Summary
The beneficiaries must confirm that it has appointed a Data Protection Officer DPO and the contact details of the DPO are made available to all data subjects involved in the research For beneficiaries not required to appoint a DPO under the General Data Protection Regulation GDPR a detailed data protection policy for the project must be kept on file to be specified in the grant agreement and submitted to the Agency upon request The confirmation for each beneficiary must be submitted as a deliverable The beneficiary must explain how all of the data they intend to process is relevant and limited to the purposes of the research project in accordance with the data minimisation principle This must be submitted as a deliverable A description of the technical and organisational measures that will be implemented to safeguard the rights and freedoms of the data subjectsresearch participants must be submitted as a deliverable A description of the security measures that will be implemented to prevent unauthorised access to personal data or the equipment used for processing must be submitted as a deliverable Description of the anonymysationpseudonymisation techniques that will be implemented must be submitted as a deliverable In case of further processing of previously collected personal data an explicit confirmation that the beneficiary has lawful basis for the data processing and that the appropriate technical and organisational measures are in place to safeguard the rights of the data subjects must be submitted as a deliverable
More information & hyperlinks
