Privacy and data protection are increasingly vital aspects of daily life—both in personal contexts and professional environments. These rights are firmly established as fundamental under Articles 7 and 8 of the Charter of Fundamental Rights of the European Union.

A dedicated legal framework—Regulation (EU) 2018/1725—governs the processing of personal data by EU institutions, bodies, offices, and agencies, including the European External Action Service (EEAS). This regulation aims to ensure a high level of data protection when personal data is collected, processed, or stored for the benefit of EU citizens, institutional staff, and international partners. It aligns with the principles of the General Data Protection Regulation (GDPR), which applies to authorities, private entities, and civil society organisations across the EU Member States.

In fulfilling its scopet of work ASP Group may collect some personal data.

Personal data refers to any information relating to an identified or identifiable natural person. This includes any data that can directly or indirectly reveal an individual’s identity, such as names, photographs, dates of birth, identification numbers, phone numbers, or email addresses. It also encompasses information related to behaviour, travel patterns, purchasing habits, and even personal characteristics—particularly when linked to profiles, including those on social media platforms.

Use of Personal Data

ASP GROUP maintains a database of security professionals and experts exclusively for the purposes of its operational activities.

• The primary objective of this database is to inform registered experts of potential cooperation opportunities that align with their areas of expertise.
• The information you, as an expert, provide is used solely for internal purposes, specifically for identifying suitable candidates for our ongoing or upcoming projects. Your CV will never be included in any proposal, offer, or expression of interest without your explicit prior consent.
• If you are selected for an assignment—either as part of a tender preparation or an ongoing project—your CV and the associated information may be shared with relevant stakeholders strictly for the purpose of fulfilling that specific mission, tender, or contract.
• A portion of your personal data may be accessed by ASP GROUP staff located outside the European Economic Area (EEA), under controlled conditions.
• Any financial data collected is processed exclusively for the fulfillment of contractual obligations or to comply with applicable legal requirements.

ASP GROUP maintains a database of security professionals and experts exclusively for the purposes of its operational activities.

• Your personal information will not be shared with third parties unless you have provided prior authorization, and only for the purpose of presenting you for potential project opportunities.
• In such cases, third parties may include ASP GROUP clients or consortium partners, and access will be strictly limited to the scope of bidding for or executing service contracts.

Experts / individuals affiliated us have the following rights concerning their personal data, in accordance with applicable data protection legislation:

1. Access their stored data;
2. Rectify their stored data;
3. have their stored data erased;
4. restrict the processing of their stored data;
5. transmit their stored data to another party (portability);
6. object.

To exercise any of the above rights, individuals may contact ASP GROUP by sending an email to GDPR@ASPGROUP.COM. Each request will be handled in accordance with applicable legal obligations and within the timeframe required by law.

Also, if you believe your personal data is not being adequately protected or if you suspect any misuse, please contact us immediately at GDPR@ASPGROUP.COM