Organization

STELAR SECURITY TECHNOLOGY LAW RESEARCH UG (HAFTUNGSBESCHRANKT) GMBH

Hamburg research firm specializing in cybersecurity, privacy law, and data protection for healthcare and digital platforms across EU projects.

Research institutesecurityDE

H2020 projects

As coordinator

Total EC funding

€4.1M

Unique partners

249

What they do

Their core work

STELAR is a Hamburg-based research company specializing in the intersection of cybersecurity, privacy law, and technology regulation — particularly as applied to healthcare and digital systems. They provide expertise in data protection compliance (GDPR), privacy-by-design architectures, and security assessments for sensitive domains like hospitals, e-health platforms, and personal data ecosystems. Their work spans from technical cybersecurity toolkits and risk assessment frameworks to the legal and ethical dimensions of data handling, making them a bridge between technology developers and regulatory requirements. They also contribute human factors research and user behavior analysis to security and transport projects.

Core expertise

What they specialise in

Privacy and data protection (legal + technical)primary

7 projects

Central theme across OPERANDO, SHiELD, PROTECT, CSI-COP, SOTERIA, PANACEA, and HEIR — covering GDPR compliance, consent management, anonymization, and privacy-by-design.

Healthcare cybersecurityprimary

4 projects

PANACEA (hospital cybersecurity toolkit), SHiELD (health data exchange security), HEIR (healthcare informatics resilience), and PROCare4Life demonstrate deep focus on securing health infrastructure.

Digital health and active ageing platformssecondary

4 projects

PHArA-ON (healthy ageing pilots), PROCare4Life (elderly care), DeepHealth (biomedical deep learning), and CLARIFY (cancer survivor follow-up) show sustained health-tech involvement.

Cybersecurity risk assessment and certificationsecondary

3 projects

PANACEA addressed dynamic cyber risk assessment and certification; HEIR focused on real-time threat hunting and benchmarking; SOTERIA on cryptography and biometrics.

Human factors and user behavior in security/transportsecondary

2 projects

DriveToTheFuture studied user behavior and HMI in automated vehicles; PANACEA included human factors in cybersecurity — showing expertise in how people interact with secure systems.

Rehabilitation and assistive technologiesemerging

1 project

ReHyb (hybrid neuroprosthesis with digital twin and exoskeleton) marks an expansion into physical rehabilitation technology.

Evolution & trajectory

How they've shifted over time

Early focus

Health data privacy and security

Recent focus

Applied privacy-preserving digital platforms

STELAR's early work (2015–2018) focused squarely on online privacy enforcement and health data security — projects like OPERANDO and SHiELD dealt with consent management, privacy-by-design, and secure data exchange in e-health. From 2019 onward, their portfolio broadened significantly: they retained the privacy/security core but expanded into applied digital health (active ageing, cancer follow-up, rehabilitation), citizen science around GDPR compliance (CSI-COP), and even automated vehicle user behavior. The recent period also shows a shift toward more applied, platform-oriented work — smart wearables, AI, cloud computing, and personal data management platforms — suggesting a move from foundational privacy research toward real-world deployment of privacy-preserving systems.

STELAR is moving from pure privacy research toward building and validating practical data protection solutions in healthcare, ageing, and citizen-facing digital platforms — making them increasingly relevant for projects that need GDPR-ready deployment.

Collaboration profile

How they like to work

Role: specialist_contributorReach: European28 countries collaborated

STELAR operates exclusively as a consortium partner — across 14 projects they have never served as coordinator, consistently joining as a participant (13 times) or third party (once). They work in large, diverse consortia: 249 unique partners across 28 countries indicates they are comfortable in big multi-national projects and are sought after as a specialist contributor. Their role pattern suggests they bring targeted legal-technical expertise on privacy and security rather than driving project management, making them a low-friction partner to onboard for their specific domain knowledge.

With 249 unique consortium partners across 28 countries, STELAR has one of the broader collaboration networks you'd expect from a small research firm — spanning most of the EU and associated countries. Their partnerships are widely distributed rather than concentrated in any single geography, reflecting the cross-border nature of privacy regulation and digital health.

Why partner with them

What sets them apart

STELAR occupies a rare niche at the intersection of cybersecurity technology, privacy law, and healthcare — a combination that few organizations cover with equal depth on both the legal and technical sides. For consortium builders, this means one partner can handle both the GDPR/ethical compliance work packages and the technical security architecture, reducing coordination overhead. Their Hamburg base and German legal perspective add particular value for projects dealing with strict EU data protection regimes, and their consistent track record across 14 projects over six years signals reliability as a repeat EU project partner.

Notable projects

Highlights from their portfolio

PHArA-ON
Largest funding (EUR 521,497) and longest duration (2019–2024), focused on healthy ageing pilots with AI, wearables, and open calls — showing STELAR's capacity for major platform-scale work.
PANACEA
Core cybersecurity-for-healthcare project covering toolkit development, risk assessment, certification, blockchain, and human factors — the most complete expression of STELAR's primary expertise.
CSI-COP
Unusual citizen science approach to GDPR compliance — investigating cookies and app tracking with public participation, showing STELAR's ability to bridge technical privacy work with societal engagement.

Cross-sector capabilities

Health / digital health platformsTransport / automated vehicle human factorsManufacturing / personalized production privacySociety / citizen science and data rights

Analysis note: Strong data across 14 projects with clear thematic coherence. No website or VAT available limits verification of current commercial activities. The organization's legal form (UG haftungsbeschränkt) suggests a small, specialized entity rather than a large institute, despite the REC classification.