Data protection

The protection of your personal data is of particular concern to us. With this privacy policy, we would like to inform you about how we process your personal data when you visit this site. We attribute great importance to the protection, accuracy and integrity of your personal data. Your use of the website is voluntary. If you do not want your data to be processed in accordance to this policy, please don't use the website. This privacy policy may be updated or amended by ANI – National Innovation Agency, S.A. at any time.

Basic information on data processing and legal basis

The innovation platform of the Portuguese Competence Centre for Innovation Public Procurement (PROCURE+i) (hereinafter referred to as the "website") is operated at Agência Nacional de Inovação, S.A, Campus do Lumiar, Ed. O,1º, Estrada do paço do Lumiar 1649-038 Lisboa. The responsible party within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is ANI – National Innovation Agency, S.A. If you have any questions about the protection and security of your data or wish to assert your rights and claims in relation to data protection (e.g. object to the use of your data or wish to correct it), please contact us via our contact page (apoio.cpi@ani.pt).

For the terms used, such as "personal data" or the respective "processing", we refer to the definitions in Article 4 of the GDPR.

We only process users' personal data in accordance with the relevant data protection regulations. This means that user data is only processed if there is a legal permission. That is, in particular, if data processing is necessary for the provision of our contractual services (e.g. order processing) and online services, or if it is required by law, or if users have given their consent, as well as on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic functioning and security of our online offer within the meaning of Art. 6(1) GDPR, in particular in the case of measuring reach, profiling for advertising and marketing purposes, as well as collecting data on access to and use of the services of third-party providers).

Security measures

We take organizational, contractual and technical security measures in accordance with the latest technology to ensure compliance with the provisions of data protection laws and thus protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.

Security measures include, in particular, the encrypted transmission of data between your browser and our server.

Provision of services

We process population data (e.g. names, addresses and contact details of users), data (e.g. services used, names of contact persons) for the purpose of fulfilling our obligations and services under Art. 6 para. 1 lit. b) GDPR.

Users can optionally register on our website to submit their solution as a company to a challenge. On the other hand, public entities may announce a challenge. During the registration process, users are provided with the required mandatory information. User accounts are not public and cannot be indexed by search engines. If users cancel their user account by contacting the PROCURE+i Competence Centre, their user account details will be deleted, subject to the retention necessary for commercial or tax reasons, in accordance with Art. 6 para. 1 lit. c) GDPR. We reserve the right to irretrievably erase all user data stored during the term of use of the platform.

As part of the registration and/or renewal of registration, as well as the use of our online services, we store the IP address and the moment of the respective action of the user.

We process usage data (e.g. the web pages visited on our website, interest in our services) and content data (e.g. entries in newsletter forms or user profiles) for advertising purposes in a user profile, for example, in order to display information to the user based on the services they have used to date.

Contact

When you contact us (e.g. by email, registration, telephone), your data is processed for the purpose of processing the contact request in accordance with Art. 6 para. 1 lit. b) GDPR.

Collection of access data, log files and cookies

We collect data about each access to the server on which this service is located (so-called server log files) on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f) GDPR. Access data includes the name of the website accessed, file, date and time of access, amount of data transferred, successful access notification, browser type and version, user's operating system, referring URL (the page visited previously), the IP address and the requesting provider.

Server logs are stored for the purposes of checking system security, technical administration and optimisation of the website. This data is transmitted to the data protection authorities in the event of a hacker attack. The data will not be transmitted to third parties. Server logs are stored for a maximum of 90 days.

Cookies are information that is transmitted from our web server or third-party web servers to users' web browsers and stored there for later retrieval. Cookies can be small files or other types of information storage. We use "session cookies" (e.g. PHPSESSID), which are stored only for the duration of the current visit to our website (e.g. to allow the storage of your login status). A randomly generated unique identification number, the so-called session ID, is stored in a session cookie. In addition, a cookie contains information about its origin and storage period. These cookies cannot store any other data. Session cookies are deleted when you have finished using our website and log out or close your browser, for example. If users do not want cookies to be stored on their computer, they are asked to disable the corresponding option in their browser's settings. Stored cookies can be deleted in the browser's settings. The deletion of cookies may lead to functional restrictions of this website.

Range analysis with Matomo (formerly PIWIK)

Based on our legitimate interests (i.e. interest in the analysis, optimisation and economic functioning of our website within the meaning of Art. 6(1)(f) of the GDPR), we use Matomo, an open source software for the statistical evaluation of user accesses. The user's IP address is shortened before it is stored. Matomo uses cookies that are stored on the user's computer and that allow an analysis of the use of this website by the user. Pseudonymous user profiles can be created from processed data.

The information generated by the cookie about your use of this website is stored on our server and is not transmitted to third parties.

Google Tag Manager

This website uses Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags through an interface. The tool itself (which implements the tags) is a cookie-less domain and does not collect any personal data. The tool triggers other tags, which in turn can collect data. Google Tag Manager does not access this data. If a domain or cookie-level opt-out has been made, it remains in effect for all tracking tags that are implemented with Google Tag Manager.

Rights of users

Users are generally entitled to rights of information, correction, deletion, restriction, data portability, revocation and objection. If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, please contact us immediately. We will strive to clarify all open questions. However, you can also file a complaint with the supervisory authority, namely with the Portuguese Data Protection Authority (CNPD) through the online form provided by that entity for this purpose.

Contact:

CNPD - Comissão Nacional de Proteção de Dados

Av. D. Carlos I, 134, 1º 1200-651 Lisboa

T (+351) 213 928 400

F (+351) 213 976 832

Email: geral@cnpd.pt

Website: www.cnpd.pt/en

If you have any questions about data protection, please contact: info@ani.pt

Right to object

As a user of the website, you have the right to refuse in writing the storage of your personal data, in which case your data will be deleted, unless there is a legal obligation to store the data.

Changes to the privacy policy

We reserve the right to change the privacy policy in order to adapt it to changing legislation or in case of changes to the service. However, this only applies with regard to statements about data processing. Whenever the consent of the user is required or in the components of the data protection policy regarding the regulation of the contractual relationship with users, changes will only be made with the consent of the users.

Users will be asked to regularly inform themselves about the content of the privacy policy.

Contact details

You can contact us through the following contacts:

Agência Nacional de Inovação, S.A

PROCURE+i Competence Centre

Campus do Lumiar, Ed. O,1º, Estrada do paço do Lumiar1649-038 Lisboa

T (+351) 214 232 100

F (+351) 214 232 101

Email: apoio.cpi@ani.pt