Privacy Statement
What personal data do we collect and for what purpose
When you visit the website we do not collect any personal information and we do not link or correlate your authenticated session to the collected website usage statistics which are fully anonymized. See "site usage statistics" section for more details.
We process personal data (transactional data) such as IP-address, browser version and other device information that is necessary to securely deliver web pages to your internet client. This transactional data is also processed by https://cert.europa.eu/) which provides security services for EEA. These transactional data is also available to our Internet Service Provider (tdc.dk) and our cloud provider Amazon in EU and their privacy statement applies.
We collect personal information when we create an account in the Eionet User Directory. This account is only needed to needed for content editors and to grant access to specific parts of the website that require authentication. Please refer to the Eionet Privacy statement.
The processing of your personal data is necessary for the performance of the tasks carried out by the EEA as mandated by Regulation (EC) No 401/2009 of 23 April 2009 on the EEA and Eionet.
Site usage statistics and personalised experience settings
We do not store personal data in cookies. We may store your own page settings in non-personalized ways (e.g. your language settings).
By default, the browsing experience of website visitors is tracked by EEA Matomo software1 in order to produce anonymised statistics. For example when you visit our website, we may collect some data on your browsing experience such as your masked IP address2 (anonymized by removing the last two bytes), the web page you visited, when you visited and the website page you were redirected from.
This information is used to gather aggregated and anonymous statistics with a view to improving our services and to enhance your user experience. The analytical reports generated by EEA Matomo can only be accessed through the Eionet User Directory authentication system to EEA staff, other relevant EU's institution staff or by duly authorised external sub-contractors, who may be required to analyse, develop and/or regularly maintain certain sites.
By default, our software Matomo installation respects users preference and will not track visitors which have specified "I do not want to be tracked" in their web browsers (aka "Do not track").
Network logs storage
We process your personal data, to provide web pages from this site to you ("transactional data" such as your IP address, browser version and device information that is part of the various internet communication protocols) and use it for ensuring the security of the pages.
Transactional data (security logs) is stored for a maximum of 1 year for security audit purposes unless there is an individual reason to keep information for a longer period of time (e.g. when individual IP addresses are blocked if part of a DoS-attack).
Sharing on social networks or follow external links
Our social links are not sharing any personal information with third parties without your prior consent. These are simply links to external websites.
If you click on any button that allows you to share our pages or follow a link, you will be redirected to this other page and you are then subject to the privacy policy of this third party, over which EEA has no control or responsibility.
How to contact us and right to appeal
You may contact the EEA's Data Protection Officer (DPO) in case of any difficulties relating to the processing of your data at the following email address: dpo@eea.europa.eu.
You are entitled to have recourse at any time to the European Data Protection Supervisor (https://edps.europa.eu; edps@edps.europa.eu) if you consider that your rights under Regulation (EU) 2018/1725 have been infringed as a result of the processing of your personal data by the EEA.
Footnotes
1 Matomo is an open-source and privacy-oriented web analytics software. The term "EEA Matomo" refers to our installation, managed directly by EEA Staff and installed within EEA/EU.
2 Masking of IP addresses. Institution, city and country origin are determined from the full IP, then stored and aggregated before a mask is applied. EEA Matomo uses an IP de-identification mechanism that automatically masks a portion of each visitor's IP (Internet Protocol), effectively making it impossible to identify a particular website visitor via the sole IP address.