Privacy Policy

Privacy Policy

Version 1.0 - September 1st, 2023

For the purposes of data protection all iRISE consortium partners are “joint controllers” of processing personal data described in this statement.

We operate as joint controllers in accordance with Art. 26 GDPR.

Personal data (hereinafter referred to as "data") will be processed by us strictly to the extent necessary to achieve the following purposes: ensuring the functionality and user-friendliness of our website, including all its contents; providing the services offered therein; managing and maintaining our associated social media platforms (including but not limited to LinkedIn and X); and facilitating any questionnaires or other forms of communication related to our research. All data processing activities will be conducted in accordance with relevant legal requirements and best practices.

Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as the "GDPR"), "processing" refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.

The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of such data either under our own control or in conjunction with others. We also inform you below about the third-party components we use to optimize our website and improve the user experience which may result in said third parties also processing data they collect and control.

Our privacy policy is structured as follows:

1. Information about us as controllers of your data
2. The rights of users and data subjects
3. Information about the data processing
4. Information about the use of resources

I. Information about us as responsible for your data

1. iRISE Project

This Website, along with our associated social media accounts on LinkedIn and X, and any questionnaires or other methods of communication employed by us, are dedicated exclusively to the iRISE project (Grant Agreement ID: 101094853). The iRISE project is implemented by a consortium of several partner organizations. This Website, along with our associated social media accounts on LinkedIn and X, and any questionnaires or other methods of communication employed by us, are managed by the joint controllers (all consortium partners). These joint controllers collectively determine the purposes and means of processing personal data. They are therefore legally considered to be a data controller over your personal data. Being a data controller provides us with the opportunity to process your personal data, but also obligates us to protect it in the way regulated by the EU Data Protection Law, particularly the General Data Protection Regulation (‘GDPR’) and this Privacy Policy.

2. Joint controllers

The joint controllers within the meaning of the GDPR and all other applicable EU data protection regulations ("joint controllers") are all consortium partners.

If you have any question regarding data protection you contact us via: hello@irise-project.eu

For any inquiries, suggestions, or criticisms pertaining to data protection, please contact:

1. “MIK - Miller International Knowledge” represented by Katharina Miller, registered at Calle Fuerteventura, número 4 bajo, 28703 San Sebastián de los Reyes, Madrid, CIF: B09850561.

On behalf of MIK - Miller International Knowledge please contact:

Rebecca Fischer

Calle Fuerteventura, número 4 bajo

28703 San Sebastián de los Reyes, Madrid

Spain

fischer@miller.international

Tel. +34 91 828 88 00

2. Joint Controller Arrangement

The joint controllers have entered into a joint controller agreement to ensure GDPR compliance. You can reach out to any of them to exercise your rights.

II. The rights of users and data subjects

With regard to the data processing to be described in more detail below, users and data subjects have the right

• to confirmation of whether data concerning them is being processed, information about the data being processed, further information about the nature of the data processing, and copies of the data (cf. also Art. 15 GDPR);
• to correct or complete incorrect or incomplete data (cf. also Art. 16 GDPR);
• to the immediate deletion of data concerning them (cf. also Art. 17 GDPR), or, alternatively, if further processing is necessary as stipulated in Art. 17 Para. 3 GDPR, to restrict said processing per Art. 18 GDPR;
• to receive copies of the data concerning them and/or provided by them and to have the same transmitted to other providers/controllers (cf. also Art. 20 GDPR);
• to file complaints with the supervisory authority if they believe that data concerning them is being processed by the controller in breach of data protection provisions (see also Art. 77 GDPR).

In addition, the controllers are obliged to inform all recipients to whom it discloses data of any such corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients.

Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the controllers´ future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permissible.

III. Information about the data processing

The data collected and processed through your interactions with our website, associated social media platforms (including but not limited to LinkedIn and X), and any questionnaires or other forms of communication will be systematically deleted or rendered inaccessible once the purpose for which the data was stored has been fulfilled. This deletion or blocking of data will be carried out in compliance with applicable statutory data retention obligations, unless any such obligations require continued storage or unless otherwise specified in the provisions below.

Server data

For technical reasons, the following data sent by your internet browser to us or to our server provider will be collected, especially to ensure a secure and stable website: These server log files record the type and version of your browser, operating system, the website from which you came (referrer URL), the webpages on our site visited, the date and time of your visit, as well as the IP address from which you visited our site.

The data thus collected will be temporarily stored, but not in association with any other of your data.

The basis for this storage is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality, and security of our website. The data will be deleted within no more than seven days, unless continued storage is required for evidentiary purposes. In which case, all or part of the data will be excluded from deletion until the investigation of the relevant incident is finally resolved.

Contact

If you contact us via email or the contact form, the data you provide will be used for the purpose of processing your request. We must have this data in order to process and answer your inquiry; otherwise, we will not be able to answer it in full or at all.

The legal basis for this data processing is Art. 6 Para. 1 lit. b) GDPR.

Your data will be deleted once we have fully answered your inquiry and there is no further legal obligation to store your data, such as if an order or contract resulted therefrom.

IV. Information about the use of resources

Copyright compliance and disclaimer

We strictly follow copyright legislation, making sure all the materials on our website are used in a way, which respects both the creator’s intellectual property and the privacy rights of the people visible in the materials. Specifically:

• we collect consent from the people visible in our materials,
• and we comply with the Fair Use principles and the Creative Commons copyright licences when using third-party materials.

Consequently, none of the materials on our website can be reproduced, modified, re-circulated, commercially exploited or re-used in any form whatsoever without the prior written consent of their creator and the people appearing on them. Accordingly, we do not accept responsibility for any content from our website, which is reproduced, re-circulated, or re-used by a third party.

Third-party resources

The third-party resources to which the iRISE website links are intended to provide public access to the activities and results of the iRISE project. And while we take extensive consideration in using third-party contents on our website, we do not guarantee that they are accurate, complete or current, nor do we accept any responsibility for the content.