1.0 OUR CORE BELIEFS REGARDING USER PRIVACY AND DATA PROTECTION
- User privacy and data protection are fundamental rights
- We have a responsibility to protect user data
- Data is a liability, it should only be collected and processed only when absolutely necessary
- Personal data is NOT sold, rented, or distributed
- The data in the system belongs to those offering services via the platform
2.0 RELEVANT LEGISLATION
3.0 PERSONAL INFORMATION THAT THIS WEBSITE COLLECTS AND WHY WE COLLECT ITThis website collects and uses personal information for the following reasons:
3.2 Contact forms and email linksShould you choose to contact us using the contact form via our “CONTACT” button on the main site or an email link like, none of the data that you supply will be stored by this website or passed to / be processed by any of the third party data processors defined in section 6.0. Instead the data will be collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). The SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted using SHA-2, 256-bit cryptography before being sent across the internet. The email content is then decrypted by our local computers and devices.
3.3 Cookie settingsCookie settings can be adapted using this link.
3.4 GÉANT Data ProtectionYour personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect your privacy. GÉANT Data Protection Code of Conduct: http://www.geant.net/uri/dataprotection-code-of-conduct/v1
4.0 HOW WE STORE YOUR PERSONAL INFORMATIONIf you submit data on this website some personal information will be stored within this website’s database. This data is currently stored in an identifiable fashion. In the near future we aim to change the storage of this data to a pseudonymous fashion meaning that the data would require additional processing using a separately stored ‘key’ before it could be used to identify an individual. Pseudonymisation is a recent requirement of the GDPR which many web application developers are currently working to fully implement. We are committed to keeping it as a high priority and will implement it on this website as soon as we are able to.
5.0 ABOUT THIS WEBSITE’S SERVERThis website is hosted by Amazon within a EU data center located in Frankfurt. Some of the data center’s more notable security features are as follows:
- 24 x 7 x 365 manned security & monitoring
- smart card access policies
- internal and external CCTV systems
- security breach alarms
6.0 OUR THIRD PARTY DATA PROCESSORSWe use a number of third parties to process personal data on our behalf. These third parties have been carefully chosen and all of them comply with the legislation set out in section 2.0. All 3 of these third parties are based in the USA and are EU-U.S Privacy Shield compliant.
7.0 DATA BREACHESWe will report any unlawful data breach of this website’s database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach being detected if it is apparent that personal data stored in an identifiable manner has been stolen.