Regulatory compliance with the EU 2016/679 regulation on the protection of personal data (“GDPR”)
Pursuant to art. 13 of the GDPR, EEN2EIC consortium, in quality of a data controller informs that this regulatory compliance is intended for the site https://een2eic.eu/and forms an integral part of the site and of the services we offer. EEN2EIC consortium processes the personal data transferred to it.
The information and the data you provide or in any case acquired as part of the use of EEN2EIC services, such as, for example: participation to events or pitching sessions, use of information and assistance services on EIC Accelerator progrmme and assistance to Seal of Excellence holders – hereinafter ” Services” -, will be processed in compliance with the applicable legislation and the principles of correctness, lawfulness, transparency and protection of your privacy and your rights.
EEN2EIC strictly observes the rules for the security of personal data and the exclusive use for the stated purpose. We conscientiously protect data from loss, misuse, unauthorized access, unauthorized disclosure, falsification or destruction. Within our consortium’s organizations, the information is accessible only to personnel authorized to data processing or to data processors expressly authorized pursuant to art. 28 of the GDPR.’
Controller of the processed data
The data controller of the processed data is implemented in a coordinated manner by the EEN2EIC consortium partners, the European Research Promotion Agency (APRE) with legal office in Rome, via Cavour 71 – 00184 Rome is responsible for the coordination, processing and replying to these requests on behalf of all the Parties. Contactable at the email address firstname.lastname@example.org
The data controller has not formally designated a Data Protection Officer (DPO) pursuant to art. 37 of EU Regulation 2016/679, since it currently does not fall within the mandatory cases.
Type of data processed
After you have browsed the Website, EEN2EIC will process your personal data which may consist of a series of personal and information data such as your name, an identification code, the institution you belong to, the research topics of your interest. Moreover, other Personal Data freely provided by you for registration in our database, or information request forms (for example to obtain assistance on European programs, or for registration requests for conferences and training courses) may also be processed.
2.1 Navigation data
The informatic systems and software procedures used to operate the Website acquire, during their normal operation, some Personal Data whose transmission is implicit in the use of Internet communication protocols. These type of information are not collected to be associated with identified data subjects, but which through subsequent processing could allow users to be identified. This category of data includes (1) types and versions of browsers used, (2) operating system used by the access system, (3) date and time of access to the website, (4) an Internet protocol address (IP address), (5) the Internet service provider of the access system and (6) any other similar data and information that can be used to facilitate access to our website or to identify incorrect use of our informatic systems. These general data and information are necessary to allow correct access to the content of our website, optimize the content of our website and provide the authorities with the necessary information in case of hypothetical illegal actions against the site or third parties.
2.2 Data voluntarily provided
The compilation and submission of the forms on the EEN2EIC website, the voluntary registration in the EEN2EIC database, the registration for events or the application to vouchers’scheme, as well as the optional, explicit and voluntary sending of messages to the contact addresses of EEN2EIC, involve the acquisition of the sender’s contact details, as well as all the personal data included in the communications to provide the requested services.
Purpose of the treatment
On the EEN2EIC website, users have the option of registering in our database. The input mask used for this purpose determines which personal data is transmitted
The processing of personal data by EEN2EIC is carried out for the achievement of the institutional objectives of the project and may have the following purposes:
- a) voluntary registration to the EEN2EIC Database to apply to the vouchers’scheme,
- b) participation in events,
- c) respond to requests for information and assistance,
In the event of voluntary registration for participation in an event or training course organized by EEN2EIC, personal data is used to manage participation in the event. Personal data may be transmitted to any co-organizers of the event if it is necessary for security reasons in accessing public buildings or research centers or for the management of the spaces where the event will be held. We provide these subjects only with the data strictly necessary to provide the service. Any further processing or transmission to third parties is not foreseen. By submitting the data for event registration, this appropriate use of the data is approved.
The EEN2EICwebsite provides for the possibility of rapid electronic contact with our agency. If a data subject contacts EEN2EIC by e-mail or via a contact form, the personal data transmitted by the data subject are automatically stored. Such personal data transmitted on a voluntary basis by a data subject to the data controller (APRE) are stored for the purpose of contacting the data subject and providing the information or service requested.
Legal Basis of the Processing
The legal basis for the Personal Data processing for purposes 3 (a-b) is art. 6.1.a) of EU Regulation 2016/679 consent of the data subject to the data processing;
For purposes 3 (c – e – f) it is the art. 6.1.b) of the EU Regulation 2016/679 as the processing is necessary for the provision of the Services or for the response of requests from the data subject.
For purpose 3 (d) the processing of Personal Data is carried out pursuant to art. 6.1.c) of the Regulation, for fulfillment of a legal obligation.
Processing method and scope
The processing will take place through the collection of personal data online in the case of direct registration on the EEN2EIC website or through paper registration in the case of local events, information days and the subsequent entry of the same into the consortium’s informatic system. Personal data will be processed exclusively by persons authorized to the data processing and properly trained, as well as by data processors linked to the holder by a specific contract. The personal data processed will not be disseminated.
- Data Retention
In compliance with the provisions of art. 5 paragraph 1 lett. e) of EU Reg. 2016/679, the personal data collected will be kept in a form that allows the identification of the interested parties for a period of time not exceeding the achievement of the purposes for which the personal data is processed. At the end of the retention period, the data is deleted in accordance with the legal requirements established by the reference legislation.
- Users right exercise
Pursuant to articles 15 et seq. of Regulation 2016/679, the subjects to whom the Personal Data refer have the right at any time to obtain confirmation of the existence or not of the same from the Data Controller, to know its content and origin, to verify its accuracy or request its integration, cancellation, updating, rectification, transformation into anonymous form or blocking of Personal Data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, to their processing. Requests should be addressed to the Data Controller.
Rights may be exercised via the e-mail address email@example.com.
The data subject can lodge a complaint with the competent supervisory authority (Guarantor for the Protection of Personal Data www.garanteprivacy.it) pursuant to art. 77 of the Regulation, if they believe that the processing of their data is contrary to the legislation in force