The platform is hosted by the EUHubs4Data partner DIGITAL SME ALLIANCE and is compliant with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter referred to as “GDPR”).

  1. IDENTIFICATION OF THE DATA CONTROLLER

The following entities are the Data Controllers of your personal data:

Entity Address E-mail
INSTITUTO TECNOLOGICO DE INFORMATICA (ESG96278734) Camino de Vera s/n; CPI- Edif. 8G Acceso B – 46022 Valencia (Spain) dpo@iti.es

DIGITAL SME

(BE0899786252)

Rue du Commerce 123 Brussels 1000

Belgium

s.toffaletti@digitalsme.eu

KNOW-CENTER CMBH RESEARCH CENTER FOR DATA-

DRIVEN BUSINESS & BIG DATA ANALYTICS (ATU50367703)

Inffeldgasse 13/6 GRAZ 8010, Austria dpo@know-center.at
INSTITUTO TECNOLÓGICO DE ARAGÓN (ESQ50995008H)

María de Luna 8, Zaragoza

50018 Spain

dpo@itainnova.es
IMT  TRANSFERT (FR57434541876)

2-2bis Villa Thoréton – 75015 Paris,

France

olivier.dehoux@imt.fr
IDC ITALIA, SRL (IT06541750151) Viale Monza 14, Milano 20127 Italy pjirouskova@idc.com

CINECA CONSORZIO INTERUNIVERSITARIO

(IT00502591209)

Via Magnanelli 6/3, Casalecchio

di Reno Bo 40033, Italy

privacy@cineca.it

ZABALA INNOVATION CONSULTING, S.A.

(ESA31419773)

Paseo Santxiki 3

Bis, Mutilva Alta Navarra 31192, Spain

jlorente@zabala.es

RISE RESEARCH INSTITUTES OF SWEDEN AB

(SE556464687401)

Brinellgatan 4,

Boras 501 15, Sweden

emilia.utsi@ri.se

FUNDACIÓN  EURECAT

(ESG66210345)

Av. Universitat Autonoma 23, Cerdanyola

del Valles 08290 Barcelona, Spain

dpo@eurecat.org

STICHTING EGI

(NL8219.84.986.B.01)

Science Park 140, Amsterdam 1098 XG, Netherlands dpo@egi.eu

INSTYTUT

CHEMII BIOORGANICZNEJ POLSKIEJ AKADEMII NAUK

(PL7770002062)

Noskowskiego 12-14, Poznan 61 704

Poland

nszymkowiak@man.poznan.pl

 

The Data Controllers shall decide on the purpose of the processing and means of processing the personal data.


You may contact any of the Data Controllers in case you have any question regarding your personal data processing and/or to exercise your personal-data-protection-related rights.

 

  1. WHAT PERSONAL DATA IS PROCESSED?

The Data Controllers will process the data which is collected to manage the applications submitted by the SMEs which apply to participate in the EUHubs4Data Project within the second and third open calls and to answer the inquiries inquirers submit regarding the EUHubs4Data Project. The Personal Data processing capacity of each of the Joint Data Controllers is limited to the minimum necessary to accomplish with the aforementioned purposes.

The Data Controllers will process personal data of the following categories:

  1. Name, surname, and contact details, such as telephone number and postal or e-mail address.
  2. Information regarding the company or the entity in which you work or of which you are a representative.
  3. Commercial information.
  4. Information about the elaboration or involvement of your company in applications for the open calls organized in EUHubs4Data project.
  5. Other personal information that may be included in your inquiries.

In the case of the processing of personal data carried out through cookies and/or other tracking tools, the Cookie Policy will be applicable.

 

  1. FOR WHICH PURPOSES DO WE PROCESS YOUR DATA? FOR HOW LONG DO WE PROCESS YOUR PERSONAL DATA?

You are hereby informed that the Data Controllers may process your data to provide you with information on its purposes and activity and in connection to developments, research and services in the scope of EUHubs4Data Project; manage your open call application form; signing you up to events relating the EUHubs4Data Project following your request; to answer your inquiries and provide you with all the information you have requested regarding the Project, the entities that are part of it and/or the services they offer which are included in the service catalogue.

Your information will be kept for as long as it is necessary to answer and process your requests and, once this purpose has been fulfilled, blocked during the period in which any kind of liability may arise from the processing or the relationship established between the parties. Once the legal limitation period and these responsibilities have expired, the data will be deleted.

 

  1. DO WE DISCLOSE YOUR PERSONAL DATA TO THIRD PARTIES?

The Data Controllers, generally, will not disclose your personal data to third parties, except if legally required to do so or when required by a public authority, the justice administration, or law enforcement agencies in compliance with legal obligations applicable to us. If a communication to additional third parties became necessary, we would request your explicit consent beforehand.

Anyway, if you participate in any of the Open Calls in order to evaluate your application, your proposal will be submitted to an independent evaluator and, if you are applying as an SME or Start-up, it will also be sent to the DIHs whose experiments your proposal involve.

If you are an SME or a Start-up who submits an inquiry regarding the service of a specific DIH, such inquiry, including the personal data it may contain, will be submitted the concerning DIH.

We may also use the services of service providers in connection with the Project, such as hosting service providers. These providers need to have limited access to the Personal Data for the provision of their service, acting as Data Processors. In these cases, we guarantee that we sign specific agreements with such service providers as required by law, and they are required to have the same or a higher level of security to protect the information provided to them.

 

  1. DO WE TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE THE EUROPEAN ECONOMIC AREA?

Some of our service providers are located in the United States or other countries located outside the European Economic Area. The services of these providers imply the existence of an international transfer of your personal data, which theoretically could mean a lower degree of protection than that contained in European legislation. However, all such providers have signed the corresponding standard contractual clauses approved by the European Commission by which they guarantee that appropriate and sufficient safeguards are applied in order to have the same protection standards as in the EU. Therefore, the use of these providers does not result in a lower level of protection of your personal data than the use of suppliers located in the European Union.

  1. WHICH RIGHTS DO YOU HAVE REGARDING THE PROTECTION OF YOUR PERSONAL DATA?

You can exercise the following rights that the law guarantees you in relation to the processing of your personal data:

Right of Access


You have the right to know which data is being processed, if any, and, if so, to obtain a copy of it, as well as to obtain information concerning: the origin and recipients of the data; the purposes for which it is processed; the categories of personal data processed; whether there is an automated decision-making process, including profiling; the period of data retention; and the rights provided by law.


Right of rectification:


You have the right to obtain the rectification of your personal data or to complete them when they are incomplete.


Right to erasure


You have the right to request the deletion of your personal data if it is no longer necessary for the purpose for which they were collected or if you don’t authorise to process them anymore.


Right to data portability


You have the right to request data portability in the case the processing of your data is based on your consent or the execution of a contract, as well as when the processing is carried out by automated means. If you exercise this right, you will receive your personal data in a structured format, commonly used and readable by any electronic device. However, you can also request, where possible, that your data be transmitted directly to another data controller.


Right to restriction of processing of your personal data


You have the right to restrict the processing of your data in the following cases:

When you have requested the rectification of your personal data during the period in which it is verified their accuracy.

When you consider that it is no longer necessary for the Data Controllers to continue processing your data and you want it to keep them for the purposes of exercising or defending claims.

When you consider that the Data Controllers are not authorized to process your data. In that case, you can ask to limit their use instead of requesting their deletion.

In cases where there is processing based on the legitimate interest of the Data Controllers and you have exercised your right to object, you may ask to limit the use of your data during verification of the prevalence of such interests over yours.


Right to object


You have the right to object at any time to the processing of your personal data based on our legitimate interest, including profiling.


Right to withdraw consent given


You can withdraw your consent in connection with all processing based on it. However, please take into account that the withdrawal of consent will not affect the lawfulness of processing based on consent prior to withdrawal.


Right to file a complaint with the Supervisory Authority


Remember that, at any time, and in case you consider that your right to the protection of your data has been infringed, you will be able to complain with the corresponding Data Protection Authority.

 

  1. HOW CAN YOU EXERCISE YOUR RIGHTS?

At any time, you can exercise the previously listed rights by addressing to any of the Data Controllers to their post addresses or to their e-mail addresses listed in the first section of this Privacy Policy.

In all cases, you must specify which right you want to exercise, as well as your identification details.


Any claim received will be resolved as soon as possible, always in compliance with the deadlines established by law. You will be let know if additional data or information is needed to verify your identity.

 

  1. HOW DO WE GUARANTEE THE CONFIDENTIALITY OF YOUR INFORMATION?

The security of your personal data is a priority for the Data Controller. Therefore, it has implemented all necessary security measures to ensure the effective use and processing of your personal data, safeguarding the privacy, confidentiality and integrity of them.

Consequently, the recommended safety standards to protect your data are applied. However, it is impossible to fully guarantee your security due to the nature of the Internet and because there may be fraudulent actions by third parties beyond the Data Controllers’ control.

The Data Controllers are committed to acting quickly and diligently if data security is compromised, and to inform you of this where relevant.

 

  1. UPDATES TO THIS PRIVACY POLICY

This Privacy Policy may be subject to updates in the future, either to improve it, or to comply and adjust to new applicable legislation that may affect the processing, collection and management of personal data. Any changes to these terms will be clearly and specifically disclosed, for example, we may use your email address to notify you of such changes.