IPM Decisions is funded by the EU Commission through H2020 funds.
Our core beliefs regarding user privacy and data protection
- User privacy and data protection are core principles
- We have a duty of care to the people whose personal data we hold
- We will never sell, rent or otherwise distribute or make public your personal information
Along with internal computer systems, the IPM Decisions consortium is designed to comply with the following international legislation with regards to data protection and user privacy:
- EU Data Protection Directive 1995 (DPD)
- EU General Data Protection Regulation 2018 (GDPR)
This consortium’s compliance with the above legislation, all of which are stringent in nature, means that we are likely compliant with the data protection and user privacy legislation set out by many other countries and territories as well. If you are unsure about whether this site is compliant with your own country of residences’ specific data protection and user privacy legislation you should contact us at firstname.lastname@example.org for clarification.
The lawful basis for data collection in the IPM Decisions project is legitimate interests.
‘Legitimate Interest’ – this means that personal information will be used to enable us to keep stakeholders informed in ways they would reasonably expect to run the website and associated platform.
‘Consent’ – this means that the provision of information to consumers, which may include direct marketing, will be done when the data subject has consented to the processing of his or her personal data for one or more specific purposes.
How we will use your data
The IPM Decisions website collects your personal data so that we can:
- Contact you with your permission with information relating to IPM Decisions
- To identify usage trends on our websites and social media channels in order to enhance, improve or modify our websites and to facilitate your participation in interactive features you may choose to use on our websites and social media, also to personalise your user experience by presenting content tailored to you
Personal information collected for IPM Decisions and why we collect it
You may give us your personal information via the contact us page, when you are involved in a project workshop, or when you sign up to the project DSS platform. We will not receive your information through third parties, unless you have given written permission for the third party to pass on your details. We may supplement the information you provide with data from the public domain, such as Companies House and other public databases. As part of IPM Decisions, we collect and use personal information for the following reasons:
- Contact details are provided by website users from the IPM Decisions website contact us page. All personal data are restricted to the contact us page.
- Contact details are used as part of the IPM Decisions network; to send users supporting information (e.g. Quarterly newsletter) and resources.
- Website users who have entered their details into the contact us form may also be contacted with information about IPM Decisions workshops, events, updates and invitations to join similar projects or networks.
What details we collect
"Personal Information" is information that identifies you as an individual or relates to an identifiable individual. Personal Information we may collect includes:
- Your title, first name, surname, business name, postal address and postcode, email address, telephone and mobile numbers
- Your social media handles
- Field locations
- Information regarding your dealings with us including details of your attendance at events and engagement with our programmes
- Any preference you have in relation to our publications and services
- Any information you may voluntarily submit to us by completing any paper or web-based form or job application
- Details of your visits to and usage of our websites
- Details of whether you have opened our emails, clicked on a link or watched our videos
- Membership of panels, committees, bodies and organisations
- In some instances we may also request date of birth and demographic information.
Under the GDPR, from the 25th May 2018, you have several rights:
- Right of access – you have the right to request a copy of the information that we hold about you.
- Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
- Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
- Right to restriction of processing – where certain conditions apply to have a right to restrict the processing.
- Right of portability – you have the right to have the data we hold about you transferred to another organisation.
- Right to object – you have the right to object to certain types of processing such as direct marketing.
- Right to object to automated processing, including profiling – you also have the right to be subject to the legal effects of automated processing or profiling.
- Right to judicial review: in the event that IPM Decisions refuses your request under rights of access, we will provide you with a reason as to why and you have the right to complain.
If you wish to exercise any of these rights please contact us on email@example.com
We ensure that there are appropriate and proportionate controls in place to protect your personal information.
- Your data will be stored on a secure server based in the European Union and will be password protected and encrypted
- Access to IPM Decisions data is restricted to named staff in the IPM Decisions consortium.
- IPM Decisions data may be shared with IPM Decisions funders (European Commission) or additional third parties, however where IPM Decisions data are shared all personal data will be removed prior to transfer.
We will never sell your personal information to third parties and we will not release your personal information to any company outside of the IPM Decisions consortium for their mailing or marketing purposes. We will retain your personal information for no longer than necessary for the purpose it was obtained, unless a longer retention period is required or permitted by law.
We will report any unlawful data breach of the IPM Decisions database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen, and there is a high likelihood or severity of the resulting risk to people’s rights and freedoms.
The data controller of this website is: RSK ADAS Limited, a UK private limited company with company number: 10486936
Whose registered office is: Spring Lodge, 172 Chester Road, Helsby, Cheshire UK WA6 0AR