D1.3 Data Management Plan



ATELIER will demonstrate Positive Energy Districts (PEDs) in eight European cities that will strive for sustainability and carbon neutrality. Amsterdam and Bilbao as Lighthouse Cities (LHCs) and Bratislava, Budapest, Copenhagen, Krakow, Matosinhos, and Riga as Fellow Cities (FCs) aim at inspiring other European cities in replicating similar models that use PEDs as basic management unit for the implementation of energy transition strategies. Providing access to high quality data will facilitate the replication of the demonstrated solutions, the cooperation with other municipalities and the rapid uptake of results all along the European Union (EU).

This deliverable is targeting a consistent management of data all along the ATELIER data cycle (section 2) by defining two separate but interconnected sections: ATELIER Data Management Plan (DMP, section 3) and ATELIER Data Protection Impact Assessment (DPIA, section 4). The DMP provides a broad analysis of the data that will be generated, processed
and/or stored by ATELIER partners. It provides a description of the methods to be used in terms of making ATELIER data findable, accessible, interoperable and reusable. The document also provides an explanation about the allocation of resources which includes the short/medium-term strategy and long-term strategy which assures ATELIER generated data
would be preserve and accessible after the end of the project. ATELIER being a smart city project, the seamless communication among the different city infrastructures, municipal services and citizens is crucial and keeps at the core of the project. Thus, making an efficient management of data and providing the mechanisms to deliver high quality standards is of vital importance.

ATELIER designs a DPIA plan that provides the tools and methods to implement the General Data Protection Regulation (GDPR) of the EU. The regulation tries to strike a balance between being strong enough to give individuals clear and tangible protection while being flexible enough to allow for the legitimate interests of businesses and the public. ATELIER not only provides the mechanisms to assess the risks regarding the use (or misuse) of personal data but it also provides methods to manage other ethic and security issues, as those related to the participation of volunteers, the participation (as beneficiary) of partners from non-EU countries or the security with respect to data management platforms. As basic DPIA tools, ATELIER foresees to track and continue filling the Data Protection Plans and the contact details of Data Protection Impact Officers of all the entities handling sensitive data or sensitive information.