PRIVACY POLICY – PERSONAL DATA PROTECTION
(ENPOWER-BIH – Horizon Europe)
1. Introduction
This website is part of the European project:
ENPOWER-BIH – Grant Agreement Nº 101160253
Funded by the European Union Horizon Europe Research and Innovation Programme.
The protection of personal data is a priority for the project consortium. All personal data is processed in accordance with:
Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR)
Applicable national legislation
Horizon Europe dissemination and communication obligations
This policy applies exclusively to data collected through:
https://enpower-bih.eu/
2. Data Controllers (Joint Controllers – Art. 26 GDPR)
The personal data collected through this website are processed jointly by the partners of the ENPOWER-BIH consortium for the implementation of project activities.
Project Coordinator (Main Contact Point)
The University of Banja Luka
Bosnia and Herzegovina
All project partners act as Joint Controllers for processing activities strictly related to project communication and dissemination.
Website technical manager (Data Processor)
SiTeS / S-Innovations
Email: leonardo@sinnovations.org
The technical manager processes data only under instructions from the consortium.
3. Purpose of Processing
Personal data may be processed for:
dissemination of project activities and results
communication with stakeholders and interested parties
responding to contact requests
newsletter distribution
participation in project events and activities
reporting obligations to the European Commission
website maintenance and security
statistical analysis of website usage
Data will not be used for commercial marketing purposes.
4. Legal Basis for Processing (Art. 6 GDPR)
| Activity | Legal basis |
|---|---|
| Contact requests | Art. 6(1)(e) Public interest (EU funded project communication) |
| Newsletter subscription | Art. 6(1)(a) Consent |
| Website analytics | Art. 6(1)(a) Consent |
| Security & logs | Art. 6(1)(f) Legitimate interest |
| EU reporting obligations | Art. 6(1)(c) Legal obligation |
5. Categories of Data Collected
Automatically collected data
IP address
browser and device information
operating system
visited pages and navigation behaviour
access time and date
Data provided voluntarily
When contacting or subscribing:
name
email address
organisation (optional)
message content
6. Recipients of Data
Data may be accessed only by:
authorised project consortium members
European Commission services when required
contracted technical service providers acting as processors
Personal data will never be sold or used for commercial profiling.
7. Third-Party Services Used
Google Analytics
Used for anonymised statistical analysis after consent.
Mailchimp
Used exclusively to distribute project newsletters.
Subscription is voluntary and includes unsubscribe option.
8. International Data Transfers
Some providers (Google, Mailchimp) may process data outside the EEA.
Transfers rely on Standard Contractual Clauses approved by the European Commission.
9. Data Retention
| Data type | Retention |
|---|---|
| Contact requests | up to 12 months |
| Newsletter | until withdrawal of consent |
| Analytics | up to 14 months |
| Project documentation | up to 5 years after final EU payment |
10. Your Rights
You have the right to:
access your data
rectify inaccurate data
request erasure
restrict processing
object to processing
data portability
withdraw consent at any time
Contact:
leonardo@sinnovations.org
You may also lodge a complaint with your national supervisory authority.
11. Security
Appropriate technical and organisational measures are applied to protect personal data from loss, misuse or unauthorised access.
12. Updates
This privacy policy may be updated during the project lifetime to reflect legal or operational changes.
