Data Protection Policy
The present data protection policy clarifies in a layered manner the processing of personal information of visitors of the Cyber-Trust website. The data processing on the Cyber-Trust website is pursuant to the provision of the EU General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regime applicable to ADITESS – Advanced Integrated Technologies Solutions and Services, which is headquartered in Strovolos, Cyprus (EU Member State.For further information, please check Section 2 of the present data protection policy.
Personal data, as defined by Article 4(1) General Data Protection Regulation (GDPR) include any information relating to an identified or identifiable living natural person. Personal data can be your first name, last name, e-mail address, email format and IP address. Hereinafter, by using the terms “we” and “our”; we refer to the data controller, as member of the Cyber-Trust consortium. Hereinafter, by using the terms “you” and “your”, we refer to the Cyber-Trust website visitor.
1. General information: What is Cyber-Trust?
Cyber-Trust is a research project that has received funding from the European Union’s Horizon 2020 – Research and Innovation Framework Programme, H2020-DS-SC7-2017, under grant agreement no. 786698. The project started on 1 May 2018 and ends on 31 April 2021. The Cyber-Trust consortium consists of nine partners from academia, consultancy and business. The present website is part of the dissemination and communication activities undertaken by the Cyber-Trust consortium within the aim to successfully communicate its research output on a rather innovative topic to a wider public and facilitate the creation of synergies with interested stakeholders.
2. Contact information of the data controller and of the Data Protection Officer
ADITESS – Advanced Integrated Technologies Solutions and Services 40 Vyzantiou Str.Strovolos 2064 Cyprus(hereinafter referred to as “ADITESS”)
E-Mail: ekoutras <at> aditess <dot> com
Telephone: +357 22250959
Fax: +357 22250957
The Data Protection Officer at ADITESS may be reached at the above-mentioned address. In case you have any questions about the processing of your data when using the Cyber-Trust website or your rights as data subject, you can also submit your query via our contact form, with the indication “Data Protection Inquiry”.
3. Data processing
a) When visiting the Cyber-Trust website
You may access the website www.cyber-trust.eu without having to disclose any data about your person. Nevertheless, the installed browser on your device sends automatically information to the server of the Cyber-Trust website, including information about your browser type and version, as well as the date and time of access, so as to establish a connection and permit your access to the website.
b) When filing a question via our contact form
We offer the possibility to our website visitors to contact us or register an enquiry by submitting an online form through our website. Submitted queries through the form will be sent to the mailbox of the employees in charge of taking care of your requests and will be stored in their email provider servers. Please notice that your data will be stored for as long as necessary for the fulfillment of the purposes specified (reply to your inquiry) and any statutory requirements.
Our contact form requires the minimum information needed in order to be able to respond back to your request. When registering, you need to enter the following mandatory data, marked as such (e.g. with *). These include:
- First name and surname, and
- Email address
The data processing takes place exclusively at your request and in line with article 6(1)(a) of the GDPR. The submitted message, your full name/nickname and email address are processed based on your informed consent. You may withdraw your consent at any time with future effect, by sending an informal email to the email address mentioned in Section 2 of the present policy, requesting the removal of your data. For the use of the Google reCAPTCHA tool, please see Section 7.
c) Leaving comments on our website
When you use the comment function, the time at which you created the comment and your email address will be stored along with your comment and your full name, unless you decide to upload your post by using a nickname. The comments as well as your full name/nickname remain publicly visible on our website for as long as the content commented upon has been completely deleted or the comments are required to be removed, for instance, upon your request or under legal justification. Please note that your data will be stored for as long as necessary for the fulfillment of the purposes specified (public posting of your comments on the Cyber-Trust website) and any statutory requirements. The submitted comments, your full name/nickname and email address are processed based on your informed consent per Art. 6 (1) (a) GDPR. You may withdraw your consent at any time with future effect, by sending an informal email to the email address mentioned in Section 2 of the present policy, requesting the removal of your data. For the use of the Google reCAPTCHA tool, please see Section 7.
4. Google Analytics
The Cyber-Trust website uses Google Analytics. Google Analytics is a free web analytics service offered by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (Google). Its purpose is to monitor, keep record of website traffic and report website usage statistics. You can read in detail how Google processes your data when you use sites or apps, which employ Google Analytics tools here. When you visit the Cyber-Trust website, your web browser automatically sends certain information to Google. This includes the URL of the page you are visiting and your IP address. On behalf of the Cyber-Trust website operator, Google will use this information to evaluate your use of the website, compile reports about website activities, and provide the website’s operator with further services related to website and Internet usage.
If you wish to prevent the storage of cookies and clear already set cookies, you can do so by appropriately changing your browser settings, so as to block third-party cookies. By disabling the storage of some cookies, please note that you might not be able to fully use all functions offered by this or other websites.
Moreover, website visitors can permanently prevent data from being used by Google Analytics, by installing the Google Analytics browser add-on.
Cookies are small text files that are automatically placed on your browser and stored on your device when you visit a website. The only cookies used on this Website are Google analytics cookies, placed by Google in order to capture statistical data on the website usage and for security purposes. Some cookies are deleted automatically after you close your browser. Other cookies, the so-called long-term cookies, may remain on your device or be automatically deleted after a defined period of time.
You can prevent the storage of cookies, by properly configuring your browser settings, for instance, by choosing the “disable cookies” function or by enabling notifications before a new cookie is installed. The complete disabling of cookies may limit the functionality of the Cyber-Trust website.
6.Social media plug-ins
We use social media to present and communicate our work through widely used communications channels and maximise the impact of our research activities. Thus, on certain webpages of the Cyber-Trust website, we use social media plug-ins (the so-called social media buttons) to enable this interaction. These plug-ins are small buttons, which can be recognized by bringing a social media logo, for instance the Facebook or Twitter logo. The function of these buttons is to allow you share the contents of the Cyber-Trust website in your profile on social networks, to access via links the Cyber-Trust accounts in other social platforms, or to watch an embedded (or not) YouTube video of Cyber-Trust activities. As of now, the Cyber-Trust consortium is active on four social networks: Facebook, Twitter, LinkedIn and YouTube.
The Cyber-Trust website uses the Shariff solution, which is an open-source, low-maintenance, privacy-preserving tool maintained by the German computer magazine c’t and heise online. As long as you do not interact with the social media buttons on the Cyber-Trust website by clicking on them, personal data of yours are not transmitted to the social media platforms by the mere fact that you are visiting the Cyber-Trust webpages, where these buttons appear. However, if you click on such a button, a connection is established between the Cyber-Trust website and the social network. In addition to the contents in question, the operator of the social network also obtains additional, partly personal, information, for instance, information about your Cyber-Trust website visit.
Each social media platform has their own data protection policy when accessing their websites. For example, if you choose to read our news on Twitter, you will be asked for explicit consent to accept Twitter cookies, and the same applies for all the other platforms. Moreover, if you do not wish the social media platforms to track data collected about you via our website back to your personal accounts, then please log out of your social media accounts before visiting our website. Specifically, we use the following social media plug-ins:
Facebook Ireland Limited: share/link button
Information is partly transferred to the parent company Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, which is covered by the EU-USA Privacy Shield Framework. For further information, please refer to the Facebook privacy notice.
Twitter International Company: share/link button
Information is partly transferred to the parent company Twitter Inc. 1355 Market St, Suite 900, San Francisco, CA 94103 (“Twitter”), which is covered by the EU-USA Privacy Shield Framework. For more information on data protection with Twitter, please refer to the Twitter privacy statement.
LinkedIn: share/link button
Information is partly transferred to the parent company LinkedIn Corporation LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA (“LinkedIn”), which is covered by the EU-USA Privacy Shield Framework. For more information on data protection with LinkedIn, please refer to the LinkedIn privacy statement.
YouTube: link button for YouTube
- Google reCAPTCHA
As a data subject, you have the following rights:
pursuant to Article 7(3) GDPR, to withdraw your consent at any time and without any consequences for you. This means that in future we may no longer continue to process the data as based on this consent;
pursuant to Article 15 GDPR, to obtain information about whether your personal data are processed by us and where that is the case, access to those personal data. In particular, you may obtain information about the purpose of processing, the category of the personal data, the categories of recipients, to whom your data has been or is disclosed to, the storage period planned, the existence of a right to request from the controller rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint and the source of your data if it has not been collected by us. Pursuant to Article 12, we must provide any communication relating to the processing to the data subject in a concise, transparent, intelligible and easily accessible form, using clear and plain language.
pursuant to Article 16 GDPR, to obtain the rectification of inaccurate personal data without undue delay or the completion of your personal data stored with us;
pursuant to Article 17 GDPR, to obtain the erasure of your personal data stored with us unless processing is necessary to exercise the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or to establish, exercise or defend legal claims;
pursuant to Article 18 GDPR, to obtain the restriction of the processing of your personal data;
pursuant to Article 20 GDPR, to receive your personal data, in a structured, commonly used and machine-readable format or to obtain the transmission to another data controller (right to data portability);
pursuant to Article 21 GDPR, to object, on grounds relating from your particular situation, at any time to processing of your personal data, which is based on data processing for the purposes of legitimate interests. If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or unless processing serves the establishment, exercise or defence of legal claims.
pursuant to Article 77 GDPR, to lodge a complaint with a national supervisory authority. You can contact the supervisory authority of your habitual residence or workplace or our company headquarters. In the latter case, you can file a complaint with the Office of the Cypriot Commissioner for Personal Data Protection.
All your personal data are transferred in an encoded manner using the widely used and secure TLS (Transport Layer Security) encryption standard. You will recognise a secure TLS connection by the additional “s” after “http” (i.e., https://..) in the address bar of your browser or from the lock icon. Moreover, we use suitable technical and organisational measures, which are being continuously enhanced, to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties.
This data protection policy is effective as of April 2019.
We keep our Data Protection Policy under regular review to make sure it is up to date and precise. Thus, it may become necessary to change it due to the potential addition of new features to the Cyber-Trust website or due to further legal requirements. You can have access to the latest data protection information on the Cyber-Trust website at “permanent link of data protection policy”.