Privacy Policy

11 Sept 2020

Privacy Policy

1. INTRODUCTION

NIESR is committed to protecting your privacy and security. This policy explains how and why we use your personal data, to ensure you remain informed and in control of your information.

Our Contact Details:

Data Protection Officer
2 Dean Trench Street
SW1P 2HE

0207 222 7665

Dataprotectionofficer [at] niesr.ac.uk

           2. THE TYPE OF PERSONAL INFORMATION WE COLLECT

Personal data or personal information means any information about an individual from which that person can be identified.  It does not include data or information where the identify has been removed (anonymous data).

We may collect personal information from you through this website and/or in connection with one of the activities set out in the next section.

The types of personal data we may collect includes but is not limited to:

Business contact details such as the details of the company you work for, your title or position.

Personal contact information such as name, address, gender, data of birth, telephone number or other contact details

Payment information (if and to the extent that nay such payment information constitutes personal data)

Health information (strictly limited to such information we require to discharge our legal and duty of care obligations)

Technical information relating to your visits to our websites, social media or other electronic communications or economic tools

Marketing data about whether you would like to receive marketing communications from us and your preferences in relation to such marketing.

           3. HOW WE GET PERSONAL INFORMATION AND WHY WE HAVE IT

We will only collect personal data where that information is necessary for us to complete one of the functions or activities of our charity.

Most of the personal information we process is provided to us directly by you for one of the following reasons

Applications submitted by you Corporate Membership or subscriptions to our economic tools or newsletters.

Enquiries made by you through our websites or social media

When you follow our social media accounts and register or subscribe to our mailing list.

Participation in a survey, research project, conference, training session or other events

Direct contact between you and our staff eg email, phone and direct meeting

Sending you marketing communications relating to NIESR which to which you have consented and which we think may be of interest to you.  You can inform us at any time here if you wish to unsubscribe, events [at] niesr.ac.uk (here).

We do not normally collect sensitive personal data and would only do so in the event that it was necessary for your protection, for example in the event of an accident on our premises.

                  4. WHO WILL WE SHARE YOUR DATA WITH?

We will never sell your personal data. 

We may disclose information to third parties where we have received your consent to do so or where we are required to do so by law.

We may also disclose your personal data to third parties:

•  The suppliers and service providers we use to run our business processes, examples include:
  • Our hosting provider, providers of software as a service and e-mail service providers.
  • When we partner with a third party to host an event
  • Where we collaborate with or sub-contract to a third party to complete our research.

We may also share your data with our auditors.

In some instances where we share data with certain third parties those third parties will also be controllers of your data.  The survey company that we use, (currently Qualtrics and SurveyMonkey), will also be a controller of your data.  As controllers, they are responsible for their processing of your personal data. Please refer to Qualtrics and SurveyMonkey’s privacy policy for details as to how they process personal data.

          5. BASIS FOR PROCESSING INFORMATION

Under the General Data Protection Regulation (GDPR), the lawful bases we rely on for processing this information are:

(a) Your consent. You are able to remove your consent at any time. You can do this by contacting Dataprotectionofficer [at] niesr.ac.uk

(b) We have a contractual obligation.

(c) We have a legal obligation.

(d) We have a legitimate interest.

(e) We need it to perform a public task.

          6. HOW WE STORE YOUR PERSONAL INFORMATION

Your information is stored in our secure servers.  NIESR is ISO 27001 and Cyber Essentials accredited and our storage conforms with these requirements in order to safeguard and secure your information.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to us; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

Data is only accessible to staff who require access for NIESR-related work and staff are trained to ensure that your data is secure.

We will only use and store information for so long as it is required for the purposes it was collected for. How long information will be stored for depends on the information in question and what it is being used for. For example, if you ask us not to send you marketing emails, we will stop storing your emails for marketing purposes (though we’ll keep a record of your preference not to be emailed).

We continually review what information we hold and delete what is no longer required. 

       7. COOKIES

A cookie is a small data file which is stored on your browser or the hard drive of your computer (or other electronic device) when you access our site.

For more information about the cookies we use and the reasons why we use them, please see our Cookies Policy.  (add link to Cookies policy).

       8. YOUR DATA PROTECTION RIGHTS

Under data protection law, you have rights including:

• Your right of access - You have the right to ask us for copies of your personal information.
• Your right to rectification - You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
• Your right to erasure - You have the right to ask us to erase your personal information in certain circumstances.
• Your right to restriction of processing - You have the right to ask us to restrict the processing of your personal information in certain circumstances.
• Your right to object to processing - You have the the right to object to the processing of your personal information in certain circumstances.
• Your right to data portability - You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
• You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you.

Please contact us at dataprotectionofficer [at] niesr.ac.uk , 0207 222 7665 if you wish to make a request.

        9. HOW TO COMPLAIN

If you have any concerns about our use of your personal information, you can make a complaint to us at dataprotectionofficer [at] niesr.ac.uk , 0207222 7665

You can also complain to the ICO if you are unhappy with how we have used your data.

The ICO’s address:            

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113

ICO website: https://www.ico.org.uk

 

Cookies

A cookie consists of information sent by a web server to a web browser, and stored by the browser. The information is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser.

We use Google Analytics to analyse the use of this website.  Google Analytics generates statistical and other information about website use by means of cookies, which are stored on users' computers.  The information generated relating to our website is used to create reports about the use of the website. Google will store this information.  Google's privacy policy is available at: http://www.google.com/privacypolicy.html.

Most browsers allow you to reject all cookies, whilst some browsers allow you to reject just third party cookies.  For example, in Internet Explorer you can refuse all cookies by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector.  Blocking all cookies will, however, have a negative impact upon the usability of many websites.

Cookie	Name	Purpose
Session cookie	SESS<...>	When required, cookies beginning with 'SESS' are used to track an individual's persistent status, such as whether they are logged in.
Google analytics	_utma _utmb _utmc _utmz	These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.
JavaScript	has_js	We use this cookie to track which browsers are capable of processing JavaScript. JavaScript is a scripting language which provides enhanced interactivity and visual effects.
Cookie acceptance	cookied-agreed-en	This cookie is used to record if a user has accepted the use of cookies on this website.