Information on the processing of personal data
The Ministry of Foreign and European Affairs of the Slovak Republic, hereinafter referred to as the "MFEA SR", processes personal data of natural persons in the implementation of its legal obligations and specific tasks. MFEA SR respects and fulfils its obligations in relation to personal data protection resulting primarily from Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation), hereinafter referred to as the “General Data Protection Regulation”, and Act No. 18/2018 Coll. on Personal Data Protection and and amending and supplementing certain Acts, hereinafter referred to as the “Personal Data Protection Act”.
Basic terms
Controller is anyone who, alone or jointly with others, determines the purposes and means of the processing of personal data and processes personal data in its own name.
Data subject is any natural person whose personal data are processed.
Data protection officer is a person designated by the controller or the processor who performs tasks under the General Data Protection Regulation and the Personal Data Protection Act.
All other terms used in this document are defined in the General Data Protection Regulation.
Identification and contact details of the controller
Business name: Ministry of Foreign and European Affairs of the Slovak Republic
Registered office: Hlboká cesta 2, 833 36 Bratislava, Slovak Republic
Company ID: 00699021
Contact details: +421 2 5978 1111, +421 90607 2222, info@mzv.sk
Data Protection Officer
For the purpose of supervising the processing of personal data, MFEA SR has authorized a data protection officer who can be contacted by e-mail at ochranaudajov@mzv.sk, by phone at +421 2 5978 2024, +421 2 5978 2025 or by post at the controller's address.
Purposes and legal basis for the processing of personal data
MFEA SR has an adequate legal basis for each purpose of personal data processing as follows:
a) processing of personal data for the purpose of taking measures before the conclusion of a contract and/or performance of a contract, on the legal basis provided for in point (b) of Article 6(1) of the General Data Protection Regulation in connection with point (b) of Section 13(1) of the Personal Data Protection Act;
b) processing of personal data for the purpose of compliance with a legal obligation of the controller, on the legal basis provided for in point (c) of Article 6(1) of the General Data Protection Regulation in connection with point (c) of Section 13(1) of the Personal Data Protection Act and in a special regulation or in an international treaty to which the Slovak Republic is subject;
c) processing of personal data for the purpose of protection of the vital interests of the data subject, on the legal basis provided for in point (d) of Article 6(1) of the General Data Protection Regulation in connection with point (d) of Section 13(1) of the Personal Data Protection Act;
d) processing of personal data for the purpose of performing tasks carried out in the public interest or in the exercise of official authority vested in the controller, on the legal basis provided for in point (e) of Article 6(1) of the General Data Protection Regulation in connection with point (e) of Section 13(1) of the Personal Data Protection Act;
e) processing of personal data for the purpose of providing information on activities and events organized by embassies of the Slovak Republic, on the legal basis provided for in point (a) of Article 6(1) of the General Data Protection Regulation in connection with point (a) of Section 13(1) of the Personal Data Protection Act.
Scope of personal data processed
MFEA SR processes personal data only to the extent of the applicable legal regulations or the purpose of their processing, in accordance with the principle of data minimisation pursuant to point (c) of Article 5(1) of the General Data Protection Regulation in connection with Section 8 of the Personal Data Protection Act.
Source of personal data
MFEA SR processes personal data obtained directly from the data subject or from other public authorities under special regulations or international treaties to which the Slovak Republic is subject.
Information on the obligation to provide personal data
The data subject is obliged to provide personal data if the processing of personal data is necessary in order to fulfil the legal obligation of the controller. If the data subject does not provide personal data, the controller is not able to fulfil its obligations and legal requirements.
The data subject is also obliged to provide personal data in cases where the provision is necessary for the performance of contractual or pre-contractual relationships. If the data subject does not provide the personal data necessary for the conclusion of a contract or for its performance, it will prevent the establishment of a contractual relationship.
Retention period of personal data
Personal data are kept in a form which permits identification of the data subject for no longer than is necessary for the purpose for which the personal data are processed in accordance with the approved Registration Plan and the Registration Rules of MFEA SR. Upon completion of the purpose of processing, personal data may only be further processed for archiving, scientific, research or statistical purposes, if it is in accordance with a special regulation.
Category of recipients
Personal data processed by MFEA SR may be provided to recipients with the status of independent controllers and to whom MFEA SR is obliged or entitled to provide personal data under a special regulation, an international treaty to which the Slovak Republic is subject or the consent of the data subject.
Cross-border transfer and data transfer to third countries
Within the Member States of the European Union and the countries of the European Economic Area, there is a free movement of personal data. The transfer of personal data from the territory of the Slovak Republic to individual Slovak Embassies abroad is not considered a cross-border transfer of personal data. With regard to the activities of the controller under Act No. 575/2001 Coll. on the organization of activities of the Government and the organization of the central state administration, personal data may be the subject of cross-border transfer to third countries, including mainly states where Slovak Embassies are located and states with which the Slovak Republic has concluded international agreements and treaties. If certain conditions are met, MFEA SR may also transfer personal data to another international organization. Personal data may only be transferred outside the EU if the conditions of the requirements arising from the General Data Protection Regulation are met.
Automated decision-making, including profiling
MFEA SR does not perform automated decision-making, including profiling.
Rights of the data subject
The data subject has the following rights:
a) The right to obtain confirmation from MFEA SR whether its personal data are processed in the information systems of MFEA SR; if MFEA SR processes personal data of the data subject, the data subject has the right to obtain in particular information on:
- the purpose of processing,
- the category of personal data concerned,
- recipients or categories of recipients to whom personal data have been provided,
- the retention period,
- the rights of the data subject,
- the source of personal data if they were not obtained directly from the data subject,
- the existence of automated individual decision-making, including profiling,
- appropriate safeguards regarding the cross-border transfer.
b) The right to require rectification of data concerning him or her if they are inaccurate, and the right to have incomplete personal data completed.
c) The right to erasure of data (liquidation of data) of the data subject, including the right to be forgotten, if the purpose of the processing has been completed or the data subject withdrawn the consent, or if the data subject objected to the processing, or in the case of unlawful processing under Art. 17 of the General Data Protection Regulation.
d) The right to restriction of processing under Art. 18 of the General Data Protection Regulation.
e) The right to data portability in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller if it is technically viable and if the processing of personal data is based on consent of the data subject or on a contract, or if the processing is carried out by automated means.
f) The right to object to the processing of personal data if they are processed for the purpose of performing a task carried out in the public interest or for the purpose of the legally protected interest of the controller.
g) The right not to be subject to a decision based solely on automated processing of personal data, including profiling, under Art. 22 of the General Data Protection Regulation.
h) If the processing of personal data is based on the consent of the data subject, the data subject shall have the right to withdraw this consent at any time, in which case the withdrawal of consent shall not affect the processing of personal data during the term of the consent.
Ways to exercise rights of the data subject
The data subject may exercise his or her rights by submitting a request as follows:
a) by sending an email (request) to ochranaudajov@mzv.sk, while the electronic exercise of rights applies in particular to cases where personal data were provided electronically and communication with the data subject took place mainly in electronic form;
b) electronically (submitting request) via electronic mailbox and eID;
c) in documentary form by registered mail to the address of MFEA ST.
Procedure for handling a request for the exercise of rights of the data subject
MFEA SR may request the data subject to provide additional information necessary to verify the identity of the data subject. Request are processed free of charge, unless they are demonstrably unfounded or inappropriate, especially due to their recurring nature, in which case MFEA SR may request a reasonable fee or refuse to act on the basis of the request.
MFEA SR shall inform the data subject of the way of handling the request without delay, but no later than within one month from the date of receipt of the request. In justified cases, this period may be extended by additional two months, even repeatedly. The data subject shall be informed of any extension of the period, together with the reasons for the delay.
MFEA SR responds to the request in writing in documentary or electronic form, usually by the same means used for the delivery of the request. If MFEA SR has not handled the request and has not taken measures on the basis of the request of the data subject, it shall inform the data subject of this fact and the reasons for non-action without delay, no later than one month from the delivery of the request. At the same time, it shall inform the data subject of the reasons for non-action, the possibility to lodge a complaint with a supervisory authority and the possibility the possibility of a judicial remedy pursuant to the General Data Protection Regulation, or the possibility lodge a complaint to initiate proceedings on the protection of personal data in accordance with the Personal Data Protection Act.
MFEA SR shall notify each recipient to whom it has provided personal data of any rectification, deletion or restriction of the processing of personal data, unless this proves impossible or requires disproportionate efforts. The controller shall inform the data subject of these recipients if the data subject requests so.
Contact details of the supervisory authority
Office for Personal Data Protection of the Slovak Republic, Hraničná 12, 820 07 Bratislava.
Information on individual processing agendas
Cookies statement
In order to ensure the proper functioning of the website (www.mzv.sk) and increase user comfort, we use cookies. A cookie is a small file that is stored locally on your computer when browsing the website. For example, when you visit the website on the same device, a cookie indicates that you are a repeat visitor. Cookies also allow us to analyse the use of our website.
We use two types of cookies on our website:
- Session cookies: Session cookies are only stored on your device until you close the browser. These cookies are necessary to ensure the functionality of the website and associated applications. If you disable these cookies, we will not be able to guarantee the correct operation of the website.
- Persistent cookies: We may use these cookies for faster and more convenient orientation on our website (e.g. easier and faster navigation). These cookies remain in the cookie storage of your browser for a longer period, depending on the selected Internet browser settings.
You can reject cookies in your browser settings or set the use of only some of them, depending on the type of browser. You can find the cookies settings in the most frequently used browsers at the following links:
• Chrome
• Firefox –
If you choose to reject cookies, you will not be able to use all the features of our portal. You can find the list of cookies with a detailed description of their use in the attached table (Cookies.pdf)
Google analytics - Terms of Use
On the website, we use Google Analytics provided by Google, Inc.
