Video surveillance management

Context

The University of Namur uses video surveillance cameras to secure its infrastructure. The use of cameras involves the processing of personal data. With regard to the use of cameras in the context of car park control, please refer to the notice relating the management of parkings at UNamur.

Categories of personal data processed and purposes of use

For the purposes of this activity, the University of Namur processes data in the following categories:

  • Data linked to the recording of video surveillance images [category grouping the following type of data: images and metadata of recordings, dates, etc.].
  • Data relating to inspections [category grouping the following types of data: data relating to the circumstances of an inspection, dates, location, purpose, facts recorded, etc.].

 

 This data is used for :

  • Enabeling to ensure the security of the university infrastructure and the protection of university property.
  • Where necessary, to gather evidence of incivilities, offences or damage, and to seek out and identify the perpetrators, troublemakers, witnesses or victims.

Basis of lawfulness of data processing

The activity is carried out on the basis of a legitimate interest of the University (Article 6, 1, f) of the GDPR) which consists of enable to ensure the safety of property and persons. This covers the possibility of increasing security in certain parts of the University's infrastructure and protecting its property. The law of 21 March 2007 regulating the installation and use of surveillance cameras also allows images to be recorded for the purpose of gathering evidence of incivilities, offences or damage, and to search for and identify the perpetrators, public order offenders, witnesses or victims.

Categories of data subjects

The categories of persons whose data is processed for the purposes of the business are as follows:

  • People appearing in video surveillance images

Data sources

 The data included in the processing activity comes from the following source(s):

  • The data is generated by an activity carried out by the individual

Data recipients

 Data is processed solely by University staff and departments for the purposes of carrying out the activity. The internal recipients of the data mainly belong to the following categories:

  • University administrative staff
  • IT support staff
  • The staff of the department concerned
  • Line managers and university bodies in the event of an offence

 

External data recipients fall into the following categories:

  • Custodial service staff for the purposes of carrying out the services entrusted to this service by the University.
  •  Police and judicial authorities in the event of an offence

Processing characteristics

The retention period is determined on the basis of the need to retain the data for operational purposes in accordance with the purpose for which it is used.

For some cameras, no image recording is organised.

For cameras with associated image recording, the data is kept for 1 month from the time of recording. At the end of this period, the data is deleted. If the images cannot be used to provide evidence of an offence, damage or incivility, or cannot be used to identify a perpetrator, a public order offender, a witness or a victim, they may not be kept for more than one month.

Rights of the data subjects

The rights of data subjects are described on the https://www.unamur.be/en/privacy page. To exercise these rights, they can contact the Data Protection Officer (dpo@unamur.be).