Data Protection and Privacy Policy

INOV INESC Inovação – Instituto de Novas Tecnologias (INOV) is a private non-profit association, VAT No. 505 002 892, headquartered at Rua Alves Redol, No. 9, 1000-029 Lisbon, Portugal, dedicated to strengthening the capacity for innovation, modernization and global competitiveness of business entities and public bodies, through research and technological development, technology transfer, consultancy and advanced training in the fields of Information, Communications Technologies and Electronics.

INOV is committed to protecting the privacy and personal data of data subjects, in full compliance with existing data protection legislation, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (“RGPD”).


Given the importance of transparency in the data processing processes of its Employees, Partners and other stakeholders, INOV has outlined a Personal Data Privacy Policy that covers the way in which personal data are collected, used, disclosed, transferred and stored. In this context, it is necessary to make known the general rules of data processing in strict compliance with the legislation in force.


Personal Data and Treatment


“Personal data” means information relating to an identified or identifiable natural person (“data subject”). A natural person is considered identifiable if it can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, identification number, location data, electronic identifiers or one or more specific elements of the their physical, physiological, genetic, mental, economic, cultural or social identity of that natural person (Article 4 of the RGPD).


In the scope of its activity, INOV treats personal data resulting from its relationship with the following groups of subjects: employees (hired workers, scholars, researchers, interns and service providers); trainees and trainers; customers and suppliers; partners and participants in research projects; institutional site visitors; and other stakeholders.


The collection and processing of personal data is done through the signing of contractual documents, to fulfil legal obligations arising from the activity of INOV, the pursuit of its legitimate interests or even with the free and express consent of the data subjects, whenever applicable.


Depending on the different purposes, INOV handles the following categories of data: general identification data (name, telephone contact, email address, address, tax identification number, social security identification number, identity card number and validity), bank identification data (bank identification number/IBAN) and professional background data (curriculum vitae data provided).


There are also processed by INOV – as a training entity or as a partner of public and private institutions – personal data of the trainees and trainers in the execution of the training programs.


Whenever feasible, personal data generated by scientific research and technological development will be anonymously processed.


During the visit to INOV’s institutional website and for the purpose of promotional information or sending newsletters, general contact details are processed and cookies may be used to improve and experience the use of the website.


The processing of personal data is carried out through automatic and manual processes, with appropriate technological and organizational measures and controls that are proportionate to their protection and preservation. These include the management of authentication and access to systems and facilities, the management of system usage profiles, controlled access to restricted information, the signing of confidentiality and professional secrecy agreements with Employees and third parties, and the use of more robust techniques such as encryption whenever necessary.


Generally, personal data are stored for as long as there is a link to INOV, for the necessary period to fulfil legal obligations or to pursue legitimate interests.


Personal data may be transferred, for the same purposes, to entities determined by applicable law or to third parties.


Whenever personal data are shared with third parties outside the European Economic Area, for recipients of information not referred to as secure, INOV undertakes to fulfil the provisions of the RGPD as applicable to the transfer of the concerned data.


Responses to requests for access, retrieval and consultation of personal data, updating, modification or delivery shall be ensured, and deletion, restriction and opposition to processing and cancelation of automatic processing of personal data for profile management may be requested in accordance with current legislation.


Where consent has been given, consent may be withdrawn at any time using the contact details below.


Holders of personal data may complain about their processing to the National Supervisory Authority.


Data Protection Officer (DPO)


The DPO plays a relevant role in the protection of personal data, ensuring, among other things, the compliance of processes with current legislation. The DPO also verifies compliance with the current Personal Data Privacy Policy and sets clear rules for processing of personal data, ensuring that all interested parties are aware of how INOV treats such data and what rights they have in this regard.


The Data Protection Officer is also responsible for the contact between INOV and the National Supervisory Authority, as well as between INOV and third parties in matters concerning the processing of personal data.


For this purpose, if the data subject needs to contact INOV data controller, he/she may do so through the means and contact details below:


Through written communication addressed to the Data Processing Officer (INOV) or by email at