General Personal Data Privacy Notice

Introduction

The International Centre for Settlement of Investment Disputes (“ICSID,” “we,” “us,” or “our”) value the privacy of your personal data. For purposes of carrying out its activities, ICSID processes personal data.  “Processing” includes collection, storage, use, transmission, disclosure or deletion.

This General Personal Data Privacy Notice (“Notice”) applies to the personal data that we process to maintain and provide ICSID-related information to users (“you”) of our website, https://icsid.worldbank.org (“Website”).  This includes personal data processed in relation to electronic newsletters and email alerts you have subscribed to through the Website.

This Notice applies to all personal data processed in relation to all activities carried out by ICSID, except for the administration of proceedings and events organized by ICSID. 

For purposes of this Notice, “personal data” means any information relating to an identified or identifiable individual.

This Notice describes the types of personal data processed by ICSID, who has access to it, and the Review and Redress Mechanisms available to Website users. We may issue specific data privacy notices for some activities supported by this Website.

This Notice is part of Terms and Conditions governing the access to and use of the Website.  By using the Website, you acknowledge that you have read and accepted this Notice.

ICSID’s Approach to Personal Data Protection

ICSID’s approach to personal data protection reflects the principles established in the WBG Privacy Policy, which applies to all personal data collected by ICSID on or after February 1, 2021.

It is underpinned by directives and procedures aimed at identifying and managing privacy risks effectively across ICSID.

ICSID has a dedicated Data Privacy Team, which is responsible for implementing the WBG Privacy Policy and ICSID Privacy Directives and Procedures throughout ICSID, as well as advising staff and monitoring compliance.

Principles Governing Processing of Personal Data by ICSID

The core of the WBG Privacy Policy is embodied in seven principles governing ICSID’s processing of personal data. The seven principles are summarized below:

  1. Legitimate, Fair and Transparent Processing:  Personal data shall be processed by ICSID for legitimate purposes in a fair and transparent manner.

  2. Purpose Limitation and Data Minimization: Personal data processed by ICSID for one purpose may not be further processed for another purpose, except if permissible in accordance with the WBG Privacy Policy, and only the personal data needed to accomplish that purpose should be processed.

  3. Data Accuracy: Personal data shall be processed as accurately as possible.

  4. Storage Limitation: Personal data shall be kept in a form which permits identification of individuals only so long as necessary for the fulfillment of the initial purpose or for permissible further processing.

  5. Security: ICSID shall use appropriate technical and organizational safeguards against unauthorized Processing and against accidental loss, destruction or damage.

  6. Transfers of Personal Data: Personal data shall only be transferred to third parties for legitimate purposes and with appropriate regard for the protection and confidentiality of the personal data transferred.

  7. Accountability and Review: Adopting documentation, processes, and procedures appropriate to implement and oversee compliance with the WBG Privacy Policy and ICSID Privacy Directives.

Information We Process

We process personal data through the use of the Website in two ways: when you provide the information to us, and through automated means from your interaction with the Website.

ICSID may also process your personal data received from external service providers performing services for ICSID. 

Information You Provide to ICSID

You provide personal data when you communicate with us through the Website, including when you:

  • Request ICSID services or publications;

  • Sign up for case-related information;

  • Subscribe to the ICSID newsletter;

  • Contact us (including via email) with questions or comments;

  • Maintain a profile in our Database of CVs of ICSID Arbitrators, Conciliators and ad hoc Committee Members;

  • Register for events, conferences or training courses;

  • Complete questionnaires or information requests;

  • Enroll in Young ICSID; or

  • Express an interest in working with us.

Depending on the circumstances, the categories of personal data that we may process include:

  • Basic identification data, such as first and family name, prefix or title;

  • Demographic data, such as your country of residence or gender;

  • Professional data, such as a job title, organization, CV, work experience, profile photo; and

  • Contact data, such as your email address, postal address and telephone number.

There is no obligation to provide any personal data to visit or use our Website. However, we may need your personal data for certain functions and features of the Website.  For example, we may ask you to submit a form to register for a conference or event, or to receive our electronic newsletter or communications to fulfil your request or order. By submitting any form through the Website or other automated means, you are authorizing us to process your personal data for the stated purpose.

If a function or feature requires your personal data, providing it is considered to be voluntary. You may request that we stop processing your personal data anytime.  For instance, if you opt out of receiving electronic communications from us by following the ‘unsubscribe’ instructions at the bottom of each email, or by contacting us at ICSIDSecretariat@worldbank.org, you will stop receiving such communications from us and the last processing of your personal data by us will be the secure deletion of your personal data from our records.    

Information We Process by Automated Means

When you browse our Website, we automatically process technical data about your visit, including (i) log information, such as the web pages visited, the time spent on each page or file, the date and time of the visit, and (ii) device and software information, such as your domain and IP address, the browser type and operating system. This information does not identify individual visitors. We use this data to improve the Website’s offerings and address system performance and security issues.  

Some sections of the Website use “cookies” and “web beacons” to enhance your browsing experience.  You can set your browser to accept or reject cookies, or notify you whenever a cookie is offered so that you can decide each time whether to accept it. To learn more about cookies, click here.

Purpose of Processing

As part of its services to its Member States and the public, ICSID seeks to promote greater awareness of the ICSID dispute resolution processes and the development of international law on foreign investment. ICSID processes personal data only to the extent necessary to fulfill a precise purpose related to its mandate and activities as an international institution. On this Website, we communicate our work, fulfil our mandate to provide public access to official documents, and promote transparency by providing publications, statistical information, and other materials.  In addition, we handle personal data of visitors and subscribers to the Website for the purposes of providing requested services, responding to inquiries, organizing events, enhancing the performance of the Website, and maintaining its safety and security.

Sharing and Protection of Personal Data

ICSID does not sell or otherwise disclose personal data except as described in this Notice. Applicable rules and regulations may require the publication of limited personal data in ICSID official documents. Access to your personal data is generally limited to ICSID staff.  If this is necessary for the purposes mentioned above, we may share your personal data with the following categories of recipients:

  • World Bank Group business units to allow them to provide services for the technical maintenance of this Website and other related services.

  • External service providers performing services for ICSID, including for the purposes of web analytics and email communications of our newsletter and event notifications.  These providers are not authorized to process personal data for any other purpose than what is necessary to perform specific services for ICSID. We require our partners and service providers, both within the World Bank Group and externally, to appropriately safeguard the confidentiality and security of personal data they process on ICSID’s behalf.

Third Party Websites

This Website contains links to external websites of other unaffiliated organizations and social media platforms such as X (formerly Twitter), YouTube, LinkedIn and SoundCloud.  Once you leave our Website, including by using such links, this Notice no longer applies. ICSID is not responsible for the data privacy practices or content of those websites and platforms.  We recommend reading their privacy notices.

How We Protect Your Personal Data

ICSID uses various technologies and appropriate organizational, technical, and administrative measures to safeguard personal data maintained in our systems and records from accidental loss, unauthorized access, damage, or unintended destruction.

How Long We Keep the Personal Data

We retain personal data as long as necessary for the purposes set out in this Notice and in accordance with ICSID’s applicable records retention and disposition schedules.

Changes to This Privacy Notice

ICSID may amend or update this Notice periodically to reflect website improvements or changes to the WBG Data Privacy Policy. We will post an updated version of the Notice on our Website, but individual notifications will not be issued. This Notice is current as of the date at the bottom of this page.

Review and Redress Mechanisms

Under the WBG Data Privacy Policy and ICSID Data Privacy Directives, you may, subject to certain limitations and conditions: (i) request to review information regarding the processing of your personal data pursuant to this Notice; and (ii) seek redress if you believe that your personal data has been processed in violation of the WBG Data Privacy Policy or ICSID Data Privacy Directives. To request a review or redress, please contact the ICSID Data Privacy Team at icsiddataprivacy@worldbank.org. We will make all reasonable efforts to address your request promptly. 

For security reasons, we may need to verify your identity before responding to your request for information or before processing your other requests.

For More Information

If you have any questions about this Notice, you can contact the ICSID Data Privacy Team at icsiddataprivacy@worldbank.org or write to us at the address below:

International Centre for Settlement of Investment Disputes
Attn: Data Privacy Team
1818 H Street, N.W.
MSN C3-300
Washington, D.C. 20433
U.S.A

*           *           *

 

 

 

This Notice is up to date as of April 1, 2025.