‘controller’ means the ECB, and in particular the organisational unit of the ECB, which, alone or jointly with others, determines the purposes and means of the processing of personal data;

‘data protection coordinator’ means an ECB member of staff who assists the controller and the DPO in fulfilling their tasks and responsibilities pursuant to Regulation (EU) 2018/1725 and this Decision;

‘data subject’ means an identified or identifiable natural person; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

‘processing’ means processing as defined in point (3) of Article 3 of Regulation (EU) 2018/1725;

‘Union institutions and bodies’ means Union institutions and bodies as defined in point (10) of Article 3 of Regulation (EU) 2018/1725;

‘processor’ means processor as defined in point (12) of Article 3 of Regulation (EU) 2018/1725;

‘personal data’ means personal data as defined in point (1) of Article 3 of Regulation (EU) 2018/1725;

‘consent’ means consent as defined in point (15) of Article 3 of Regulation (EU) 2018/1725.