Privacy Policy

Data provided as part of the IPM Decisions website may include some personal data. Your personal data will never be shared outside of the IPM Decisions consortium, and will only be used as part of the IPM Decisions network and platform. All data is stored digitally behind a secure network, and only accessed by staff participating within the IPM Decisions consortium. No personal data is shared outside of IPM Decisions.

IPM Decisions is funded by the EU Commission through H2020 funds.

Our core beliefs regarding user privacy and data protection

  • User privacy and data protection are core principles
  • We have a duty of care to the people within our data
  • We will never sell, rent or otherwise distribute or make public your personal information

Relevant legislation

Along with internal computer systems, the IPM Decisions consortium is designed to comply with the following international legislation with regards to data protection and user privacy:

  • EU Data Protection Directive 1995 (DPD)
  • EU General Data Protection Regulation 2018 (GDPR)

This consortium’s compliance with the above legislation, all of which are stringent in nature, means that we are likely compliant with the data protection and user privacy legislation set out by many other countries and territories as well. If you are unsure about whether this site is compliant with your own country of residences’ specific data protection and user privacy legislation you should contact us at for clarification.

Lawful basis

The lawful basis for data collection in the IPM Decisions project is legitimate interests

How we will use your data

The ipm decisions website collects your personal data so that we can:

  • Contact you with your permission with information relating to ipm decisions only

Personal information collected for IPM Decisions and why we collect it

As part of IPM Decisions, we collect and use personal information for the following reasons:

Contact details

  • Contact details are provided by website users from the IPM Decisions website contact us page. All personal data are restricted to the contact us page.  
  • Contact details are used as part of the IPM Decisions network; to send users supporting information (e.g. Quarterly newsletter) and resources. 
  • Website users who have entered their details into the contact us form may also be contacted with information about IPM Decisions workshops, events, updates and invitations to join similar projects or networks. 

Your Rights

Under the GDPR, from the 25th May 2018, you have several rights:

  • Right of access – you have the right to request a copy of the information that we hold about you.
  • Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
  • Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
  • Right to restriction of processing – where certain conditions apply to have a right to restrict the processing.
  • Right of portability – you have the right to have the data we hold about you transferred to another organisation.
  • Right to object – you have the right to object to certain types of processing such as direct marketing.
  • Right to object to automated processing, including profiling – you also have the right to be subject to the legal effects of automated processing or profiling.
  • Right to judicial review: in the event that IPM Decisions refuses your request under rights of access, we will provide you with a reason as to why and you have the right to complain.

If you wish to exercise any of these rights please contact us on

Data storage

  • Your data will be stored on a secure server based in the European Union and will be password protected and encrypted
  • Access to IPM Decisions data is restricted to named staff in the IPM Decisions consortium. 
  • IPM Decisions data may be shared with IPM Decisions funders (European Commission) or additional third parties, however where IPM Decisions data are shared all personal data will be removed prior to transfer. 


Data breaches

We will report any unlawful data breach of the ipm decisions database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen, and there is a high likelihood or severity of the resulting risk to people’s rights and freedoms.

Data controller

The data controller of this website is: rsk adas limited, a uk private limited company with company number: 10486936

Whose registered office is: spring lodge, 172 chester road, helsby, cheshire uk wa6 0ar

Changes to our privacy policy

This privacy policy may change from time to time in line with legislation or industry developments. We will not explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page occasionally for any changes. Specific policy changes and updates are mentioned in the change log below.

Change log

This privacy policy was last updated 27 November 2019