Your personal data is processed in accordance with Regulation (EU) No 2018/1725 on the protection of individuals with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data.
The data controller of the processing operation is DG GROW Directorate C: Industrial Transformation and Advanced Value Chains
The following entities process your personal data on our behalf: Technopolis Group, Arctik, Trinomics and International Synergies Ltd.
The legal basis for the processing activities is/are
– Article 5(1)(a) of Regulation EU 2018/1725 because processing is necessary for the performance of a task carried out in the public interest (or in the exercise of official authority vested in the Union institution or body),
– Article 5(1)(d) of Regulation EU 2018/1725 based on your explicit consent for your non- mandatory personal data indicated below; – etc.].
The processed data is used for the purpose of statistical analysis and for the purpose of operating, safeguarding, and optimizing the website (legitimate interest). Any other use of your personal data (e.g. sending of newsletters) only takes place with your consent.
The following of your personal data are collected:
- Personal data – The personal information that we collect depends on the context of your interactions with us and the website. The personal information we collect is the personal information provided by you: email addresses; contact preferences; contact or authentication data; and other similar information.
- Derivative and device data – We automatically collect certain information when you visit, use or navigate the Website. Like many businesses, we collect information through cookies and similar technologies. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about who and when you use our Website and other technical information. This information is primarily needed to maintain the security and operation of our website, and for our internal analytics and reporting purposes.
The recipients of your personal data will be Commission contractors in charge of the RECEIOT website and bodies charged with monitoring or inspection tasks in application of EU law (e.g. internal audits, Court of Auditors, European Anti-fraud Office (OLAF)).
Data will only be transferred to third countries or international organisations when sharing information with International Synergies Ltd, our UK project partner that will act as a data processor. When sharing any data with them, we will comply with applicable data protection requirements and take appropriate safeguards to ensure the security and integrity of your personal data.
The processing of your data will not include automated decision-making (such as profiling).
Your personal data will be kept for the duration of the CircLean project.
You have the right to access your personal data and to request your personal data to be rectified, if the data is inaccurate or incomplete; where applicable, you have the right to request restriction or to object to processing, to request a copy or erasure of your personal data held by the data controller. If processing is based on your consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of the processing based on your consent before its withdrawal.
Your request to exercise one of the above rights will be dealt with without undue delay and within one month.
If you have any queries concerning the processing of your personal data, you may address them to DG GROW Directorate C: Industrial Transformation and Advanced Value Chains
You shall have right of recourse at any time to the DG GROW Data Protection Officer at GROW-DATA-PROTECTION-COORDINATOR@ec.europa.eu to the European Data Protection Supervisor at https://edps.europa.eu.
Version June 2020
 Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC (OJ L295/39 of 21.11.2018).
 Act of Establishment: Commission Implementing Decision C(2013/771/EU) of 17 December 2013 establishing the ‘Executive Agency for Small and Medium-sized Enterprises’ and repealing Decisions 2004/20/EC and 2007/372/EC.