Use of your personal data
For us, data protection is a very important issue, so we would like to inform you how we will use your personal data and what rights you can exercise under the applicable data protection legislation, EU Regulation 2016/679 (here also: “GDPR”) and Dutch privacy laws.
Any capitalized word which is not defined in this document is used in the meaning stated in GDPR. Please refer to the official text, which you can read in the following website: EUR-Lex -32016R0679 -EN -EUR-Lex (europa.eu)
Personal Data is every unique information about your person, regardless of the fact that your name or contact details are present. Personal Data is also, for example, an IP address, information about how you feel, the GPS coordinates of your location, information about your house, your personality evaluation, your performance assessment, your brain scan, and such.
Who controls your personal Data?
The person who controls your data and decides how your data will be used (Data Controller) is:
| Eindhoven University of Technology Department of Electrical Engineering Anne Roch A.Roch@tue.nl | The Data Protection Officer (DPO) privacy@tue.nl |
Joint Controllers:
- Universiteit Twente
- Philips Medical Systems Nederland Bv
- Katholieke Universiteit Leuven
- Universitat Politecnica de Catalunya
- Idneo Technologies S.L.
- Plux – Wireless Biosignals S.A.
How do we process your data?
Below you can find a table describing how we use your data.
The use of your data is called ‘processing’ and it includes, for example: reading, storing,
analyzing, sharing, and modifying your data.
For each category of information regarding you, below it is specified why we use (process)
your data (the purpose), why we are authorized to do so (the legal basis), and for how long we
will keep your data (retention period).
| We process these data: | With the purpose to: | With the legal basis of: | Storing them for: |
| Contact information | communicate with you | clear affirmative action from you (you send us your curriculum and other requested documents) | six months |
| Contact information | allowing you to exercise your rights | law | as long as it is required by laws and regulations |
| Health, Ethnicity | accommodate your special needs; respect the non- discrimination principle | clear affirmative action from you (if you write in your curriculum information about maternity leave, or disability); legitimate interest | six months |
| Curriculum data | perform evaluation in order to identify suitable candidates | legitimate interest | six months |
| Curriculum data | check if the eligibility criteria are met | legitimate interest | six months |
| Evaluation of CV, scores, gender | provide evidence that the requirements of the grant agreement were met | legitimate interest | 9 years |
| All your information | be compliant with laws and regulations, making our legal and privacy expert review the way we use your data | legitimate interest | as long as the research project is ongoing |
Profiling and automatic processing
We do not perform any automated profiling or decision-making process that could have an
impact on you.
For how long is my data stored? Can I change or delete my
data?
We store personal data as long as needed for the purpose described in this document, as
explained in the table above. We keep your data safe and secure through appropriate technical
and organizational measures.
You can at any time modify, update or delete your data when you ask us to do so by email to
privacy@tue.nl . We will comply with your request promptly and at the latest within 30 days.
When we don’t need your data anymore, we will delete them.
Further use, sharing or disclosing
Audit. We may share your data with the European Commission if an audit is performed. We
will pseudonymize the data of the candidates who were not selected.
Change of research team members. If students or researchers leave our team, for example
because they change job, we may need to replace them. In that case, some or all your personal
data may be shared or transferred to the new team members, provided that we will arrange all
the appropriate security and confidentiality measures. We will ensure that the leaving persons
don’t have access to your data anymore.
To protect our rights. We have the right to disclose your data to enforce, protect and defend
rights, property or safety of our group or third parties, including to enforce contracts. Please
contact your attorney if you are not sure of how your national legal system allows the exercise
of rights.
To comply with laws. We may disclose your data with our research data stewards, privacy
team members, ITC support staff, and other professionals providing consultancy on research
data compliance. If we receive a request for information or an inspection, we may disclose the
data, if this is required by mandatory applicable laws, regulations, rules, or it is ordered by any
public authority. Please check on your government website if you are not sure in what cases it
is allowed by law to disclose personal data.
Third-Parties
We collaborate with some companies/Institutions to perform our evaluation. Their role is to
provide us with their services, such as storage solutions.
Those third parties will use your data on our behalf and under our supervision (they are called
processors). These third parties may, for example, provide and help us with analysis, storage
services, archiving documents. Please see our entire list of partners and other processors at
privacy@tue.nl . When we hire a new processors we will sign an agreement (written contract)
according to which the processor may access and use your data only following our precise instructions, and can’t use your data for any other purpose. We also make sure that they have
the same level of security and confidentiality that we provide.
Where is my data transferred and stored?
We will not transfer your personal data outside the EU.
What are your rights?
Right to be informed. You have the right to be informed about how we use your information.
We do this through this document, through our website and by answering questions sent to us.
Right to access your data. You may request a copy of your data by email to privacy@tue.nl
if you would like to know what personal data we have about you. This copy of your personal
data can also be given to you in a common (machine-readable) format.
Right to rectification. You have the right to correct inaccurate or incomplete information about
yourself which you can do by email to privacy@tue.nl .
Right to erasure. You have the right to request deletion of your personal data, for example
when it is no longer necessary for us to process the data for the purpose it was collected, or
when you have withdrawn your consent, which you request by email to privacy@tue.nl .
Right to restrict processing of your data. If you believe your information is incorrect or you
believe we use your data unlawfully, you have the right to ask us to stop or limit the processing,
which you request by email to privacy@tue.nl .
Right to lodge a complaint. You have the right to file a complaint with your national data
protection authority, or the Dutch Data Protection Authority (lead authority). Complaints to the
Authority can be made at Klacht melden bij de AP | Autoriteit Persoonsgegevens or by sending
written communication to the Authority for the Protection of Personal Data:
Autoriteit Persoonsgegevens
PO Box 93374
2509 AJ DEN HAAG
Telephone number: (+31) – (0)70 – 888 85 00
Fax: (+31) – (0)70 – 888 85 01
Visiting address (only by appointment):
Bezuidenhoutseweg 30
2594 AV Den Haag
Further information about your rights can be found on our website at:
https://www.tue.nl/en/storage/privacy/
These rights can be exercised in accordance with GDPR by sending an e-mail to privacy@tue.nl
Age limit
The job call is addressed to individuals who are at least eighteen years of age.
Changes to this document
f we need to make changes to the way we use your data, we will immediately publish it in our
website: https://eternity-project.eu/ . If additional consent from you is required, we will ask you
to sign the new document.