LAST UPDATE: 12/05/2023

1. Who we are:

This privacy policy governs the use of your personal data by FrontAg Nexus project – this project has received funding from the European Union’s Horizon 2020 Research and Innovation Programme under grant agreement 2242.

NOTE: If you want information on how we process personal data via cookies on our Website, you are kindly referred to our Cookie Policy.

CONTACT DETAILS

Organisation name: reframe.food

Address: Leontos Sofou 20, 57001 Thermi, Thessaloniki – Greece.

Phone: +30 2310 462 885.

E-mail:

DPO: Agapi Tsakogianni, .

2. How we collect your personal data

We collect your personal data both directly and indirectly:

Directly. We obtain personal data directly from individuals in a variety of ways, including but not limited to the following cases:

Indirectly. We obtain personal data indirectly about individuals from a variety of sources, including:

3. What types of data we collect?

We only collect the data that are necessary for the smooth implementation of our project. These data fall into the following categories:

4. Bases of lawful processing

We process personal data on the following legal bases:

Legal obligations – for processing activities required for compliance both with applicable national and European legislation as well as with the specific legal and regulatory framework of the Horizon 2020 Framework Programme for Research and Innovation of the European Union.

Consent – for processing activities such as organization of surveys and interviews, completing of questionnaires and dissemination of project’s results.

Contractual obligations – for processing activities such as reporting to the European Commission and complying with project’s publicity obligations.

5. What we do with your personal data

We process your personal data with the purpose of:

6. How we secure your personal data when we process it

We continuously apply a personal data risk assessment process to identify, analyse, and evaluate the security risks that may threat your personal data. Based on the results of this risk assessment, we define and apply a set of both technical and organizational measures to mitigate the above security risks, including but not limited to:

7. Do we share personal data with third parties?

We may occasionally share personal data with trusted third parties to help us deliver efficient and quality services. When we do so, we ensure that recipients are contractually bound to safeguard the data we entrust to them before we share the data. We may engage with several or all the following categories of recipients:

8. Do we transfer your personal data outside the European Economic Area?

We do not own file servers located outside the European Economic Area (EEA). However, we may use cloud and / or marketing services from reputable providers such as SharePoint, DropBox, MailChimp, Google, etc., situated both inside and outside the EEA. We always check that such providers comply with the relevant GDPR requirements before start using their services.

9. Your rights

You have the following rights regarding our processing of your personal data:

To ask us to do anything of the above, you can contact us by email: or . We will promptly examine your request against the relevant requirements of the laws and regulations governing privacy and personal data protection and we will answer the latest within 30 days after receiving your request. We will ask from you some kind of identification (e.g., photocopy of your identity card or passport) to avoid non-authorized reveal of your personal data. If, for reasons of complexity of the request or a multitude of requests, we are unable to respond promptly, we will notify you within 30 days of any delay, which in no case may exceed two months from the expiration of the 30-day deadline.

10. How long do we retain personal data?

We retain personal data to provide our services, stay in contact with you and to comply with applicable laws, regulations, and contractual obligations to which we are subject. Please note that we have an obligation to retain data concerning projects funded by the Horizon Europe Framework Programme for Research and Innovation of the European Union for up to five years after the end of the project (unless further retention is requested by auditors). After the expiry of the retention period, and unless further legitimate grounds for retention arise, we will dispose of personal data in a secure manner.

11. Children

We do not knowingly collect, use, or disclose information from children under the age of 16. If we learn that we have collected the personal information of a child under 16 we will take steps to delete the information as soon as possible. Please immediately contact us if you become aware that a child under 16 has provided us with personal information.

12. Revisions of this Privacy Policy

This Privacy Policy is valid from 12/05/2023 and replaces any other previous notifications that we had issued in the past regarding our personal data management practices. We reserve the right to revise this Policy at any time and we commit to notify you for such revisions if they significantly affect your interests or fundamental rights and freedoms as a data subject.

Contact