PROTECTION OF YOUR PERSONAL DATA

Table of Contents

1.       Introduction

2.       Why do we process your data?

3.       Which data do we collect and process?

4.       How long do we keep your data?

5.       How do we protect your data?

6.       Who has access to your data and to whom is it disclosed?

7.       What are your rights and how can you exercise them?

8.       Contact information

9.       Where to find more detailed information

  1. Introduction

This privacy statement explains the reason for  the processing, the way we collect, handle and ensure protection of all personal data provided, how that information is used and what rights you may exercise in relation to your data (the right to access, rectify, block etc.).

The European institutions are committed to protecting and respecting your privacy. As this service/application collects and further processes personal data, Regulation (EC) N°45/2001[1], of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community institutions and bodies and on the free movement of such data, is applicable.

This statement concerns data on users of the Technology and Innovation Monitoring (TIM) tool developed by the Joint Research Centre (JRC) of the European Commission. TIM provides its users with a technology monitoring and landscaping capability.

 

2.       Why do we process your data?

Purpose of the processing operation: The head of JRC Unit I.3 (referred to hereafter as Data Controller), collects and uses your personal information. The overall purpose of the Technology and Innovation Monitoring (TIM) processing is to let users examine the interplay between different aspects of innovation in specific fields over time (from 1996 onwards). To do this, the system uses data from various separate sources about patent submissions, scientific publications, and R&D grants.

Data about registered users of TIM are used for user relationship only. The processing is lawful under Article 5(a) of Regulation 45/2001, which states that personal data may be processed only if "processing is necessary for the performance of a task carried out in the public interest on the basis of the Treaties establishing the European Communities or other legal instruments adopted on the basis thereof or in the legitimate exercise of official authority vested in the Community institution or body or in a third party to whom the data are disclosed", and, for registered users, under Article 5(d) of Regulation 45/2001, which states that personal data may be processed only if "the data subject has unambiguously given his or her consent".

Art. 1 of Commission Decision 96/282/Euratom entrusts the JRC with a role to "carry out the Community's research programmes and other tasks entrusted to it by the Commission".

Regulation (EU) No 1291/2013 of the European Parliament and of the Council of 11 December 2013 establishing Horizon 2020 - the Framework Programme for Research and Innovation (2014-2020) states that "the Joint Research Centre (JRC) shall contribute to the general objective and priorities of Horizon 2020 with the specific objective of providing customer-driven scientific and technical support to Union policies".

Council Decision of 3 December 2013 establishing the specific programme implementing Horizon 2020 - the Framework Programme for Research and Innovation (2014-2020); Successive Commission Implementing Decisions on the adoption of multi-annual work programmes under Council Decision 2013/743/EU and Council Regulation (Euratom) No 1314/2013, to be carried out by means of direct actions by the Joint Research Centre, including C(2017) 1288 for the period 2017-2018 and C(2018) 1386 for the period 2018-2019. In the 2018-2019 Workprogramme the TIM activities are described within Project 213, TMA-CC.

 

  1. Which data do we collect and process?

The following personal data are collected and further processed:

for authors of scientific publications, from Scopus: name, surname, affiliation;

for inventors of patents, from Patstat: name, surname, address, affiliation;

for persons reported in the news, from EMM:  persons mentioned multiple times by different online news media (politicians, bankers, journalists etc.);

for all users: the IP address from which the system is accessed and the pages accessed are logged for statistical and debugging purposes; and

for registered users: contact details (E-mail address, first name, surname), the set of searches which the user has created on the system (e. g. Ebola, microplastics)

 

  1. How long do we keep your data?

The controller only keeps the data for the time necessary to fulfil the purpose of collection or further processing. In particular, the retention times are as follows:

Logfiles are retained for one year to calculate aggregated anonymized user statistics.

An index allowing searches of the text of scientific publications, patents, research proposals and news articles is retained indefinitely to support research into scientific literature, patent literature, media, research proposals and natural language processing and to study long-term trends of topics of relevance to the European Union.

  1. How do we protect your data?

All data in electronic format (e-mails, documents, uploaded batches of data etc.) are stored either on the servers of the European Commission or of its contractors; the operations of which abide by the European Commission’s security decision of 16 August 2006 [C(2006) 3602] concerning the security of information systems used by the European Commission;

The Commission’s contractors are bound by a specific contractual clause for any processing operations of your data on behalf of the Commission, and by the confidentiality obligations deriving from the transposition of Directive 95/46/CE.

 

  1. Who has access to your data and to whom is it disclosed?

Access to your personal data from registered accounts is provided to authorised staff according to the “need to know” principle. Such staff abide by statutory, and when required, additional confidentiality agreements.

 

  1. What are your rights and how can you exercise them?

According to Regulation (EC) n°45/2001, you are entitled to access your personal data and rectify and/or block it in case the data is inaccurate or incomplete.  You can exercise your rights by contacting the data controller, or in case of conflict the Data Protection Officer and if necessary the European Data Protection Supervisor using the contact information given at point 8 below.

 

  1. Contact information

If you have comments or questions, any concerns or a complaint regarding the collection and use of your personal data, please feel free to contact the Data Controller using the following contact information:

The Data Controller:

·         Head of Unit I.3, Text and Data Mining, of the Joint Research Centre of the European Commission

·         JRC-TMA-CC@ec.europa.eu

 

The Data Protection Officer (DPO) of the Commission: DATA-PROTECTION-OFFICER@ec.europa.eu

The European Data Protection Supervisor (EDPS): edps@edps.europa.eu.

 

  1. Where to find more detailed information?

The Commission Data Protection Officer publishes the register of all operations processing personal data. You can access the register on the following link : http://ec.europa.eu/dpo-register

This specific processing has been notified to the DPO with the following reference: DPO-4062-DGJRC



[1]  Regulation (EC) N° 45/2001 (OJ L8 of 12/01/2001).