Joining the BnL is dependent on providing the following information and supporting documents: surname, first name, date of birth, private address, e-mail address, and copy of an ID document or a digital signature. The BnL reserves the right to require provision of proof of residency and/or proof of enrolment at a secondary- or higher-education establishment approved by the State of Luxembourg.

This information (the “personal data”) is necessary to validate the registration and to open a personal reader account. A printed copy of the registration form is retained in the BnL archives. The registration period with the BnL is two years, unless extended. Twenty-four months after expiry of all the user’s enrolments with libraries in the bibnet.lu network, the personal data will be erased automatically. The loans history will be retained in an anonymised fashion for the statistical reporting to be given by the library. The personal data will be recorded in the “shared file of readers” of the integrated system for management of the network of Luxembourgish libraries bibnet.lu, which is jointly shared by the member libraries in the network. The list of member libraries can be viewed at www.bibnet.lu.

The username and password are common to all libraries in the bibnet.lu network where the user is registered or can join. The personal data is liable to be processed by a limited number of persons duly authorised and trained for the purposes set out below.

Personal data is gathered and processed for:

• Joining the BnL and updating the data on the reader account;
• Reservations for loans and for viewing documents at the library, and for reproduction of documents;
• Requests for international loans;
• Contacting the user for reservations, reminders and fines on loans;
• Use of IT tools provided by the BnL;
• Access to and viewing online resources provided for the user by the BnL;
• Preparation of anonymised statistics to improve the services offered by the BnL;
• Detection of frauds and abuses whilst using the digital resources provided for the user by the BnL;
• Managing requests under the right to access, to rectification, to object to processing and other rights in relation to personal data by the BnL;
• Subscribing to the BnL newsletter, managed with the assistance of the subcontractor Mailjet, Paris.

The Director of the BnL, under the authority of the Minister with Culture under their responsibilities, together with the other libraries in the bibnet.lu network, is the data controller under the EU’s GDPR Directive of 27 April 2016 (2016/679).

The user has a right of access to and a right of rectification of the personal data concerning him or her. Any modification to the personal data can be made directly at the reception desk at the BnL or online, via the reader account on the site www.a-z.lu.

The user has the right to unsubscribe from the newsletter via a link provided in each e-mail or by contacting the BnL. The retention period for the user’s e-mail address in the newsletter database shall not exceed that of their subscription.

The user similarly has the right to withdraw their consent to inclusion of their personal data in the shared file of readers for the network bibnet.lu, to object to processing of their personal data, to request erasure of personal data, to request restriction of processing, and to request portability of the personal data relating to them.

The user also has the option to lodge a complaint, in the event of failure(s) to respect the applicable rules with regard to protection of personal data, to a supervisory body such as the Luxembourg Data Protection Commission (Commission nationale pour la protection des données, CNPD).

In certain cases envisaged under Directive (EU) 2016/679, the BnL can contest these rights. Deleting personal data causes the user to lose access to the loans service and to the IT services of the BnL.

For further information on the contents or the manner of exercising rights, or of exercising the said rights, the user can contact the BnL via e-mail or by writing to the following postal address.