1. Terms of Use

The TESSERA project website https://tessera-project.eu/  is owned by the TESSERA Consortium and managed by the Center for Security Studies (KEMEA), and the Centre for Research and Technology Hellas  (CERTH) as Consortium members.

The ‘Center for Security Studies’ (‘KEMEA’), is a legal person governed by private law, a scientific, consulting and research body established by the provisions of Law 3387/2005 (Government Gazette A’ 224) and is supervised by the Minister of Citizen Protection.

The Centre for Research and Technology Hellas (CERTH), is a legal entity governed by private law with non-profit status, supervised by the General Secretariat for Research and Innovation (GSRI) of the Greek Ministry of Development.

TESSΕRA (Towards thE dataSetS for the European secuRity dAta space for innovation) is a research project funded by the European Union’s ISF fund under grant agreement N° 101145802. The project started in March 2024 and ends in February 2026. The TESSERA consortium consists of 7 partners including law enforcement, research institutions, and industry experts in security and AI, as well as legal and ethical specialists across three EU countries (Bulgaria, Greece, Spain). The present website is part of the dissemination and communication activities undertaken by the TESSERA consortium with the aim to successfully communicate its research output on a rather innovative topic to a wider public and facilitate the creation of synergies with interested stakeholders. TESSERA is funded by the European Union. Views and opinions expressed in this Website are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Commission. Neither the European Union nor the European Commission can be held responsible for them.

This Website can provide all (hereafter referred to as ‘users’/‘visitors’) with information, participation, content delivery or content collection services regarding the project TESSERA, under the following terms of use . The use / visit of this website and / or its services is provided under the unconditional acceptance of the terms of use described herein. Navigating through this website, staying on this website, creating links to it (URL) or to its files / services, archiving / bookmarking it, constitute acceptance of its terms of use. For any complaint or request for information, the user may contact KEMEA at the email address: kemea@kemea.gr and/or CERTH at: m4d_ethics@iti.gr.

The use of the Website must be conducted solely for legitimate purposes and in a manner that does not restrict or impede its use by third parties. The user / visitor of this Website is obligated to use it in accordance with the law and the present terms of use. The user / visitor of the Website shall not commit any acts or omissions that may cause damage or malfunction and may adversely affect or endanger the provision of services provided through the Website to citizens.

The content of the Website, including (indicatively and not exhaustively) texts, graphics, images, videos, sounds, services, logos, software etc. (hereafter referred to as ‘Content’) is legally protected under national, EU and international Intellectual Property Rights Law. We reserve all rights of use and ownership of the Content, all copies created based on it, as well as all intellectual property rights and all other property rights pertaining to it.

We use all endeavours to ensure that the information and content that appears on the Website is as accurate, true and up to date as possible. It also provides the content (e.g. information, names, photographs, pictures, images, data, etc.) and the services made available through the Website ‘AS IS’. Under no circumstances can we be held liable for any legal claims, civil or criminal or damages of any kind (direct loss, special damage or indirect loss) to the user / visitor of this website.

The Website may contain links to third party websites for the sole purpose of providing information to the user / visitor. The referral to links belonging to third-party websites does not constitute an endorsement of their views and actions or the acceptance of the content they express, publish or post. Third parties -owners of the websites/responsible under the law- are solely responsible for the content of their websites or for any damage that may result from their use when the visitor/ user gains access to them.

We make all efforts to ensure the proper functioning of our network but we do not guarantee that our server operations will be uninterrupted or error-free, free from viruses, malicious software or other similar elements.

The terms and conditions of use of this website, as well as any amendment thereof, are governed by and supplemented by national and European law and the applicable international treaties. Any provision of these terms which is found to be against the above legal framework or is rendered invalid ceases to be valid and enforceable and shall be withdrawn from the present terms, without in any way undermining the validity of the remaining terms.

The terms and conditions of use of this Website constitute the overall agreement between the Consortium and the users / visitors of its webpages and services and bind solely them. No modification of the terms of use is taken into account and is part of this agreement, unless it is expressed in writing and is incorporated in the present Terms of Use. Unless otherwise stated on this Website, the above terms of use are immediately applicable in their entirety. We unilaterally reserve the right to modify, add, alter the content or services of the Website and its terms of use, whenever it deems necessary, without prior notice, through this website, always within the legal framework in force.

Last updated: 17/12/2024

1. Cookie Policy

The TESSERA project website https://tessera-project.eu/  is owned by the TESSERA Consortium and managed by the Center for Security Studies (KEMEA), and the Centre for Research and Technology Hellas (CERTH) as Consortium members.

The ‘Center for Security Studies’ (‘KEMEA’), is a legal person governed by private law, a scientific, consulting and research body established by the provisions of Law 3387/2005 (Government Gazette A’ 224) and is supervised by the Minister of Citizen Protection.

The Centre for Research and Technology Hellas (CERTH), is a legal entity governed by private law with non-profit status, supervised by the General Secretariat for Research and Innovation (GSRI) of the Greek Ministry of Development

We use cookies and analytics services to maintain and monitor the performance of the TESSERA website and to optimize our services, as well as to receive aggregate data that we can use in our dissemination reports for the European Commission.

1. What are Cookies?

Cookies are small text files with information, which are stored by the server of a website or online tool on the terminal device (computer, mobile phone, etc.) of a user while navigating it.

According to EU and national legislation, the storage of information or acquisition of access to stored information in the user terminal equipment is only permitted if the user has given their consent upon clear and extensive information. An exception to the obligation to obtain consent shall be the case of storage and access to information intended solely to ‘carrying out or facilitating the transmission of a communication over an electronic communications network or as strictly necessary for the provision of an information society service expressly requested by the subscriber or user’. Essentially, the user’s consent is not required for cookies that are technically necessary to make the connection to the website/online tool or to provide the Internet service.

Cookies can be installed by the provider of the website/online tool visited by the user (first party cookies) or by others through the provider of the website/online tool (third party cookies).

Cookies are not harmful to the user’s computer system or its files, and apart from the users themselves, only the website from which a particular cookie has been transferred to their computer can read, modify it or delete it. If the user / visitor does not wish their information to be collected through cookies, they can use the “reject” option on banner. It should be noted, however, that discarding cookies may result in making it more difficult or impossible to use certain parts of the Website, and / or that there is a change in its intended appearance and operation, as a permanent connection will be required. At all events, the user/ visitor can manage the collection of any cookies through the website’s settings.

2. How we use Cookies

TESSERA website uses, among others, strictly necessary cookies. Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data and are always active.

We also use functional cookies, which help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

Furthermore, we use analytical cookies to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc. The TESSERA website may use Google Analytics. Google Analytics is a free web analytics service offered by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (Google). Its purpose is to monitor, keep records of website traffic and report website usage statistics. You can read in detail how Google processes your data when you use sites or apps, which employ Google Analytics tools here. The TESSERA website may use Google Analytics exclusively with the extension “_anonymize Ip()”, which ensures anonymization of the IP address by shortening it. The IP address sent from your browser is not merged with other data by Google.

Moreover, we use performance cookies to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

Lastly, we use advertisement cookies to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

Please note that you will be asked to consent on the use and storage of these cookies.

3. How can Cookies be disabled?

Users can delete all Cookies that are already on their device by clearing the browsing history of their browser. This will remove all Cookies from all websites they have visited, but they may also lose some saved information (e.g. site preferences etc.). If they prefer to avoid the use of this site-specific Cookies, first they must disable the use of Cookies in their browser and then delete the Cookies saved in their browser associated with this website. They may use this option to prevent the use of Cookies at any time. If they would like to delete Cookies or instruct their web browser to delete or refuse Cookies, they can visit the help pages of their web browser.

 − For the Chrome web browser: https://support.google.com/accounts/answer/32050

− For the Internet Explorer web browser: https://support.microsoft.com/en-us/topic/how-to delete-cookie-files-in-internet-explorer-bca9446f-d873-78de-77ba-d42645fa52fc  

− For the Firefox web browser: https://support.mozilla.org/en-US/kb/clear-cookies-and-site data-firefox?redirectslug=delete-cookies-remove-info-websites-stored&redirectlocale=en US   

− For the Safari web browser: https://support.apple.com/guide/safari/manage-cookies-and website-data-sfri11471/mac  

For any other web browser, please visit your web browser’s official web pages.

4. reCAPTCHA

We may also use reCAPTCHA, a free service provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (Google). This tool, which may have different forms, helps protect websites from spam, malicious behavior and abuse, by checking whether the data entered on the website (for instance, via a contact form) is being entered by a human or by a bot, i.e. an automated program. This determination occurs based on the monitoring and analysis of the behavior of the website visitor. The collected data, which include user and browser information, such as cookies placed by Google, the number of clicks you have made on that screen and installed browser plug-ins, are forwarded to Google and stored in servers in USA. Data processing for the version of reCAPTCHA used by our website (reCAPTCHA v2 – “I am not a robot” sign and ticking box) is based on your consent under Art. 6 (1) (a) GDPR.

We shall contain such data in hardcopy and electronic files and / or databases in full compliance with data protection legislation, including security and confidentiality requirements based on the principles of good practice, proportionality and transparency regarding processing.

Last updated: 17/12/2024

1. Privacy Policy

The present privacy policy clarifies in a layered manner the processing of personal information of visitors to the TESSERA project website. The data processing on the TESSERA website is pursuant to Regulation (EU) 2016/679 (General Data Protection Regulation), Greek Law 4624/2019 on the protection of personal data and any other applicable law. The TESSERA project website https://tessera-project.eu/  is owned by the TESSERA Consortium and managed by the Center for Security Studies (KEMEA), and the Centre for Research and Technology Hellas (CERTH)  as Consortium members.

The ‘Center for Security Studies’ (‘KEMEA’), is a legal person governed by private law, a scientific, consulting and research body established by the provisions of Law 3387/2005 (Government Gazette A’ 224) and is supervised by the Minister of Citizen Protection.

The Centre for Research and Technology Hellas (CERTH), a legal entity governed by private law with non-profit status, supervised by the General Secretariat for Research and Innovation (GSRI) of the Greek Ministry of Development

1. 1. Data Controllers

The Data Controller are:

– the Center for Security Studies (KEMEA) with offices in Athens, at P. Kanellopoulou str., 4, 10177 Greece. The Data Controller can be contacted by writing to the address above or by sending an e-mail message to kemea@kemea.gr , or by calling at Telephone: +30 2107710805 or sending a Fax at Fax number:  +30 211 100 4499.

– the Centre for Research and Technology Hellas (CERTH), headquartered in Thessaloniki, Greece, at 6th km Charilaou, Thermi Rd, 57001, Thessaloniki. The Data Controller can be contacted by writing to the address above or by sending an e-mail message to m4d_ethics@iti.gr.

1. 1. Data Protection Officers (DPO)

If you have any question about the processing of your data when using the website or you wish to exercise any of your rights as data subject, you may contact:

– KEMEA’s Data Protection Officer at dpo@kemea-research.gr

-CERTH’s Data Protection Officer at m4d_ethics@iti.gr (proxy point of contact)

1. 1. Types of personal of personal data to be processed:
      1. When visiting the TESSERA website

The IT systems and applications designated for the operation of this Website detect, during the course of their ordinary operation, certain data – the transmission of which is implicit in the use of Internet communication protocols – not associated with directly identifiable users.

The data collected may include cookies, IP addresses of computers used by Users connecting to the site, the URI – Uniform Resource Identifier – addresses of the resources requested, the time of the request, the method used to send the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (completed successfully, error, etc.) and other parameters relating to the operating system and the user’s IT environment.

1. 1. Purposes of processing

The personal data of the user/ visitor are processed for the following purposes:

1. 1. • Usage of TESSERA Website and its services,
      • compliance with legal or administrative obligations.

1. 1. Legal basis

The data processing takes place according to article 6(1)(a) GDPR, your informed consent. You may withdraw your consent at any time with future effect, by sending an email to dpo@kemea-research,gr or m4d_ethics@iti.gr . We may also process personal data based on art. 6(1)(c), when the processing is necessary for our compliance with a legal obligation.

1. 1. Data recipients

Data recipients for:

1. 1. • Elements that the Consortium is obligated or entitled to by law, contract, judgement and regulatory decision to notify may be: public and independent administrative authorities, judicial authorities and public officials.
      • All the elements necessary for the achievement of each specific purpose: the Administration and the relevant services of the Consortium( Consortium Page – Tessera Project  ).

The Consortium shall not disclose, assign, exchange, grant or otherwise dispose, without the consent of the user / visitor, to third parties, natural or legal persons, personal data other than the cases mentioned above within the scope of national laws provisions.

1. 1. Data transfer

No transfer to non- EU countries/ international organizations is foreseen. 

8. Data Breaches

We will report any unlawful data breach of your personal data within 72 hours after having become aware of the breach to the Supervisory Authority.

1. 1. Rights of the data subject

You have the following rights:

1. 1. • pursuant to Article 7(3) GDPR, you have the right to withdraw your consent at any time and without any consequences for you. This means that in future we may no longer continue to process the data as based on this consent;
      • pursuant to Article 15 GDPR, you have the right to obtain information about whether your personal data are processed by us and where that is the case, access to those personal data. In particular, you may obtain information about the purpose of processing, the category of the personal data, the categories of recipients, to whom your data has been or is disclosed to, the storage period planned, the existence of a right to request from the controller rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint and the source of your data if it has not been collected by us. Pursuant to Article 12, we must provide any communication relating to the processing to the data subject in a concise, transparent, intelligible and easily accessible form, using clear and plain language.
      • pursuant to Article 16 GDPR, you have the right to request the rectification of inaccurate personal data without undue delay or the completion of your personal data stored with us;
      • pursuant to Article 17 GDPR, to request the erasure of your personal data stored with us unless processing is necessary to exercise the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or to establish, exercise or defend legal claims;
      • pursuant to Article 18 GDPR, you have the right to request the restriction of the processing of your personal data;
      • pursuant to Article 20 GDPR, you have the right to receive your personal data, in a structured, commonly used and machine-readable format or to obtain the transmission to another data controller (right to data portability);
      • pursuant to Article 77 GDPR, to lodge a complaint with a national supervisory authority. You can contact the supervisory authority of your habitual residence or workplace or our company headquarters. In the latter case, you can file a complaint with the Hellenic Data Protection Authority (www.dpa.gr)

If you wish to exercise any of your rights, you may contact us via e-mail at dpo@kemea-research.gr and m4d_ethics@iti.gr

10. Time Limits for Compliance with your Rights

We make every effort to comply with all requests within thirty (30) days. However, this period may be extended for reasons relating to the specific right or complexity of your request.

1. 1. Data retention

Your personal data is retained only for as long as it is necessary to fulfil the purposes described above, and they will not be retained more than 5 years after the end of TESSERA project, unless a longer retention period is required by legal obligations or regulations.

1. 1. Data security

Your personal data are processed by electronic means in compliance with the provisions of art. 32 of GDPR 2016/679, national law and in compliance with the principles of data’s confidentiality, integrity, and availability. Your personal data are transferred in an encoded manner using the widely used and secure TLS (Transport Layer Security) encryption standard. You will recognize a secure TLS connection by the additional “s” after “http” (i.e., https://..) in the address bar of your browser or from the lock icon. Moreover, we use suitable technical and organizational measures, which are being continuously enhanced, to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties.

1. 1. Amendments to this Privacy Policy

This data protection policy is effective as of December 2024.

We keep our Data Protection Policy under regular review to make sure it is up to date and precise. Thus, it may become necessary to change it due to the potential addition of new features to the TESSERA website or due to further legal requirements. You can have access to the latest privacy related information on the TESSERA website at “permanent link of privacy policy”.

Last updated: 13/02/2024