Privacy Policy

Data Protection Policy

The present data protection policy clarifies in a layered manner the processing of personal information of visitors of the Cyber-Trust website. The data processing on the Cyber-Trust website is pursuant to the provision of the EU General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regime applicable to ADITESS – Advanced Integrated Technologies Solutions and Services, which is headquartered in Strovolos, Cyprus (EU Member State.For further information, please check Section 2 of the present data protection policy.

Personal data, as defined by Article 4(1) General Data Protection Regulation (GDPR) include any information relating to an identified or identifiable living natural person. Personal data can be your first name, last name, e-mail address, email format and IP address. Hereinafter, by using the terms “we” and “our”; we refer to the data controller, as member of the Cyber-Trust consortium. Hereinafter, by using the terms “you” and “your”, we refer to the Cyber-Trust website visitor.

1. General information: What is Cyber-Trust?

Cyber-Trust is a research project that has received funding from the European Union’s Horizon 2020 – Research and Innovation Framework Programme, H2020-DS-SC7-2017, under grant agreement no. 786698. The project started on 1 May 2018 and ends on 31 April 2021. The Cyber-Trust consortium consists of nine partners from academia, consultancy and business. The present website is part of the dissemination and communication activities undertaken by the Cyber-Trust consortium within the aim to successfully communicate its research output on a rather innovative topic to a wider public and facilitate the creation of synergies with interested stakeholders.

2. Contact information of the data controller and of the Data Protection Officer

ADITESS – Advanced Integrated Technologies Solutions and Services 40 Vyzantiou Str.Strovolos 2064 Cyprus(hereinafter referred to as “ADITESS”)
E-Mail: ekoutras <at> aditess <dot> com
Telephone: +357 22250959
Fax: +357 22250957
The Data Protection Officer at ADITESS may be reached at the above-mentioned address. In case you have any questions about the processing of your data when using the Cyber-Trust website or your rights as data subject, you can also submit your query via our contact form, with the indication “Data Protection Inquiry”.

3. Data processing

a) When visiting the Cyber-Trust website

The Cyber-Trust website is uploaded on cPanel. cPanel, L.L.C. is a privately-owned corporation headquartered in Houston, Texas, USA, which complies with the EU-USA Privacy Shield Framework. You can read the privacy policy of cPanel here.

You may access the website without having to disclose any data about your person. Nevertheless, the installed browser on your device sends automatically information to the server of the Cyber-Trust website, including information about your browser type and version, as well as the date and time of access, so as to establish a connection and permit your access to the website.

Moreover, we use cookies and analytics services. For more information, please refer to Sections 4. Google Analytics and 5. Cookies. The purpose for implementing all of the above is to maintain and monitor the performance of the Cyber-Trust website and to optimise our services, as well as to receive aggregate data that we can use in our dissemination reports for the European Commission. The legal basis we rely on to process your personal data is again article 6(1)(f) of the GDPR, which allows us to process personal data when necessary for the purposes of our legitimate interests. In that case, our legitimate interest is to provide a high level of security and ensure, to the extent possible, undisrupted availability of the Cyber-Trust website, as well as to communicate to the European Commission the efforts we are making to disseminate our research output by providing relevant anonymous statistical data about web visits. We also use social media buttons. For more information, please refer to Section 6. Social media plug-ins.

b) When filing a question via our contact form

We offer the possibility to our website visitors to contact us or register an enquiry by submitting an online form through our website. Submitted queries through the form will be sent to the mailbox of the employees in charge of taking care of your requests and will be stored in their email provider servers. Please notice that your data will be stored for as long as necessary for the fulfillment of the purposes specified (reply to your inquiry) and any statutory requirements.

Our contact form requires the minimum information needed in order to be able to respond back to your request. When registering, you need to enter the following mandatory data, marked as such (e.g. with *). These include:

  • First name and surname, and
  • Email address

The data processing takes place exclusively at your request and in line with article 6(1)(a) of the GDPR. The submitted message, your full name/nickname and email address are processed based on your informed consent. You may withdraw your consent at any time with future effect, by sending an informal email to the email address mentioned in Section 2 of the present policy, requesting the removal of your data. For the use of the Google reCAPTCHA tool, please see Section 7.

c) Leaving comments on our website

When you use the comment function, the time at which you created the comment and your email address will be stored along with your comment and your full name, unless you decide to upload your post by using a nickname. The comments as well as your full name/nickname remain publicly visible on our website for as long as the content commented upon has been completely deleted or the comments are required to be removed, for instance, upon your request or under legal justification. Please note that your data will be stored for as long as necessary for the fulfillment of the purposes specified (public posting of your comments on the Cyber-Trust website) and any statutory requirements. The submitted comments, your full name/nickname and email address are processed based on your informed consent per Art. 6 (1) (a) GDPR. You may withdraw your consent at any time with future effect, by sending an informal email to the email address mentioned in Section 2 of the present policy, requesting the removal of your data. For the use of the Google reCAPTCHA tool, please see Section 7.

4. Google Analytics

The Cyber-Trust website uses Google Analytics. Google Analytics is a free web analytics service offered by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (Google). Its purpose is to monitor, keep record of website traffic and report website usage statistics. You can read in detail how Google processes your data when you use sites or apps, which employ Google Analytics tools here. When you visit the Cyber-Trust website, your web browser automatically sends certain information to Google. This includes the URL of the page you are visiting and your IP address. On behalf of the Cyber-Trust website operator, Google will use this information to evaluate your use of the website, compile reports about website activities, and provide the website’s operator with further services related to website and Internet usage.

For that reason, Google Analytics uses cookies, i.e. small text files that are placed on your device and stored on your browser and are used to collect data, in that case, about your usage of the website. Google Analytics may set new cookies on your browser or read cookies that are already set there. Information generated by the cookies about your use of this website is transmitted to a Google server in the United States and stored there. The Cyber-Trust website uses Google Analytics exclusively with the extension “_anonymizeIp()”, which ensures an anonymization of the IP address by shortening it. The IP address sent from your browser is not merged with other data by Google.

If you wish to prevent the storage of cookies and clear already set cookies, you can do so by appropriately changing your browser settings, so as to block third-party cookies. By disabling the storage of some cookies, please note that you might not be able to fully use all functions offered by this or other websites.

Moreover, website visitors can permanently prevent data from being used by Google Analytics, by installing the Google Analytics browser add-on.


Cookies are small text files that are automatically placed on your browser and stored on your device when you visit a website. The only cookies used on this Website are Google analytics cookies, placed by Google in order to capture statistical data on the website usage and for security purposes. Some cookies are deleted automatically after you close your browser. Other cookies, the so-called long-term cookies, may remain on your device or be automatically deleted after a defined period of time.
You can prevent the storage of cookies, by properly configuring your browser settings, for instance, by choosing the “disable cookies” function or by enabling notifications before a new cookie is installed. The complete disabling of cookies may limit the functionality of the Cyber-Trust website.

6.Social media plug-ins

We use social media to present and communicate our work through widely used communications channels and maximise the impact of our research activities. Thus, on certain webpages of the Cyber-Trust website, we use social media plug-ins (the so-called social media buttons) to enable this interaction. These plug-ins are small buttons, which can be recognized by bringing a social media logo, for instance the Facebook or Twitter logo. The function of these buttons is to allow you share the contents of the Cyber-Trust website in your profile on social networks, to access via links the Cyber-Trust accounts in other social platforms, or to watch an embedded (or not) YouTube video of Cyber-Trust activities. As of now, the Cyber-Trust consortium is active on four social networks: Facebook, Twitter, LinkedIn and YouTube.

The Cyber-Trust website uses the Shariff solution, which is an open-source, low-maintenance, privacy-preserving tool maintained by the German computer magazine c’t and heise online. As long as you do not interact with the social media buttons on the Cyber-Trust website by clicking on them, personal data of yours are not transmitted to the social media platforms by the mere fact that you are visiting the Cyber-Trust webpages, where these buttons appear. However, if you click on such a button, a connection is established between the Cyber-Trust website and the social network. In addition to the contents in question, the operator of the social network also obtains additional, partly personal, information, for instance, information about your Cyber-Trust website visit.

Each social media platform has their own data protection policy when accessing their websites. For example, if you choose to read our news on Twitter, you will be asked for explicit consent to accept Twitter cookies, and the same applies for all the other platforms. Moreover, if you do not wish the social media platforms to track data collected about you via our website back to your personal accounts, then please log out of your social media accounts before visiting our website. Specifically, we use the following social media plug-ins:

  1. Facebook Ireland Limited: share/link button

Information is partly transferred to the parent company Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, which is covered by the EU-USA Privacy Shield Framework. For further information, please refer to the Facebook privacy notice.

  1. Twitter International Company: share/link button

Information is partly transferred to the parent company Twitter Inc. 1355 Market St, Suite 900, San Francisco, CA 94103 (“Twitter”), which is covered by the EU-USA Privacy Shield Framework. For more information on data protection with Twitter, please refer to the Twitter privacy statement.

  1. LinkedIn: share/link button

Information is partly transferred to the parent company LinkedIn Corporation LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA (“LinkedIn”), which is covered by the EU-USA Privacy Shield Framework. For more information on data protection with LinkedIn, please refer to the LinkedIn privacy statement.

  1. YouTube: link button for YouTube

Information is partly transferred to the parent company Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), which is covered by the EU-USA Privacy Shield Framework. For more information on data protection with LinkedIn, please refer to the privacy policy of Google. At the moment, there are no embedded videos on the Cyber-Trust website. If, in the future, there will be such embedded videos, we will be using the “extended data protection mode”, provided by YouTube. In so doing, access to the Cyber-Trust website visitors´ personal data by solely loading a webpage containing an embedded YouTube video from the Cyber-Trust official YouTube account is prevented.

  1. Google reCAPTCHA

reCAPTCHA is a free service provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (Google). This tool, which may have different forms, helps protect websites from spam, malicious behaviour and abuse, by checking whether the data entered on the website (for instance, via a contact form) is being entered by a human or by a bot, i.e. an automated program. This determination occurs based on the monitoring and analysis of the behaviour of the website visitor. The collected data, which include user and browser information, such as cookies placed by Google, the number of clicks you have made on that screen and installed browser plug-ins, are forwarded to Google and stored in servers in USA. Data processing for the version of reCAPTCHA used by our website (reCAPTCHA v2 – “I am not a robot” sign and ticking box) is based on Art. 6 (1) (f) GDPR. This means that it is our legitimate interest to protect our website from abuse, malicious attacks and spam. For more information, about Google reCAPTCHA, please refer to the privacy policy of Google and its guidelines on the service.

  1. Data subjects´ rights

As a data subject, you have the following rights:

  • pursuant to Article 7(3) GDPR, to withdraw your consent at any time and without any consequences for you. This means that in future we may no longer continue to process the data as based on this consent;

  • pursuant to Article 15 GDPR, to obtain information about whether your personal data are processed by us and where that is the case, access to those personal data. In particular, you may obtain information about the purpose of processing, the category of the personal data, the categories of recipients, to whom your data has been or is disclosed to, the storage period planned, the existence of a right to request from the controller rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint and the source of your data if it has not been collected by us. Pursuant to Article 12, we must provide any communication relating to the processing to the data subject in a concise, transparent, intelligible and easily accessible form, using clear and plain language.

  • pursuant to Article 16 GDPR, to obtain the rectification of inaccurate personal data without undue delay or the completion of your personal data stored with us;

  • pursuant to Article 17 GDPR, to obtain the erasure of your personal data stored with us unless processing is necessary to exercise the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or to establish, exercise or defend legal claims;

  • pursuant to Article 18 GDPR, to obtain the restriction of the processing of your personal data;

  • pursuant to Article 20 GDPR, to receive your personal data, in a structured, commonly used and machine-readable format or to obtain the transmission to another data controller (right to data portability);

  • pursuant to Article 21 GDPR, to object, on grounds relating from your particular situation, at any time to processing of your personal data, which is based on data processing for the purposes of legitimate interests. If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or unless processing serves the establishment, exercise or defence of legal claims.

  • pursuant to Article 77 GDPR, to lodge a complaint with a national supervisory authority. You can contact the supervisory authority of your habitual residence or workplace or our company headquarters. In the latter case, you can file a complaint with the Office of the Cypriot Commissioner for Personal Data Protection.

If you wish to exercise any of your rights, please see 2. Contact information of the data controller and the Data Protection Officer.

  1. Data security

All your personal data are transferred in an encoded manner using the widely used and secure TLS (Transport Layer Security) encryption standard. You will recognise a secure TLS connection by the additional “s” after “http” (i.e., https://..) in the address bar of your browser or from the lock icon. Moreover, we use suitable technical and organisational measures, which are being continuously enhanced, to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties.

  1. Amendments to this Data Protection Policy

This data protection policy is effective as of April 2019.

We keep our Data Protection Policy under regular review to make sure it is up to date and precise. Thus, it may become necessary to change it due to the potential addition of new features to the Cyber-Trust website or due to further legal requirements. You can have access to the latest data protection information on the Cyber-Trust website at “permanent link of data protection policy”.

This project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 786698. The content of this website does not represent the opinion of the European Union, and the European Union is not responsible for any use that might be made of such content. Therefore, any communication activity related to the action reflects only the author’s view and the European Commission is not responsible for any use that may be made of the information it contains.

Data Protection Policy

The information provided on this website has been prepared exclusively for the purpose of providing information about the Cyber-Trust project and related activities. The Cyber-Trust consortium has tried to ensure that all information provided in this website is correct at the time it was included. By accessing this website, you agree that the Cyber-Trust consortium will not be liable for any direct or indirect damage or any consequential loss arising from the use of the information contained in this website or from your access to any other information on the internet via hyperlinks. The copyright in the material contained in this website belongs to the Cyber-Trust consortium. The Cyber-Trust consortium disclaims any liability that may be claimed for infringement or alleged infringement of patents.