Contact us if you would like more information about the project.
Expertise, knowledge and trust are important pillars of HEATSTACK, so we are committed to giving you clarity on how we handle your personal data. In this Privacy Statement we inform you about our approach to data privacy and security we use for personal data.
- Contact details
This website is owned by the HEATSTACK project, whose consortium is constituted by the following partners:
- Senior Flexonics Crumlin (UK)
- PNO Consultants Ltd (UK)
- Sunfire GmbH (Germany)
- University of Birmingham (UK)
- ICI Caldaie S.p.A (Italy)
- Vaillant GmbH (Germany)
- Senior Flexonics Olomouc (Czechia)
The project coordinator is Senior Flexonics Crumlin. The website managing partner is PNO Consultants. To contact us, you can email firstname.lastname@example.org
- Application of this Privacy Statement
This Privacy Statement applies to all persons whose personal data HEATSTACK processes, with the exception of persons working on the project for the consortium. Personal data means any data that contains information about persons through which those persons are identifiable.
- Processing of personal data
By processing personal data, we mean one or more of: collecting, recording, organising, storing, updating, modifying, retrieving, consulting, using, providing by means of forwarding, distribution or any other form of posting, bringing together, linking together, and to protect, erase or destroy your personal data.
In compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679, we process personal data on the basis of one (or more) of the following legal grounds:
- on the basis of an agreement or in the run up to the conclusion of an agreement;
- legal obligation;
- in connection with a justified/legitimate interest.
We process personal data that you have provided to us, which includes that generated during your visit to our website and that which we have derived from other sources such as the project’s other online media platforms (Twitter and LinkedIn) or from business cards provided to consortium representatives when engaging with them about HEATSTACK. Personal data processed can also include that which is available on public business websites and other platforms.
We may use service providers (processors) for the processing of your personal data that only process personal data in our order. We conclude a processor agreement with these processors that meets the requirements set by the GDPR (EU) 2016/679.
- Usage of personal data
We use your personal data for different purposes but only as is necessary for:
- compliance with legal obligations;
- maintaining contact with you about HEATSTACK and answering your queries;
- performing and analysing research on stakeholder engagement with this project;
- improving our project information and carrying out targeted marketing campaigns; and
- improving and securing our website (heatstack.eu)
Therefore, your data may be used for the purpose of sending project updates (e.g. brochures, newsletters), invitations to events, and sending information you requested from us. We may also collate data including website user statistics.
- Security, sharing, storage and transfer of personal data
We protect personal data through technical and administrative security measures to minimise the risk of loss, misuse, unauthorised access, disclosure and modification. Examples of security measures we may use are software such as a virus scanner and firewalls, a secure internet connection, encryption of data and physical and administrative access controls to data and servers.
Sometimes, it is necessary to share your personal data with third parties. This depends on the circumstances of the case and is only as necessary in the handling of your file. We never sell your personal data to third parties and do not make automated decisions that could have significant consequences for you.
We do not store your personal data for longer than is strictly necessary for the execution of the purposes. If legal regulations apply to the storage, the personal data will not be kept longer than prescribed by law.
Under the GDPR (EU) 2016/679, personal data may only be passed on to parties outside the EEA if an appropriate level is guaranteed for the protection of the personal data or if a specific deviation applies. We may pass on personal data to a party outside the EEA accordingly if this is necessary for the execution of the data processing legal grounds listed in 3. and/or for the usage purposes listed in 4.
The following requirements of the GDPR (EU) 2016/679 and the e-Privacy Directive 2009/136/EC (ePR) thus apply to this website:
- Prior consent on other than strictly necessary cookies (ePR)
- Prior consent on personal data (GDPR)
- Personal data is transmitted to ‘adequate countries’ only (GDPR)
- Complaints and Questions
Every person can exercise certain rights with respect to their personal data on the basis of the law. This gives you the right to inspect, rectify and delete personal data. You can also object to the use of your data or request that this use be restricted. In certain cases, you can even request your data and take it to another party. For all these questions, please contact us on email@example.com
If you have complaints about how we handle your personal data, you can also contact us on firstname.lastname@example.org and if the issue cannot be resolved you can contact the relevant authority for an independent resolution.
- Changes to this Privacy Statement
Regulations and circumstances can change, so, as a result, there may be some changes in the personal data we request from you and the way in which we use your personal data. In that case, we will adjust this Privacy Statement. We therefore invite you to regularly check this webpage so that you are kept informed. In the event of major changes, we will also make you aware of this via our website.