure the protection of the fundamental rights and freedoms of participants in the 2025 Congress.
Through this policy, we assume responsibility as data controllers and guarantee that any data processing is carried out lawfully, fairly, transparently, and in a manner that ensures data integrity and confidentiality.
CMSB uses the personal data it collects strictly for the purposes necessary for the efficient organisation and conduct of the 2025 Congress. These purposes include, but are not limited to:
Registering participants and facilitating their access to the event;
Issuing certificates of participation and/or professional accreditations;
Logistical and administrative communication (emails, notifications);
Managing payments and financial obligations related to participation;
Fulfilling legal requirements in terms of taxation and professional reporting.
As part of the Congress-related processes, CMSB may collect and process the following categories of data:
Identification data: first name, last name, personal identification number (CNP);
Contact data: email address, telephone number;
Professional data: position, affiliated institution, specialisation, CMS identification code;
Financial data: transaction information, payment methods;
Participation data: attendance at sessions, points obtained, certificates issued.
Data processing is based on one or more of the following legal bases:
The explicit consent of the data subject, in particular for photography, filming, or marketing;
The performance of a contract, namely the obligations arising from participation in the Congress;
Legal obligations in the field of accounting, taxation, and professional records.
Participants enjoy all rights conferred by the GDPR, including:
The right to access their data;
The right to rectify inaccurate or incomplete information;
The right to erasure of data (“right to be forgotten”), to the extent that retention is not required by law;
The right to restrict processing;
The right to data portability to another controller;
The right to object to certain types of processing (e.g., direct marketing);
The right to withdraw consent, without affecting the lawfulness of previous processing;
The right to complain to the National Supervisory Authority for Personal Data Processing – www.dataprotection.ro.
Personal data will not be disclosed to third parties, except in strictly necessary situations and under legal provisions:
Service providers (e.g., registration platforms, payment processors, IT services);
Public authorities, to the extent that there are legal reporting obligations;
CMSB contractual partners, to the extent necessary for the conduct of the Congress.
All third parties involved provide adequate guarantees regarding data protection and are contractually obliged to comply with GDPR rules. Data will not be transferred outside the European Economic Area.
CMSB adopts rigorous technical and organisational measures to ensure data security, including:
Encryption and authentication protocols;
Controlled access limited to authorised personnel only;
Automated backup and restoration systems;
Periodic risk assessments and vulnerability testing;
Staff training on confidentiality and data protection.
Personal data will be stored for no longer than is necessary to achieve the purposes for which it was collected, for a maximum period of 5 years from the end of the Congress. However, this period may be extended if legal obligations (e.g., tax) require it.
Photographs and/or video recordings may be taken during the event to promote the Congress. Participants will be informed in advance and asked for their consent at the time of recording.
To exercise your rights or make any request regarding data protection, you can contact the Data Protection Officer (DPO):
Name: Roxana Pavel
Email: roxana.pavel@cmsb.ro
Phone: +4 0768 317 140
This Policy may be amended periodically as a result of legislative or operational updates. Updated versions will be available on the official website www.congrescmsb.ro and, where applicable, will be communicated to participants by email.
