Who we are
We take data protection very seriously.
When you visit our website, leave comments on our website and when you sign up to our newsletter via this website, we collect, use and are responsible for certain Personal Data about you.
Our use of your Personal Data is regulated by the General Data Protection Regulation EU 2016/679, as well as the Data Protection Act 2018 (“Data Protection Laws”).
If you subscribe to our newsletter on this Website, we will collect your first and last name and email address, as well as any other information that you may be asked to enter in the relevant ‘sign-up’ field for the newsletter.
The Website is not intended for use by children and we do not knowingly collect or use Personal Data relating to children.
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Although we try to avoid it, articles on this site potentially may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Our legal basis for processing your Personal Data
When we use your Personal Data we are required to have a legal basis for doing so. There are various different legal bases on which we may rely, depending on what Personal Data we process and why.
The legal bases we may rely on include: (i) consent: where you have given us clear consent for us to process your Personal Data for a specific purpose, such as subscription to our newsletter; (ii) legal obligation: where our use of your Personal Data is necessary for us to comply with the law (not including contractual obligations); (iii) legitimate interests: where our use of your Personal Data is necessary for our legitimate interests (such as the improvement of our services and/or Website).
Who we share your data with
If you request a password reset, your IP address will be included in the reset email.
If you sign up to our newsletter, we may share the visitor’s fist and last name, email address, as well as any other data or information provided by you, with our project partners. All of the aforementioned have signed a non-disclosure agreement or a standard terms agreement, which includes a confidentiality clause. Any further third parties we work with will also be asked to sign a non-disclosure agreement or another agreement containing a confidentiality clause before they obtain access to your Personal Data as Controller or Processor.
This data sharing enables us to establish a list of recipients for our newsletter as well as to optimise the running of the Website and the provision and optimising of the provision of our services.
We will also share Personal Data with law enforcement or other authorities if required by applicable law.
Transfer of your information out of the UK & European Economic Area (EEA)
Our servers are located in California, USA, which means that your Personal Data is stored outside of the EEA/UK. Countries outside of the EEA and the United Kingdom do not have the same data protection laws as the EEA and the United Kingdom. Countries outside of the EEA and the United Kingdom do not have the same data protection laws as the European Economic Area and the United Kingdom. If you would like further information please contact us.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
If you subscribe to our newsletter, you can unsubscribe at any time by contacting us through our Website and/or by contacting us through the contact details provided on the Website and/or using the ‘unsubscribe’ link in emails (to the extent provided). We will do this as soon as possible following your request but you acknowledge that this may take up to 10 days (a day being any day Monday to Friday that banks in the UK are open for business) to take effect. For more information on your rights in relation to marketing, see ‘Your rights’ below.
Under the Data Protection Laws you have a number of important rights, free of charge. They include, among other things, the rights to: fair processing of information and transparency over how we use your Personal Data, access to your Personal Data and to certain other supplementary information that this Privacy Notice is already designed to address, require us to correct any mistakes in your information which we hold, object at any time to processing of Personal Data concerning you for direct marketing, require the erasure of Personal Data concerning you in certain situations, object in certain other situations to our continued processing of your Personal Data, otherwise restrict our processing of your Personal Data in certain circumstances.
For us, this means, inter alia, that if you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. You can also ask to be unsubscribed from our newsletter, as set out above. This does not include any data we are obliged to keep for administrative, legal, purposes.
For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO).
If you would like to exercise any of those rights, please email, or write to us through the Website or our contact information set out on the Website and, when or if you do contact us in this respect, please let us have enough information to identify you, such as your name and your email address and let us know the information and/or Personal Data to which your request relates.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
Additionally, we have appropriate security measures in place to prevent Personal Data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your Personal Data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
How to complain
We hope that we can resolve any query or concern you raise about our use of your information. If you do have a query or any concern, please contact us using the details provided in the ‘how to contact us’ section below and we will do our best to resolve any query or concern you may raise.
The applicable Data Protection Laws also give you the right to lodge a complaint with a supervisory authority, in particular in a European Economic Area state or in the United Kingdom if you work, normally live or if any alleged infringement of data protection laws occurred in the relevant state. The supervisory authority in the UK is the Information Commissioner who may be contacted at ico.org.uk/concerns/ or telephone: 0303 123 1113.
How to contact us
Do you need extra help?