Privacy Policy and Cookie Policy

Home » Privacy Policy and Cookie Policy Privacy Policy

This Privacy Policy describes how and when - a project funded by the European Commission under the Horizon2020 program - collects, uses, and shares your information when you use the website (hereinafter, the “Website”).  This Website is provided by the Consortium, coordinated by Trust-IT Services Limited (hereinafter, “Trust-IT”), established in CHASE SIDE 42 CHASE GREEN HOUSE, ENFIELD EN2 6NF, United Kingdom, which is the legal representative of the Consortium and the data controller for the project related activities (the “data controller”). Trust-IT Services receives your personal data through your interaction with its website. When using any of our services your personal data are processed as described in this Privacy Policy. We therefore ask you to please read it carefully before communicating any of your data to

The data controller informs you that your personal data will be processed in full compliance with the Regulation (EU) 2016/679 and that the present privacy policy is provided pursuant to Article 13 of the Regulation (EU) 2016/679 (hereinafter, “GDPR”).

Information you provide

You may provide personally identifiable information (“personal data”) about yourself when you use our services and, of course, when you register to become part of the community, by providing your name, surname, email address and other identifying information. For instance, you may provide your personal data personal in order to be registered into the Catalogue of Services of

Information collected automatically

We collect data automatically when you use our services. These data may be your name, e-mail address, the institution you are part of and your postal address.

Purposes of the processing and legal basis

We process personal data for the sole purposes of the project, namely:

  • A - for the organisation, management and functioning of the website, which includes ;
  • B - for the organisation of events to which users may decide to register using the website;
  • C - for the publication on the website of the information concerning the participation of the members to the events and activities carried out by (upon registering to events, the following details will be published in the on-line participants list open for public view: first name, surname, affiliation and country);
  • D - for the sending of surveys which aim to gather information regarding the cyber security and privacy policy and regulatory framework in the European Union with the objective to assist to provide recommendations to protect public and private organisations from cyber-attacks.

The legal basis for the processing of your personal data for the purposes indicated under sections a) and b) of the previous paragraph is Article 6.1.b. of the GDPR. The provision of your personal data is voluntary, but any refusal to provide such data will not allow the correct use of services. The legal basis for the purpose indicated under sections c) and d) of the previous paragraph is Article 6.1.c. By ticking the boxes at the end of this policy you give your consent to the publication of your personal data in association with your participation to events and activities and to the reception of surveys. The provision of your personal data for this purpose is voluntary, but any refusal to provide such data will not have any consequences on the correct use of services. You can withdraw the consent contacting the data controller as described in the section dedicated to Exercise of users’ data protection rights. Furthermore, with reference to section d), we inform you that consent will not be required for those who joined the ecosystem, provided that the mentioned surveys are strictly connected to the services the member requested and that the recipient does not object to the processing of his personal data for that purpose.


Together with the other Services offered though our website, also offers the possibility to request the subscription to our Newsletter and be kept up to date with news and results.

Recipient of Data

We may share your data with the following entities:

Affiliates and PartnersWe may share your data with any partner to the Consortium, as well as with its affiliates-companies that control, are controlled by, or are under common control with any of the Consortium’s Members. These entities may receive your information only to the extent necessary for the proper execution of the research activities, or for the administration of the project. Users’ personal data will neither be communicated nor anyhow processed for marketing or profiling related purposes.

Data Processors. We may share your data with partners providing technological services, which were formally bound by means of a data processing agreement, pursuant to article 28 of the Regulation (EU) 2016/679. The full list of data processors is available by simple request to the data controller by sending an email to

Persons in charge of data processing activities. We may share your data with persons authorized and instructed by the data controller to data processing activities. Precise instructions were given to them, pursuant to Article 29 of the Regulation (EU) 2016/679.

Data Controller

Trust-IT Services Ltd.
Chase Green House, 42
Chase Side
Enfield, Middlesex
United Kingdom
VAT: 848450895

Data Processor

Trust-IT Services Ltd.
Chase Green House, 42
Chase Side
Enfield, Middlesex
United Kingdom
VAT: 848450895
Italian Branch
Trust-IT Srl
Via Nino Bixio, 25
56125 Pisa, Italy
P.I. e C.F. 01870130505
Commpla Srl
Via Nino Bixio, 25
56125 Pisa - Italy
P IVA 01958380501


Parties When Required by Law or as Necessary to Protect Our Services.  There may be instances when we disclose your information to other parties in order to:

• protect the legal rights of the Consortium, its partners and the latter’s affiliates, and of the users of the Services;

• protect the safety and security of users of the Services;

• prevent fraud (or for risk management purposes); or

• comply with or respond to the law or legal process or a request for cooperation by a government entity, whether or not legally required;

• administer the project and share the results thereof with the European Commission or any other public authority to which the Consortium, or any of its Partners, has to report.  

Other Parties in Aggregated Form. We may also share your data with third parties or disseminate them through the website in aggregated or non-personally identifiable form.  In this case the Regulation (EU) 2016/679 does not apply.


Pursuant to Article 25 of the Regulation (EU) 2016/679, we implement appropriate technical and organisational measures, which are designed to implement data-protection principles, such as data minimisation, in an effective manner and to integrate the necessary safeguards into the processing in order to meet the requirements of the Regulation and protect the rights of data subjects. Furthermore, according to Article 32 of the Regulation (EU) 2016/679, we implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk and safeguard personal data in our possession against accidental or unlawful destruction, loss, theft, alteration or unauthorised use or disclosure. Please note, however, that no data transmission or storage can be guaranteed to be 100% secure. As a result, while we strive to protect the information we maintain, we cannot ensure or warrant the security of any information that you transmit to us.

Transfer of data

Your personal data will not be transferred to any country or international organisation outside European Union.

Period of storage

Your personal data will be kept for no longer than is necessary for the specific purposes for which the personal data are processed. More precisely, personal data is kept as long as follow-up actions to the Website and events are necessary with regard to the purpose(s) of the processing of personal data.

Changes to this policy

We may revise this Privacy Policy from time to time. The most current version of the policy will govern our use of your information and will be located at .We may make changes to this policy at our sole discretion. By continuing to access or use the Services after those changes become effective, you agree to be bound by the revised Privacy Policy.

Exercise of users’ data protection rights

You may contact us, via email at, in order to assert your rights, as described in Articles 15 to 22 of the Regulation (EU) 2016/679, namely to demand: the confirmation of the existence of data concerning yourself and their origin and processing and the purposes thereof; the erasure (Article 17) or the rectification of data (Article 16); the restriction of processing (Article 18); the right to object (Article 22) and the right to data portability (Article 20). 

We inform you that you have the right to lodge a complaint to the competent data protection authority, pursuant to Article 77 of the Regulation (EU) 2016/679, if you believe that your personal data have been processed in violation of any applicable law concerning data protection.

Cookie Policy

Like many websites, we use “cookie” technology to collect additional website usage data and to improve our Services.

Cookies may be stored on your device and be transmitted again to you when you use the services a second time. By means of cookies, the websites record user actions and preferences (such as, for example, the language chosen, the character dimensions, other settings concerning the layout of the website, etc.) so as to avoid that the user has to enter them when returning to the Website at a later date or when the user surfs a different page of the same website. Cookies are therefore used to log in users, monitor browsing sessions, store information relating to the users who access the website and may contain a unique identification code that makes it possible to track the user’s navigation within the website for statistical and advertising purposes.

Users may download cookies on their devices owned by sites and web servers different from the site that they are actually visiting (“third-party cookies”). Some cookies are necessary for the technical functioning of the Site; if you do not accept the latter cookies, some functionalities and features of the Site may not be accessible.

Different types of cookies exist, depending on their features and functions, and they may be stored on the users’ devices for different timeframes: session cookies are cancelled at the end of each browsing session; persistent cookies may last up to a certain date that has been pre-set by their owner.

On the basis of the law applicable to cookies, user consent to the latter is not always mandatory. The user’s consent is not necessary for “technical cookies”, such as cookies used exclusively with a view of carrying out the transmission of a communication on an electronic communications network, or insofar as this is strictly necessary to the provider of an information society service that has been explicitly requested by the contracting party or user to provide the said service. The latter cookies are indispensable for the proper functioning of the Site and to execute activities specifically requested by the users.

Amongst the technical cookies, that do not require an explicit prior consent by the users to be deployed, see the following:

  • "cookie analytics” insofar as they are used directly by the website manager to collect aggregate information on the number of visitors and the pattern of visits to the website,
  • “browsing” or “session cookies” (to log-in to the website),
  • “functional cookies”, which allow users to navigate as a function of certain pre-determined criteria such as language or products to be purchased so as to improve the quality of service.

For Profiling cookies, namely those aimed at creating user profiles and used to send advertising messages in line with the preferences shown by the user during navigation, the user’s prior consent is necessary.

Types of cookies used by the Website and the possibility to de-activate them

The Website deploys the following cookies, while always offering the possibility to de-activate them, except for third-party cookies, that can be de-activated by the users directly on the owners’ websites using the links provided below:

  • Technical browsing or session cookies, strictly necessary for the services’ functioning and to provide the users with a service that has been explicitly requested by them;
  • Technical functional cookies, which allow users to navigate as a function of certain pre-determined criteria such as language.

Please be aware that if you disable technical/functional cookies the services might not work properly and some services or some of the functionalities may not be available or work properly; you could be required to modify or manually fill in some information or preferences each time you use the services.

  • Third Party Cookies, namely cookies owned by sites and web servers different from the websites that you are actually visiting.  The latter third parties are listed below with the links to their respective privacy policies; they are autonomous data controllers of the data collected through the cookies they serve; you shall refer to their privacy policies and consent forms (activation and de-activation of their respective cookies), hereby listed below:

The details of all the cookies deployed in the Website are available below.

Technical name Purpose Type of cookie Expiration
_GA Google Analytics cookie used to distinguish users. third party cookie/cookie analytics 2 Years
_gid Google Analytics cookie used to distinguish users. third party cookie/cookie analytics 24 hours
SSESS%ID% Drupal  cookie that stores session identification.

first party cookie/session cookies

200000 seconds
Drupal.tableDrag.showWeight Drupal cookie that helps handle the consistent navigation of tabbed pages and forms across a range of different browsers.  first party cookie/functional cookies 1 Year
has_js Functional cookie to remember whether a visitor has javascript in his browser first party cookie/browsing cookie Expires at the end of the session
cookie-agreed Cookie that  records whether or not the cookies notification pop-up has been acknowledged by a user first party cookie/browsing cookie 100 days

How to display and modify cookie settings via your browser

The users may select the cookies they want to enable, disable, or cancel cookies (wholly or partially) by means of the tools offered by the browser used: however, please note that if you disable a technical/functional cookie, the website might not work properly and some services or some of the site’s functionalities may not be available or work smoothly, and you could be required to modify or manually fill in some information or preferences each time you visit the site.

To know more about how to set your cookie preferences via your browser, read the guidance provided at the following links (Trust-IT does not control these third party browser sites or their instructions on enabling and disabling cookies; these pages may be updated, modified or removed by the third party browser companies at their own discretion):


On November 13th the Italian Parliament finally approved Law Decree No. 105/2019, which significantly extends the scope of application of the Italian “golden powers” regulations, amending Law Decree No. 21/2012.

Future Events

The Annual Computer Security Applications Conference (ACSAC) will be held in San Juan, Puerto Rico on 9-13 December 2019. 

09/12/2019 to 13/12/2019

The one-day Summit on the 13th of January brings together prominent security practitioners for in-depth talks focused on techniques that can be used to successfully identify, contain, and eliminate adversaries targeting your networks. Attendees will gain tools and methods to leverage as soon as they return to work.

The Summit will explore:

13/01/2020 to 19/01/2020