Legal Notice

© European Union Agency for Network and Information Security (ENISA), 2016

This web site is subject to a copyright clause, a disclaimer, and a personal data protection clause.

1. Copyright

1.1 Definition

Material in this Legal Notice includes data, text, software and multimedia, such as images and sound that might be made available or publicized through the ENISA web site.

1.2 Authorization

Reproduction of material published on this web site is authorized, provided the source is acknowledged, unless it is stated otherwise. Where prior permission must be obtained for the reproduction or use of material published on this web site the above mentioned permission shall be cancelled and restrictions shall be imposed through a legal notice as appropriate published on that specific material. Enquiries regarding authorization for reproduction can be sent to data protection address.

For any use or reproduction of photos or other material that is not under the ENISA
copyright, permission must be sought directly from the copyright holders.

1.3 ENISA logo

The reproduction of the ENISA logo is permitted provided that the source is acknowledged and the logo is used for press and media related purposes. All other uses are prohibited unless permission is requested.

2. Disclaimer

2.1 Scope of this web site

This web site is intended for informative purposes only regarding public access to its own activities. This web site should not be construed to represent an official or authentic publication of ENISA or ENISA bodies unless adopted pursuant to (Regulation (EC) No 460/2004 of the European Parliament and of the Council of 10 March 2004 establishing the European Network and Information Security Agency) repealed  by Regulation (EU) 526/2013. Authentic are documents adopted by ENISA or ENISA bodies and published in the paper editions of the Official Journal of the European Communities or as stipulated in ENISA Regulation (EC) No 460/2004/new regulation Regulation (EU) 526/2013

2.2. Access to Documents

Documents published on this web site constitute a measure implementing Regulation (EC) No 1049/2001 regarding public access to European Parliament, Council and Commission documents.

2.3 Accuracy of material

ENISA makes best efforts to keep material on this web site up to date and accurate. This web site does not necessarily represent state-of the-art and it is updated from time to time. If general errors, such as editorial errors are detected ENISA makes best efforts to correct them as appropriate. Documents published are as indicated, and sometimes they might not be in the final or formally accepted version. Inaccuracies in material published can be communicated to: data protection address.

2.4 Technical errors

In spite of ENISA’s best efforts, sometimes technical errors might occur. ENISA does not warrant the error-free operation of material as appropriate that it publishes on this web site. ENISA accepts no responsibility or liability whatsoever with regard to material accessed, operated on or downloaded through this web site.

2.5 Third party sources

Third party sources are quoted as appropriate. ENISA is not responsible for the content of the external sources including external web sites accessed through its own. Users are urged to receive notice of the terms and conditions as well as data protection policies of such third party web sites. Photo credentials – Shutterstock.

2.6 No specific advice

Nothing in this web site is to be considered to constitute advice on specific cases, including professional or legal advice, unless it is stated otherwise.

2.7 Use of material

Neither ENISA nor any person acting on its behalf is responsible for the use that might be made of the information contained in this web site. ENISA assumes no responsibility with regard to the use of material available on this web site. Users act at their own risk when using material on this web site and they are hereby urged to take necessary precautions when evaluating the usefulness and applicability of this material for their intended purposes.

2.8 National and EU Law

This disclaimer is not intended to limit the liability of ENISA in contravention of any requirements laid down in applicable national law or to exclude its liability for matters which may not be excluded under that law.

3. Personal data protection

3.1 Personal data protection policy

ENISA is an EU body committed to and regulated for the protection it affords to personal data. ENISA adheres to and is regulated under Regulation (EC) No 45/2001 of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community, institutions and bodies and on the free movement of such data. Regulation (EC) No 45/2001 constitutes the general ENISA policy on personal data protection.

3.2 Supervision

ENISA is supervised by the European Data Protection Supervisor that acts as an independent supervisory authority. For more information please visit:

3.3 Data protection officer

An appointed Data Protection Officer ensures that ENISA observes the requirements of the ENISA data protection policy as stipulated in Regulation (EC) No 45/2001.
For more information contact: data protection address.

3.4 Data collection

Sometimes ENISA invites or collects information through web forms or by activating the end user’s email client and inviting an email. ENISA might also require collecting some personal data in order to make available certain services through its web site. ENISA collects such data as it might be strictly necessary in order to deliver the service concerned. ENISA treats such collected personal data according to the policy described in Regulation (EC) No 45/2001 mentioned above.

3.5 Cookies

ENISA's website uses Piwik (, an open source web analytics service to help analyse the use of this website. For more information see our cookies policy page.

3.6  E-services

e-Subscriptions via the ENISA website: ENISA relies on the external service provider for the registration and management of subscriptions to its newsletter. This service provider is based in the US and ENISA has signed with the company specific terms on data processing, compliant with the model contractual clauses of the European Commission. Your personal data (e.g. name, e-mail account) are processed solely for the purpose of your newsletter subscription and related services (alerts, notifications) and the data will under no circumstances be shared with any third party unrelated to this purpose.

3.7 Conformity

ENISA determines the purposes and means of the processing of personal data and ensures the conformity of the specific electronic service offered with the personal data protection policy stipulated in Regulation (EC) No 45/2001.

3.8 Follow up on queries

Regarding the content of a question or query, ENISA makes best efforts to reply within prescribed time limits, and keep the users informed of an third party that might handle such question or query.

We use cookies to ensure we give you the best browsing experience on our website. Find out more on how we use cookies and how you can change your settings.

Ok, I understand No, tell me more