Privacy Policy

Privacy Policy

By using this website, you may disclose various pieces of information including those that are considered as personal data. This Privacy Policy provides a simple overview of what happens to your personal data when you visit this website as well as relevant information about your data protection rights.

This Privacy Policy is important to you to understand how your personal data is collected, used, or otherwise processed when you use this website. Please be aware that this Privacy Policy applies to your personal data processing on this website, and not to data processing that may occur on other websites or in other circumstances by the PHOENI2X project or by other parties.


When your personal data is processed, you are considered to be data subject and you are entitled to exercise your rights guaranteed by EU Data Protection Law as explained in this Privacy Policy. Considering that we determine the purposes and means of processing personal data on this website we are legally considered to be data controller over your personal data. Being a data controller provides us with the opportunity to process your personal data, but also obligates us to protect it in the way regulated by the EU Data Protection Law, particularly the General Data Protection Regulation (‘GDPR’), the Data Protection Law of Italy and this Privacy Policy.

We are the Universitat Politècnica de Catalunya (UPC). We are one of the partners of the PHOENI2X Project (Grant agreement ID: 101070586). This website is completely devoted to PHOENI2X project. One of UPC duties in this project is to manage this website. Thus, we should be considered as a data controller with regard to processing personal data of the website users and visitors. We are based at the following addresses:

C. Jordi Girona, 31, 08034 Barcelona, Spain


When you use our website, we may process electronic identification data such as an IP address of the device you use to access this website, the browser, type of device, and operating system you use, your time zone, date and time of access and similar. This information is necessary to be processed in order to properly display our website, to ensure the stability and security of the connection and the system. Under no circumstances we do not use this data for the purpose of drawing conclusions about you.

We may process your email address when you opt-in to receive newsletter emails from us. You may opt-out from newsletter emails whenever you want by clicking on the unsubscribe link available at the bottom (footer) of any email that you have received from us.

Our website provides access, through the links displayed at the top of each page to the relevant content at social media (Facebook, Twitter, LinkedIn).  We manage our social-media accounts by ourselves. However, if you would like to use our social media accounts, we suggest you familiarize yourself with the privacy information of social media platforms.


We also use Cookies on this website.  The use of cookies may help us to improve the website navigation, analyze on-site behavior or enable advertising activities. You can find out more about the use of cookies in our Cookie Policy.


We may share your data with third parties. Our project partners and the European Commission staff relevant to the realization of the PHOENI2X project may receive your data if it would be necessary.  Also, we may share your data with entities who might help us to regularly provide and further develop our website (e.g., entities that provide analytics, maintenance, development services). For the sake of executing tasks previously agreed upon, the third parties are given the right to process only necessary information. The purpose of data processing, how it will be carried out and the selection of data that will be processed remain our exclusive rights.

In addition, we may share your data with public agencies such as law enforcement agencies, where we have the legal obligation to do so. In case where it would be necessary, we will inform you about sharing your data with third parties.


We do not collect or retain your personal data longer than is necessary for the purposes explained above.

We use technical and organizational measures in accordance with good practice to ensure appropriate security of your personal data against accidental or unlawful loss, alteration, theft, unauthorized disclosure or access, unauthorized use and against all other unlawful forms of processing. The information provided to us by you will be stored in the main information system and access to information will be allowed on a need-to-know basis.

We will process your personal data according to the GDPR principles while serving the specific processing purposes.


You as a data subject may exercise the following rights under the GDPR:

  • The right of access. You have the right to request for access to any of the information relating to you.
  • The right to have personal data rectified. You have the right to request correction of your personal data that you find inaccurate.
  • The right to data portability. You have the right to be provided with a copy of the information we have about you in a structured, machine-readable and commonly used format.
  • The right to restrict processing. You have the right, under limited circumstances, to request that we limit our use and processing of your personal data.
  • The right to withdraw consent. You have the right to withdraw your consent at any time where we rely on your consent to process your personal information.
  • The right to be forgotten. You have the right to request that we erase your personal data that we hold.
  • The right to object to processing. You have the right, under limited circumstances, to object to our processing of your personal data.
  • The right to lodge a complaint. You have the right to lodge a complaint with your local or Italian Data Protection Authority if you feel that your rights are in violation.

The relevant data protection authority in EU Member States might be determined either by your place of habitual residence, or the place where the alleged infringement emerged. As we are established in Spain, you may choose to contact the Spanish Data Protection Authority.


We keep our Privacy Policy under regular review to make sure it is up to date and accurate. However, this Privacy Policy may be modified from time to time.

Essential modifications are those that affect your rights, obligations and state with regards to the protection and processing of your personal data. The essential modifications may include but are not limited to deployment of new technologies that would be used on the website and processing your data for new purposes. If we make essential modifications to this Privacy Policy, we will give you the opportunity to review the changes before they become effective.

Minor modifications are those that do not impact your rights, obligations and state with regards to the protection of your personal data. These types of modifications may include, but are not limited to, structure, organizational and grammatical changes to this Privacy Policy in order to make our policy easier to read and understand.

This Privacy Policy is effective from 1st September 2022.