Legal Notice

© European Union Agency for Network and Information Security (ENISA), 2013

This web site is subject to a copyright clause, a disclaimer, and a personal data protection clause.

1. Copyright

1.1 Definition

Material in this Legal Notice includes data, text, software and multimedia, such as images and sound that might be made available or publicized through the ENISA web site.

1.2 Authorization

Reproduction of material published on this web site is authorized, provided the source is acknowledged, unless it is stated otherwise. Where prior permission must be obtained for the reproduction or use of material published on this web site the above mentioned permission shall be cancelled and restrictions shall be imposed through a legal notice as appropriate published on that specific material. Enquiries regarding authorization for reproduction can be sent to data protection address.

1.3 ENISA logo

The reproduction of the ENISA logo is permitted provided that the source is acknowledged and the logo is used for press and media related purposes. All other uses are prohibited unless permission is requested.

2. Disclaimer

2.1 Scope of this web site

This web site is intended for informative purposes only regarding public access to its own activities. This web site should not be construed to represent an official or authentic publication of ENISA or ENISA bodies unless adopted pursuant to (Regulation (EC) No 460/2004 of the European Parliament and of the Council of 10 March 2004 establishing the European Network and Information Security Agency) repealed  by Regulation (EU) 526/2013. Authentic are documents adopted by ENISA or ENISA bodies and published in the paper editions of the Official Journal of the European Communities or as stipulated in ENISA Regulation (EC) No 460/2004/new regulation Regulation (EU) 526/2013

2.2. Access to Documents

Documents published on this web site constitute a measure implementing Regulation (EC) No 1049/2001 regarding public access to European Parliament, Council and Commission documents.

2.3 Accuracy of material

ENISA makes best efforts to keep material on this web site up to date and accurate. This web site does not necessarily represent state-of the-art and it is updated from time to time. If general errors, such as editorial errors are detected ENISA makes best efforts to correct them as appropriate. Documents published are as indicated, and sometimes they might not be in the final or formally accepted version. Inaccuracies in material published can be communicated to: data protection address.

2.4 Technical errors

In spite of ENISA’s best efforts, sometimes technical errors might occur. ENISA does not warrant the error-free operation of material as appropriate that it publishes on this web site. ENISA accepts no responsibility or liability whatsoever with regard to material accessed, operated on or downloaded through this web site.

2.5 Third party sources

Third party sources are quoted as appropriate. ENISA is not responsible for the content of the external sources including external web sites accessed through its own. Users are urged to receive notice of the terms and conditions as well as data protection policies of such third party web sites. Photo credentials – Shutterstock.

2.6 No specific advice

Nothing in this web site is to be considered to constitute advice on specific cases, including professional or legal advice, unless it is stated otherwise.

2.7 Use of material

Neither ENISA nor any person acting on its behalf is responsible for the use that might be made of the information contained in this web site. ENISA assumes no responsibility with regard to the use of material available on this web site. Users act at their own risk when using material on this web site and they are hereby urged to take necessary precautions when evaluating the usefulness and applicability of this material for their intended purposes.

2.8 National and EU Law

This disclaimer is not intended to limit the liability of ENISA in contravention of any requirements laid down in applicable national law or to exclude its liability for matters which may not be excluded under that law.

3. Personal data protection

3.1 Personal data protection policy

ENISA is an EU body committed to and regulated for the protection it affords to personal data. ENISA adheres to and is regulated under Regulation (EC) No 45/2001 of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community, institutions and bodies and on the free movement of such data. Regulation (EC) No 45/2001 constitutes the general ENISA policy on personal data protection.

3.2 Supervision

ENISA is supervised by the European Data Protection Supervisor that acts as an independent supervisory authority. For more information please visit:

3.3 Data protection officer

An appointed Data Protection Officer ensures that ENISA observes the requirements of the ENISA data protection policy as stipulated in Regulation (EC) No 45/2001.
For more information contact: data protection address.

3.4 Data collection

Sometimes ENISA invites or collects information through web forms or by activating the end user’s email client and inviting an email. ENISA might also require collecting some personal data in order to make available certain services through its web site. ENISA collects such data as it might be strictly necessary in order to deliver the service concerned. ENISA treats such collected personal data according to the policy described in Regulation (EC) No 45/2001 mentioned above.

3.5 Google Analytics

“This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States . Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.”

3.6 Conformity

ENISA determines the purposes and means of the processing of personal data and ensures the conformity of the specific electronic service offered with the personal data protection policy stipulated in Regulation (EC) No 45/2001.

3.7 Follow up on queries

Regarding the content of a question or query, ENISA makes best efforts to reply within prescribed time limits, and keep the users informed of an third party that might handle such question or query.