This web site is subject to a copyright clause, a disclaimer, and a personal data protection clause.
Material in this Legal Notice includes data, text, software and multimedia, such as images and sound that might be made available or publicized through the ENISA web site.
Reproduction of material published on this web site is authorized, provided the source is acknowledged, unless it is stated otherwise. Where prior permission must be obtained for the reproduction or use of material published on this web site the above mentioned permission shall be cancelled and restrictions shall be imposed through a legal notice as appropriate published on that specific material. Enquiries regarding authorization for reproduction can be sent to data protection address.
1.3 ENISA logo
The reproduction of the ENISA logo is permitted provided that the source is acknowledged and the logo is used for press and media related purposes. All other uses are prohibited unless permission is requested.
2.1 Scope of this web site
This web site is intended for informative purposes only regarding public access to its own activities. This web site should not be construed to represent an official or authentic publication of ENISA or ENISA bodies unless adopted pursuant to (Regulation (EC) No 460/2004 of the European Parliament and of the Council of 10 March 2004 establishing the European Network and Information Security Agency) repealed by Regulation (EU) 526/2013. Authentic are documents adopted by ENISA or ENISA bodies and published in the paper editions of the Official Journal of the European Communities or as stipulated in ENISA Regulation (EC) No 460/2004/new regulation Regulation (EU) 526/2013
2.2. Access to Documents
Documents published on this web site constitute a measure implementing Regulation (EC) No 1049/2001 regarding public access to European Parliament, Council and Commission documents.
2.3 Accuracy of material
ENISA makes best efforts to keep material on this web site up to date and accurate. This web site does not necessarily represent state-of the-art and it is updated from time to time. If general errors, such as editorial errors are detected ENISA makes best efforts to correct them as appropriate. Documents published are as indicated, and sometimes they might not be in the final or formally accepted version. Inaccuracies in material published can be communicated to: data protection address.
2.4 Technical errors
In spite of ENISA’s best efforts, sometimes technical errors might occur. ENISA does not warrant the error-free operation of material as appropriate that it publishes on this web site. ENISA accepts no responsibility or liability whatsoever with regard to material accessed, operated on or downloaded through this web site.
2.5 Third party sources
Third party sources are quoted as appropriate. ENISA is not responsible for the content of the external sources including external web sites accessed through its own. Users are urged to receive notice of the terms and conditions as well as data protection policies of such third party web sites. Photo credentials – Shutterstock.
2.6 No specific advice
Nothing in this web site is to be considered to constitute advice on specific cases, including professional or legal advice, unless it is stated otherwise.
2.7 Use of material
Neither ENISA nor any person acting on its behalf is responsible for the use that might be made of the information contained in this web site. ENISA assumes no responsibility with regard to the use of material available on this web site. Users act at their own risk when using material on this web site and they are hereby urged to take necessary precautions when evaluating the usefulness and applicability of this material for their intended purposes.
2.8 National and EU Law
This disclaimer is not intended to limit the liability of ENISA in contravention of any requirements laid down in applicable national law or to exclude its liability for matters which may not be excluded under that law.
3.1 Personal data protection policy
ENISA is an EU body committed to and regulated for the protection it affords to personal data. ENISA adheres to and is regulated under Regulation (EC) No 45/2001 of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community, institutions and bodies and on the free movement of such data. Regulation (EC) No 45/2001 constitutes the general ENISA policy on personal data protection.
ENISA is supervised by the European Data Protection Supervisor that acts as an independent supervisory authority. For more information please visit:
3.3 Data protection officer
An appointed Data Protection Officer ensures that ENISA observes the requirements of the ENISA data protection policy as stipulated in Regulation (EC) No 45/2001.
For more information contact: data protection address.
3.4 Data collection
Sometimes ENISA invites or collects information through web forms or by activating the end user’s email client and inviting an email. ENISA might also require collecting some personal data in order to make available certain services through its web site. ENISA collects such data as it might be strictly necessary in order to deliver the service concerned. ENISA treats such collected personal data according to the policy described in Regulation (EC) No 45/2001 mentioned above.
e-Subscriptions via the ENISA website: ENISA relies on the external service provider www.mailchimp.com for the registration and management of subscriptions to its newsletter. This service provider is based in the US and ENISA has signed with the company specific terms on data processing, compliant with the model contractual clauses of the European Commission. Your personal data (e.g. name, e-mail account) are processed solely for the purpose of your newsletter subscription and related services (alerts, notifications) and the data will under no circumstances be shared with any third party unrelated to this purpose.
ENISA determines the purposes and means of the processing of personal data and ensures the conformity of the specific electronic service offered with the personal data protection policy stipulated in Regulation (EC) No 45/2001.
3.8 Follow up on queries
Regarding the content of a question or query, ENISA makes best efforts to reply within prescribed time limits, and keep the users informed of an third party that might handle such question or query.