Skip to main content

Data Protection Notice

This Privacy Notice is an integral part of the CEDAR website and its content, as made available by CEDAR, a Research and Innovation Action funded by the European Union’s Horizon Europe programme under Grant Agreement No. 101135577. CEDAR started on 1 January 2024 and ends on 31 December 2026. This Notice governs privacy-related matters and explains how Users of the CEDAR website may exercise their rights regarding their personal data, in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

By accessing, browsing, or using the Website (which includes, without limitation, any services, whether from CEDAR or third parties), User acknowledges that User has read, understood, and agrees to this Notice and to comply with all applicable laws and regulations. If the User does not agree with the information in this Notice or the compliance obligations, please do not use CEDAR’s Website.

This Data Protection notice informs you of what we expect to do with your personal information. It is structured in the following sections:

  • Data controller details
  • What information we collect, use, and why
  • Lawful bases and data protection rights
  • Where do we get personal information from
  • How long do we keep information
  • How to complain

Data controller details

The Lisbon Council asbl IPC-Residence Palace 155 rue de la Loi 1040 Brussels, Belgium

Contact email: marcello.verona@lisboncouncil.net

What information do we collect, use, and why

Personal data we collect

When you sign up for our newsletter or contact us, we collect the personal data you submit, namely your email address and your full name. We use this information solely to send you the requested updates or project information.

Data collected through website analytics

Cookies are short text files stored on a user’s device (such as a computer, tablet or phone) by a website. These can be used for the technical functioning of a website, for gathering statistics on the use of the website or for other purposes, such as providing a user with a more personalised experience, for example, to enable an online service to remember your user profile without you having to log in again.

You can visit our cookies page for more information about the types of cookies this website uses.

Our lawful bases for the collection and use of your data:

We process your personal data only when we have a valid legal basis under the General Data Protection Regulation (GDPR). For the purposes of research and communication within the CEDAR project, the lawful basis we rely on is consent. This means we process your data only when you have freely given your explicit and informed consent, such as when you subscribe to our newsletter or contact us directly, or you agree to our cookies.

You may withdraw your consent at any time without affecting the lawfulness of processing carried out before its withdrawal.

Purposes of Processing

We collect and use the above data only for specific purposes, and we will not process your personal data in a manner incompatible with these purposes. The purposes for which we process data are:

· Providing News and Updates: For subscribers, we use your contact details to send the email newsletter and relevant project updates that you have signed up for.

· Responding to Inquiries: If you reach out to us, we use your provided information to communicate with you and answer your questions or requests.

· Website Analytics and Improvements: We utilize Matomo analytics cookies to collect anonymized data on how users browse and interact with our site. This information helps us analyze traffic and user behavior to enhance the website's structure, content, and overall experience. We only gather this data with your prior consent, which you can revoke at any time.

· Compliance and Reporting: As a Horizon Europe project, we may use aggregated website statistics to fulfil our reporting obligations to the European Commission or project partners. For example, we might report the total number of site visitors or newsletter subscribers as part of project impact metrics. Any such reporting data is anonymised and does not identify individual users.

We will not use your personal data for any purposes other than those described above without informing you and obtaining your consent if require

Your data protection rights

CEDAR would like to ensure you are fully aware of your data protection rights. Every user is entitled to the following:

The right to access—You have the right to request copies of your personal data from CEDAR. We may charge you a small fee for this service.

The right to rectification - You have the right to request that CEDAR correct any information you believe is inaccurate. You also have the right to request CEDAR to complete information you believe is incomplete.

The right to erasure - You have the right to request that CEDAR erase your personal data under certain conditions.

The right to restrict processing - You have the right to request that CEDAR restrict the processing of your personal data under certain conditions.

The right to object to processing - You have the right to object to CEDAR processing of your personal data under certain conditions.

The right to data portability - You have the right to request that CEDAR transfer the data that we have collected to another organisation or directly to you under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at the email address mentioned above.

How long do we keep information?

Under the Horizon Europe model grant that funds the CEDAR project, every beneficiary must keep “records and other supporting documents” for five (5) years after the granting authority makes the final payment for the project. Article 20.1 of the Grant Agreement adds that, if an audit, investigation or other legal action is still running when that five-year clock expires, the documentation (and therefore the underlying personal data) must be stored until those procedures end.

Because the project ends on 31 December 2026 and the final payment is normally made approximately three months later (60 days for the final report plus 90 days for payment), the currently expected retention window extends to roughly 31 March 2032.

International Transfers and Safeguards

All personal data collected here is processed and stored within the European Union. No personal data is transferred to third parties or to any countries outside the EU/EEA. In particular, the analytics data are processed on EU servers and never leave the EU.

How to complain

If you are not satisfied with our response or believe your data-protection rights have been violated, you have the right to lodge a complaint with a supervisory authority in Belgium. The competent authority for matters relating to data protection in Belgium is the Belgian Data Protection Authority (Autorité de protection des données / Gegevensbeschermingsautoriteit).

You can contact the authority as follows: • Postal address: Rue de la Presse / Drukpersstraat 35, 1000 Brussels, Belgium • Telephone: +32 (0)2 274 48 00 •Email: contact@apd-gba.be • Website: https://www.autoriteprotectiondonnees.be

You may also find information on how to submit a complaint or make a request on the authority’s website.

The Commissioner provides guidance on data-protection issues and can investigate concerns about how organisations handle personal data.

Latest update: 29 Jun 2025