Protecting your privacy is of the utmost importance to the China IPR SME Helpdesk (‘Helpdesk or ‘us’). The Helpdesk is committed to respecting and protecting your personal data and ensuring your rights as a data subject. All data of a personal nature that identifies you directly or indirectly will be handled fairly, lawfully and with due care.
This processing operation is subject to Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC.
1. What is the nature of the processing operation and what do we do with your data?
Personal data is processed for the purposes of communication/transparency to provide and make available information on the projects’ activities/initiatives/events, etc.
Based on the above, we use your data to:
- Compile project statistics for project reporting purposes;
- If you are using the Helpline service, to ask for more information about your query in the case that clarifications are needed; to send an answer to your IP question; ask your feedback about the usefulness of the answers provided; and in limited instances, to follow up on your case; use of pictures and/or audiovisual items on social media and on the project’s website;
- If you chose to subscribe to the Newsletter, to send you a Mailchimp-based Newsletter via e-mail;
- If you attend to a training session or awareness-raising event, to send you information about the services or event as well as a follow-up email with useful materials (when relevant);
2. What personal data do we process?
The categories/types of personal data processed are the following:
- Name and Surname
- Country of origin
- Company name (if any)
- Type of organization
- Preferred gender pronoun
- Website address
- HQ location
- Number of employees
- Company annual turnover
- Company annual sales
- Countries of scope
- Official photos of events
- Multimedia items showing the people participating in official events, their image, voices, statements, opinions, etc.
3. Who is responsible for processing the data?
The data controller of the processing operation is Head of Unit A.1 COSME, representing the Executive Agency for Small and Medium-sized Enterprises (EASME), which acts under the powers delegated by the European Commission.
Personal data is processed by SD Policies Limited, Development Solutions Europe Ltd, the European Chamber of Commerce in China, University of Alicante.
4. Who has access to your personal data and to whom is it disclosed?
Images and other audiovisual items are published on the websites and social media and available to the general public.
Other personal data is only accessible by the Helpdesk and the controller, as well as the bodies charged with monitoring or inspection tasks in application of EU law (e.g. internal audits, Court of Auditors, European Anti-fraud Office (OLAF)) and other EU institutions on a need-to-know basis. Personal data is not used for any other purposes or disclosed to any other recipient nor third countries or international organisations.
5. How do we protect and safeguard your information?
We take appropriate technical and organisational measures to safeguard and protect your personal data from accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.
All personal data related to the projects’ procedures is stored in secure IT applications according to the Office’s security standards, as well as in specific electronic folders accessible to authorised recipients only. Appropriate levels of access are granted individually only to the abovementioned recipients.
The database is password-protected under a single sign-on system and connected automatically to the user’s ID. E-records are held securely to safeguard the confidentiality and privacy of the data therein.
6. How can you access your personal information and, if necessary, correct it? How can you receive your data? How can you request that your personal data be erased, or restrict or object to its processing?
You have the right to access, rectify, erase, and receive your personal data, as well as restrict its processing or object to the same, as provided in Articles 17 to 24 of Regulation (EU) 2018/1725.
We want to make sure that your personal information is accurate and up to date. You may ask us to correct or remove information you think is inaccurate. You also have the right to have your data completely removed from our database. To modify or remove your personal information completely from our website and database, please send an email to:
Your request will be answered without undue delay, and in any event within 1 month of receipt of the request. However, according to Article 14(3) of Regulation (EU) 2018/1725, this period may be extended by up to 2 months where necessary, taking into account the complexity and number of requests. The Office will inform you of any such extension within 1 month of receipt of the request, together with the reasons for the delay.
Alternatively, note that you can log in to your profile and edit your own data at any time.
Finally, it may be possible that the China IPR SME Helpdesk webpage contains links to other sites whose data processing practices are different from ours. Neither the consortium partners nor the European Union are responsible for the privacy practices implemented on any of these external sites. You should be aware of this when leaving the China IPR SME Helpdesk website and we encourage you to read the privacy statements on such external websites, as we have no control over the information that is submitted to or collected by these third parties.
We also use third-party platforms to carry out some of our services for you and you can find their privacy policies separately on their website, namely:
7. What is the legal basis for processing your data?
Personal data is processed in accordance with Article 5(1)(a) of Regulation (EU) 2018/1725, which states that ‘processing is necessary for the performance of a task carried out in the public interest’.
Personal data is collected and processed in accordance with the contract signed between the Project Contracting Authority, namely the European Commission and the Executive Agency for Small and Medium-sized Enterprises (EASME)., and the University of Alicante, Development Solutions Europe Ltd., SD Policies Limited, and the European Chamber of Commerce in China.
8. How long can data be kept?
Personal data will be kept only for the time needed to achieve the purpose for which it is processed.
All data related to the project will be stored for the duration of the project. This is normally 2 years. Information will be shared on the website and in the media and is stored for as long as the European Commission considers it appropriate.
In the event of a formal appeal, all data held at the time of the appeal will be retained until the completion of the appeal process.
9. Contact information
Should you have any queries on the processing of your personal data, please address them to the data controller, Head of Unit A.1 COSME,
10. Links to other websites