Council of EuropeComunitatea Internet

Privacy Notice

Last updated: 12 May 2026

1. Who is collecting your data

This survey is conducted by the Association *Comunitatea Internet* (Republic of Moldova), in the framework of the CyberEast+ Project of the Council of Europe, as part of the National Study on Cybercrime in the Republic of Moldova.

The data controller for the survey responses is the Association *Comunitatea Internet*.

2. What data is processed

When you submit a response, the following data is processed:

  • Your answers to the survey questions.
  • Free-text fields, only if you fill them in (you are explicitly asked not to provide names, phone numbers, account numbers or any other identifiers).
  • Technical metadata: a one-way hash of your IP address (SHA-256, the original IP is discarded after audit), an approximate country derived from your IP at submission time, your browser User-Agent string, your chosen interface language, and the start/end timestamps of the session (used to compute completion time).
  • A short-lived bot-challenge token generated by Cloudflare Turnstile (used only to confirm that the request comes from a real browser; not stored as personal data).

We do not ask for and do not retain your name, e-mail, phone number, identity-document number, financial-account information or precise location.

3. Why we process this data (purpose)

The purpose is strictly research: to understand cybercrime threats, victimisation experience, reporting behaviour and public perceptions of cybercrime in the Republic of Moldova. Aggregated and anonymised findings will be used in the National Study report and may be shared with the Council of Europe and Moldovan authorities.

4. Lawful basis

Processing is based on your explicit consent (Article 6(1)(a) GDPR / Article 5(1)(a) of Moldovan Law no. 133/2011 on the Protection of Personal Data), given by ticking the consent box on the survey page. You may withdraw your consent at any time (see section 8).

5. How long we keep the data

  • Raw responses, including hashed IP and User-Agent, are kept until the publication of the National Study, plus a maximum of 24 months after publication, for verification and audit purposes.
  • After that period, the dataset is either deleted or fully anonymised (technical metadata removed, free-text fields stripped of any identifying content).
  • Aggregated, statistical findings derived from the dataset have no individual identifiers and may be retained indefinitely for archival and research purposes.

6. Who has access to the data

  • The research team of *Comunitatea Internet*.
  • The lead consultant designated by the Council of Europe / CyberEast+ Project, under contractual confidentiality obligations.
  • The data is not sold, advertised against, or shared with any commercial third party.

7. Where the data is stored

Survey responses are stored on a server hosted within the European Union (Hetzner Online GmbH, Germany), behind HTTPS-encrypted connections and a Cloudflare front-end. Standard contractual safeguards apply.

8. Your rights (GDPR / Law no. 133/2011)

You have the right to:

  • request access to your personal data;
  • request correction or deletion;
  • object to or restrict processing;
  • withdraw your consent at any time;
  • lodge a complaint with the National Centre for Personal Data Protection of the Republic of Moldova.

Because the survey is intentionally collected without direct identifiers, exercising these rights typically requires you to provide the approximate date and time of submission and the rough content of your responses, so we can reasonably locate your record.

9. Contact

For any data-protection request, please contact:

Comunitatea Internet — Data Protection contact

E-mail: office@internetsociety.md

National Centre for Personal Data Protection of the Republic of Moldova

https://datepersonale.md

Back to the survey