I. GENERAL PROVISIONS

1. The privacy policy of the istartup.eu website (hereinafter referred to as the “Privacy Policy”) sets out the conditions, legal basis, purposes, retention period, publication and provision, accuracy, safeguards of personal and legal personal data collected and stored via the website and the conditions for the exercise of data subjects’ rights.

2. The website “istartup.eu” (hereinafter – the website) was created during project “Acceleration of the Business Support System” ACCESS (hereinafter – the project), project No. LT-PL-4R-301, implemented under the Interreg V-A Lithuania-Poland Cooperation Program.

3. The intellectual property rights of the training content of the website “istartup.eu” belong to the project partners: Kaunas University of Technology, Kaunas Chamber of Commerce, Industry and Crafts, Białystok University of Technology and Association of Białystok Functional Zone (hereinafter – Project Partners).

4. The solution for the training functionality of the website was developed and the maintenance of the solution during project implementation was taken care of by UAB Kirotech in accordance with the 2020. November 16 concluded service contract No. SV11-1993.>

5. Online training information provided by the website is presented as text or video, tasks can be submitted to training participants in the format of attachment files with tasks. Online training material covering different training topics.

6. This Privacy Notice is to be understood as the general rules that every user of the Website must read when registering. By submitting your form and marking “I have read this Privacy Notice”, the person confirms that he / she is aware of the grounds, purposes and conditions of the processing of his / her personal data.

For more information on personal data protection than provided in this notice, please contact privacy@ktu.lt

7. The target users of the website are:

7.1. Persons seeking to set up or are setting up their own business, seeking opportunities to obtain business creation and development consultations, to acquire the knowledge and skills necessary for business creation and development;

7.2. Business development specialists providing business creation and development consultations.

8.Website content creators are project partners, that are providing business supports services.

9. Data controller – Kaunas University of Technology, legal form: public institution, legal entity code: 111950581, address of registration: K. Donelaičio str. 73, 44249 Kaunas. Responsible for the implementation of the Privacy Policy is the structural unit of the data controller, which administers the following website: KTU National Innovation and Business Center, address: Baršausko str. 59, Kaunas, telephone number: +370 672 65146, e-mail address: nivc@ktu.lt. Neringa Valantinė, Business Development Project Manager of the National Innovation and Business Center of Kaunas University of Technology, Entrepreneurship Education Division, is responsible for data security and confidentiality.

10. General principles for the processing of personal data are set in General Data Protection Regulation (hereinafter – GDPR) – Regulation (EU) 2016/679 of the European Parliament and Council (EU) of 27 April 2016 on the protection of individuals with regards to the processing of personal data and the free movement of such data for the protection of natural persons in the processing of personal data and repealing Directive 95/46/EC.

11. Basic principles of personal data processing:

11.1 Personal data is collected for defined and legitimate purposes.

11.2 Personal data is processed accurately and fairly.

11.3 Data subjects have an unrestricted opportunity to correct inaccurate personal data.

11.4 Personal data shall be kept for no longer than is necessary for the purposes for which they are processed, as specified for each specific purpose of the processing.

11.5 Personal data is processed only by employees who have been granted such a right.

11.6 All information about the processed personal data is confidential insofar as its publication is not necessary for the purposes of organizing and administering the competition.

II. COLLECTION AND PROCESSING OF PERSONAL DATA

12. The collection and processing of personal data is described in the table below:

What personal data is collected?

For what purpose are they collected?

How long will they be stored?

Where will they be stored?

Name Surname

Needed to identify the user of the website

Five years after the end of the project, but no later than 31 November 2026.

The collected data is stored at KTU National Innovation and Business Center, address: Baršausko str. 59, Kaunas, phone number: +370 672 65146, e-mail address:

nivc@ktu.lt and in the content management system of the website of Kaunas University of Technology istartup.eu.

Email address, phone number

Needed to identify the user of the website. Remind user-created password.

Five years after the end of the project, but no later than 31 November 2026.

The collected data is stored at KTU National Innovation and Business Center, address: Baršausko str. 59, Kaunas, phone number: +370 672 65146, e-mail address: nivc@ktu.lt and in the content management system of the website of Kaunas University of Technology istartup.eu.

III. PUBLICATION AND SUBMISSION OF DATA

13. No personal data will be made public without the consent of the data subjects.

14. Personal data shall be provided only in cases and in accordance with the procedure established by law.

IV. DATA PROTECTION MEASURES

15. The controller shall implement the following basic data protection measures:

15.1 Access to personal data is granted only to those employees of the data controller who need the data for the performance of their work functions (the “need to know” principle applies). Access shall be terminated when the employment relationship of the controller with the employee to whom access has been granted is terminated or when the nature of the employee’s work functions changes.

15.2 Authorizations to process data are granted to a defined number of employees of the data controller.

15.3 The authorization shall be terminated when the employment relationship of the controller with the employee to whom the authorization has been granted is terminated or when the nature of the employee’s job functions changes.

V. CONDITIONS FOR THE USAGE OF RIGHTS BY DATA SUBJECTS

16. Individuals have the right to access their personal data which are being processed, to request the rectification of inaccurate data, as well as the right to withdraw their consent to the processing of data, as well as other rights established by legal acts.

17. Data processor shall provide information on the processing to the data to the subject in a concise, transparent, comprehensible and easily accessible form, in clear and simple language, in the manner in which the data subject’s request was received, unless the data subject requests otherwise.

18. Information on the processing of personal data shall be provided and other reasonable requests of the data subject shall be executed free of charge.

19. Where the data subject’s requests are manifestly unjustified or disproportionate, in particular because of their repetitive nature, the controller shall have the right to refuse to act on the request.

VI. CONCLUDING PROVISIONS

20. Issues of personal data processing not covered by the Privacy Policy shall be resolved in accordance with the general principles of personal data processing and taking into account the legal basis of data processing and the purposes of data processing.

21. Employees of the Data Controller who are authorized to process personal data or become aware of them in the course of their duties must comply with the general principles of personal data processing and the Privacy Policy. The employees of the data controller shall be liable for the violations in accordance with the procedure established by legal acts.

Get in Touch