Privacy Policy
Personal Data Protection Policy

Fusion for Energy is committed to user privacy.

The policy on personal data protection by Fusion for Energy is based on Regulation (EU) 2018/1725 concerning the rules governing the protection of individuals with regard to the processing of personal data by EU institutions and bodies and the free movement of such data.

What is personal data?

Personal data is any information relating to an identified or identifiable natural person (‘data subject’). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

The processing of certain special categories of data, defined as data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade-union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation is prohibited, subject to certain exceptions.

How are the personal data processed by Fusion for Energy?

Fusion for Energy ensures that all personal data under its responsibility is:

  • processed fairly, lawfully and transparently;
  • collected for specified, explicit and legitimate purposes;
  • processed in an adequate and relevant way, limited to what is necessary in relation to the purpose of the processing;
  • accurate and kept up to date;
  • kept for no longer than is necessary for the purposes for which they were collected;
  • processed securely and in confidentiality.

Further information on how your personal data are processed by Fusion for Energy may be found in the Privacy Notices for individual processing operations (see Register) and in the respective sections of the Fusion for Energy website.

What are my rights as the Data Subject?

The Data Subject is the person whose personal data are collected, held or processed.

As Data Subject you have certain rights in relation to the data you provide to F4E. These rights are (Art. 17-24):

  • At any point, you have a right of access, which means that you can ask confirmation of whether data about you is being processed, and if it is the case, any further information provided under the right to information.
  • You may also rectify any inaccurate data or complete incomplete data. In addition, a right to erasure of personal data, under certain conditions (withdrawal of consent if this was the basis for the processing, absence of necessity of the data, unlawful process…)
  • You may ask the controller to restrict the processing if the legal conditions are fulfilled (you contest the validity of the data or you consider that your data should be erased, or if your request for blocking is under review)
  • You have the right to receive the data you have provided to the controller in a structured and computerized way, and to transmit those data to another controller if the process is automatic or if the processing is based on consent or on the execution of a contract (right to data portability).
  • You have the right to obtain the restriction of the processing, in which case no more processing is accepted until the restriction is lifted.

These rights may be subject to restrictions, under very strict conditions. For more information, please see the GB Decision adopted in accordance with Art. 25 and published in the OJEU on 10.02.2020.

How long can F4E retain personal data?

In accordance with Regulation (EU) 354/83 as amended, F4E has the obligation to establish historical archives containing documents and records, which historical value has been appraised (files). Such files are deposited at the Historical Archives of the European Union (HAEU), located in the European University Institute (EUI) in Florence, Italy. Access will be granted to the public, according to the mentioned regulation and applicable rules.

The purposes of appraising and transferring files to the HAEU are the following:

  • Ensuring preservation of files that need to be preserved permanently for legal or administrative reasons, as well as those that are of interest with regard to the history of the EU and, in particular, of F4E and its actions;
  • Guaranteeing that F4E historical archives can be opened to the public;
  • facilitating access to files to anybody who is entitled.

Personal data contained in files will be processed according to Regulation (EU) 2018/1725. To have more information on how HAEU processes personal data on behalf of F4E, please consult the Rules Governing the Access and Use of the Historical Archives of the European Union.

Who is Who – Roles and Responsibilities of main actors

The Controller

According to Regulation (EU) 2018/1725 , the “Controller” is the organisational entity of Fusion for Energy processing the data. The Controller determines the purposes and means of the processing of personal data.

The Controller is represented by the staff defining the purpose of the processing, whether it is the head of unit or F4E staff. S/he is responsible for compliance with the legal framework and its principles, but also for the demonstration of such compliance. (principle of Accountability).

The Privacy Notices for individual processing operations (see Register) will provide you with the contact details for the Controller responsible for the processing of your personal data.


The Data Protection Officer

In compliance with Regulation (EU) 2018/1725 , Fusion for Energy has appointed a Data Protection Officer (DPO) to ensure and advise on the lawfulness of the processing of your personal data. The DPO maintains a detailed register of the processing operations within Fusion for Energy.

Mr Walter Schuster is the appointed DPO at Fusion for Energy.
Data Protection Officer


The European Data Protection Supervisor?

The European Data Protection Supervisor (EDPS) is an independent supervisory authority (Art. 52 and following of the Regulation). The EDPS’ mission is to ensure that your fundamental rights and freedoms – in particular your privacy – are respected when the EU institutions and bodies (including F4E) process personal data.

The EDPS is also responsible for advising the EU institutions and bodies on all matters relating to the processing of personal data. It may inspect the EU institutions and bodies on their compliance with the data protection requirements at any time. For more information, see the EDPS Website.

Register of Records

Health and Safety

Human Resources

Procurement, Contracts and Grants

Information and Communication Technologies (ICT)


Register of Privacy Notices


Health and Safety

Human Resources

Procurement, Contracts and Grants

Information and Communication Technologies (ICT)