Privacy policy


Welcome to the EPAD website! The EPAD Consortium partners have made Noemi Concept responsible for the hosting and maintenance of this website. We want to inform you how we, or our service providers, collect, use, and disclose your information, including personal information, via this website. We advise you to go through the text of this privacy policy before you visit this website. This website is intended for use by residents of the European Economic Area.

By providing personal information to us or by using the website, you agree to the terms and conditions of this privacy policy, unless where your explicit and separate consent is required and asked for.

Active gathering of personal data

Pages of the website that include forms may ask you to submit following personal data: your e-mail address, your name, your phone number, and your organisation, in order for you to benefit from following specified features: newsletter subscriptions and to request further information. The provision of those personal data can be a condition for enjoying the specified features of this website.

In case the above mentioned personal data is gathered based on your consent, your active permission to process your personal data for the purposes indicated in this Privacy Policy will be asked in the respective areas of our website.

Passive data collection

As you navigate around the website, certain data can be passively collected (that is, gathered without you actively providing the information), using various technologies. We and our service providers may passively collect and use information in a variety of ways, including:
Your IP Address: An Internet Protocol (IP) address is a number that is attributed to a computer by the internet service provider in order to grant access to the internet. Normally, an IP address is generally dynamic (it changes each time connection is made with the Internet) and not static. We use IP Addresses for purposes such as calculating website usage levels, helping diagnose server problems, and administering the website.
Using Cookies, including “session cookies” and “persistent cookies”: A cookie is a piece of information sent by a website to a web browser in order to enable the website to remember certain information and preferences of previous users for future use. “Session cookies” are temporary cookies that are deleted as soon as the visitor leaves his web browser or switches off his computer. Session cookies are used to improve browsing on websites and to collect static information. “Persistent cookies” are stored on the hard disc and stay there unless they are deleted. Persistent cookies are used in order to invoke previously provided information (such as passwords), to retrieve which components of the website visitors find the most valuable and to adapt the website to the visitor’s preferences. You will be asked when visiting our website to accept the use of cookies. However, if you do not accept them, you may experience some inconvenience in your use of the website. To learn more about cookies, please visit
Using internet labels: Internet labels, (also known as single-pixel GIFs, clear GIFs, invisible GIFs and 1-by-1 GIFs) are smaller than cookies and provide certain information on the server such as the IP address and the web browser type of the visitor’s computer.
Using Navigation data: Navigation data (log files, server logs and click stream data) are used by the system administrator to improve the content of the website, for market research and in order to provide information to the visitor.
Through your browser: Certain information is collected by most browsers, such as your Media Access Control (MAC) address, computer type (Windows or Macintosh), screen resolution, operating system version, and Internet browser type and version. We may collect similar information, such as your device type and identifier, if you access the Site through a mobile device.
Device Information: We may collect information about your mobile device, such as a unique device identifier.

How we process data

We may use data from or about you in view of following purposes:

  • to respond to your inquiries;
  • to fulfill your requests, such as sending you newsletters or e-mail alerts (in which case your explicit consent will be asked);
  • to send you important information regarding our relationship with you or regarding the website, changes to our terms, conditions, and policies and/or other administrative information;
  • for IT purposes, such as enhancing our website and identifying website usage trends and other IT related purposes as indicated under the section on ‘Passive Data Collection’ above.

We will only process the collected data for the purposes as described above and will not further process the data in a manner that is incompatible with those purposes. The data will only be processed in so far necessary to achieve the above mentioned purposes. Your data will also be kept up to date where necessary (for which your input may be required and asked).

The personal data will be processed in, fairly, in a transparent manner and lawfully, meaning that at least one of the following legal bases applies:

  • We have received your explicit consent for the processing of your personal data;
  • We are obliged to process your personal data according to applicable law or court order;
  • The personal data are processed in view of EPAD’s or the Controller’s purposes of legitimate interest as indicated above.

If the processing of your personal data is based on your consent, we want to inform you of the fact that you can withdraw your consent at any time by sending an e-mail to or by using our contact form.

In so far your personal data are collected, your personal data will not be kept longer than is necessary for the purposes for which the personal data are processed or is required by law.

Where consent is asked from you and you are a child is below the age of 16 years, your holder of parental responsibility needs to give or authorise such consent.

We may disclose information collected through the website in so far necessary to achieve the above mentioned purposes:

  • to the EPAD Consortium members (which are listed on the ‘partners’ section on our website), for the purposes as listed above;
  • to our service providers – processors – who provide services such as website hosting and moderating, mobile application hosting, data analysis, IT services, e-mail and direct mail delivery services, auditing services, and other services, in order to enable them to provide services;as we believe to be necessary, if permitted or required by applicable law.

In transferring data to processors we will conclude a contract with such processor setting out the subject matter and duration of the processing, the nature and purpose of the processing, the type of personal data and categories of data subjects and the obligations and rights of the Controller. We will only use processors providing sufficient guarantees to implement appropriate technical and organizational measures so that the processing of the data meets the legal requirements.

Your personal data will not be transferred to other third parties unless required or allowed by applicable law.

If the processing of your personal data would take place in a third country (i.e. a country outside the European Economic Area) which does not offer an adequate level of protection, this processing shall be carried out in accordance with the requirements and appropriate safeguards under the applicable data protection legislation, such as, entering into EU standard contractual clauses.

With your explicit consent (in so far required), we may also use and disclose information collected through the website in other ways and for any other purpose. In addition, we may use and disclose information that is not considered to be personally identifiable and thus not personal data for any purpose.

Your rights with regard to your personal data

You have the right to review, correct, update, or delete the personal data that you have provided via the website. This can be done by contacting us through sending an e-mail to or by using our contact form.

Furthermore, you can also object the processing of your personal data by the controller or any of our processors. This can also be done by sending an e-mail to or by using our contact form.

You also have the right to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller or any processor to which your personal data have been provided, if and to the extent provided and allowed under applicable law.

Finally, you have a right to lodge a complaint with the competent supervising authority if you believe your personal data are or have not been processed in a way that is compliant with applicable law


in case of a personal data breach, we will notify the personal data breach to (i)  the competent supervisory authority without undue delay and, where feasible, not later than 72 hours after having become aware of it, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons and (ii) you, the data subject without undue delay if the personal data breach is likely to result in a high risk to the rights and freedoms of natural persons.

Updates to this privacy policy

The EPAD Consortium has the right to change and update this Privacy Policy. Changes and updates will be announced on our website. Any changes or updates to this privacy policy will become effective when we post the revised privacy policy on the website. Your use of the website following these changes means that you accept the revised privacy policy (except where your explicit consent is required – in which case it will be asked). This policy was last updated on 3rd June 2024.

Contacting us

If you have any questions about this privacy policy, please contact us by sending an e-mail to or use our contact form.