We will not distribute, sell, trade, or rent your personal information to third parties. We may provide aggregate statistics about our website’s users, traffic patterns, and related site information to reputable third parties such as our funding bodies or potential partners. Such statistical information will not include personally identifying information.
We follow the relevant legal requirements and takes all reasonable precautions to safeguard personal information.
We are committed to protecting your privacy and security. This policy explains how and why we use your personal data, to ensure you remain informed and in control of your information.
You can decide not to receive communications or change how we contact you. If you wish to do so, please contact us by emailing [email protected], writing to 514, Lilamani Corporate Heights, opp. BRTS Bus Stop, Nava Vadaj, Ahmedabad, Gujarat 380013 or 8849828830 (Lines open at 9.30 am–6 pm, Mon–Fri).
We will never sell your personal data, and will only ever share it with organizations we work with where necessary and if its privacy and security are guaranteed.
Any questions you have in relation to this policy or how we use your personal data should be sent to [email protected] for the attention of Our Head of External Affairs.
2. ABOUT US
Your personal data (i.e. any information which identifies you, or which can be identified as relating to you personally) will be collected and used by us.
3. THE INFORMATION WE COLLECT
Personal data you provide
We collect the data you provide to us. This includes information you give when joining as a member or signing up to our newsletter, placing an order, or communicating with us. For example:
- Personal details (name, job title, organization, and email) when you sign up for our newsletter and/or events.
- Financial information (payment information such as credit/debit card or direct debit details, when making donations or paying for a service. Please see section 8 for more information on payment security); and
- Details of the events you have attended.
Sensitive personal data
We rarely collect or store sensitive personal data (such as information relating to health beliefs or political affiliation) about those signed up for our newsletter. However, there are some situations where this will occur (e.g. if you have an accident on one of our events). If this occurs, we’ll take extra care to ensure your privacy rights are protected.
Accidents or incidents
If an accident or incident occurs on our property, at one of our events, or involving one of our staff then we’ll keep a record of this (which may include personal data and sensitive personal data).
4. HOW WE USE INFORMATION
We only ever use your personal data with your consent, or where it is necessary in order to:
- Enter into, or perform, a contract with you;
- Comply with a legal duty;
- Protect your vital interests;
- for our own (or a third party’s) lawful interests, provided your rights don’t override these.
In any event, we’ll only use your information for the purpose or purposes it was collected for (or else for closely related purposes).
We use personal data for administrative purposes (i.e. on our research and events programs). This includes:
- Maintaining databases of those signed up to our newsletter;
- Fulfilling orders for goods or services (whether placed online, over the phone, or in-person);
- Helping us respect your choices and preferences (e.g. if you ask not to receive marketing material, we’ll keep a record of this).
5. DISCLOSING AND SHARING DATA
Your personal data–which may include your name, organization, position, and email address are held by our mailing list provider. By signing up for our newsletter you agree to the terms and conditions of MailChimp.com (http://mailchimp.com/legal/terms/). This information is not shared with any other organization. If you wish to unsubscribe from our mailing list, you can do so by clicking the ‘unsubscribe link, found at the bottom of any email we send you–or by sending your name and email address to [email protected]– stating ‘Unsubscribe’ in the email in the subject line or body of the email.
If you register to attend an event, your personal data which may include your name, organization, and email address are held by our event registration provider. By registering to attend an event you are agreeing to the terms and conditions of Eventbrite (https://www.eventbrite.com/l/LegalTerms/)
Occasionally, where we partner with other organizations, we may also share information with them (for example, if you register to attend an event being jointly organized by us and another organization). We’ll only share information when necessary and we will never share your contact information (e.g. email or telephone).
We will ask for individuals to “opt-in” for most communications. This includes all our marketing communications (the term marketing is broadly defined and covers information shared in our newsletter.)
We use personal data to communicate with people, to promote us, and to help with fundraising activities. This includes keeping you up to date with information from us on our research, events, news, job opportunities, and other information relating to our work.
You can decide not to receive communications or change how we contact you at any time. If you wish to do so please contact us by emailing [email protected], writing to Dynamic-Methods, 514, Lilamani Corporate Heights, opp. BRTS Bus Stop, Nava Vadaj, Ahmedabad, Gujarat 380013 or telephoning 8849828830 (Lines open 9.30 am–6 pm, Mon–Fri).
What does ‘marketing’ mean?
Marketing does not just mean offering things for sale but also includes news and information about:
- Our research program, including details of recent reports or blogs;
- Our events and activities; and
- Job opportunities.
When you receive a communication, we may collect information about how you respond to or interact with that communication, and this may affect how we communicate with you in the future.
7. HOW WE PROTECT DATA
We employ a variety of physical and technical measures to keep your data safe and to prevent unauthorized access to or use, or disclosure of your personal information.
Electronic data and databases are stored on secure computer systems and we control who has access to information (using both physical and electronic means). Our staff receives data protection training and we have a set of detailed data protection procedures which personnel is required to follow when handling personal data.
All electronic forms that request financial data used to pass your details to our payment provider (Stripe Payments Europe: https://stripe.com/gb/privacy; https://stripe.com/privacy-shield-policy). Our complies with the payment card industry data security standard (PCI-DSS) published by the PCI Security Standards Council, and will never store card details. If you would rather make a payment through BACS or by cheque, please contact us by emailing [email protected], writing to Dynamic-Methods, 514, Lilamani Corporate Heights, opp. BRTS Bus Stop, Nava Vadaj, Ahmedabad, Gujarat 380013 or telephoning 8849828830 (Lines open 9.30 am–6 pm, Mon–Fri).
Of course, we cannot guarantee the security of your home computer or the internet, and any online communications (e.g. information provided by email or our website) are at the user’s own risk.
Where we store information
Our operations are based in Canada, and we store our data within the Canadian Union.
How long until we store information
We will only use and store information for so long as it is required for the purposes it was collected for. How long information will be stored depends on the information in question and what it is being used for. For example, if you ask us not to send you marketing emails, we will stop storing your emails for marketing purposes (though we’ll keep a record of your preference not to be emailed).
We continually review what information we hold and delete what is no longer required. We never store payment card information.
9. KEEPING YOU IN CONTROL
We want to ensure you remain in control of your personal data. Part of this is making sure you understand your legal rights, which are as follows:
the right to confirmation as to whether or not we have your personal data and, if we do, to obtain a copy of the personal information we hold (this is known as subject access request);
- The right to have your data erased (though this will not apply where it is necessary for us to continue to use the data for a lawful reason);
- The right to have inaccurate data rectified;
- The right to object to your data being used for marketing or profiling; and
- Where technically feasible, you have the right to personal data you have provided to us which we process automatically on the basis of your consent or the performance of a contract. This information will be provided in a common electronic format.
Please keep in mind that there are exceptions to the rights above and, though we will always try to respond to your satisfaction, there may be situations where we are unable to do so.
If you would like further information on your rights or wish to exercise them, please write to our Head of External Affairs, Dynamic-Methods, 514, Lilamani Corporate Heights, opp. BRTS Bus Stop, Nava Vadaj, Ahmedabad, Gujarat 380013 or by email; [email protected]
You can complain to us directly by contacting our Head of External Affairs using the details set out above.
If you are not happy with our response, or you believe that your data protection or privacy rights have been infringed, you can complain to the CANADA Information Commissioner’s Office which regulates and enforces data protection law in CANADA. Details of how to do this can be found at www.oic-ci.gc.ca
COOKIES AND LINKS TO OTHER SITES
The only cookies in use on our site are for Google Analytics. Google Analytics are tools employed by organizations to help them understand how visitors engage with their website, so improvements can be made. Google Analytics collects information anonymously–and reports overall trends, without disclosing information on individual visitors. By using our site you are consenting to saving and sending us this data. You can opt-out of Google Analytics–which will not affect how you visit our site. Further information on this can be found here: https://tools.google.com/dlpage/gaoptout
Our website uses local storage strictly for system administration to provide you with the best experience–used to create reports relating to web traffic and user preferences. This includes your IP address; details of which web browser or operating system was used; and information on how you use the site.
Links to other sites
Our website contains hyperlinks to many other websites. We are not responsible for the content or functionality of those external websites.
Note on compliance with the General Data Protection Regulation as pertaining to the use of social media data within our projects
The Centre for the Analysis of Social Media (CASM) often conducts research, which involves the collection and analysis of publicly available data from social media platforms. Much of this data, including usernames, is considered personal data under the General Data Protection Regulation (GDPR). In order to ensure this data is processed lawfully and transparently, the following procedures are followed by CASM projects undertaken by us:
- All data collected from social media platforms are accessed through the official application programming interface (API) of that platform and stored and used in compliance with that API’s terms of service.
- Data is only collected from platforms for which users have provided clear consent, as defined in Article 4(11) of the GDPR, to provide that platform with published data
- CASM often applies techniques in artificial intelligence to social media data, in order to conduct research on this data. As we have throughout our history as a research center, we ensure that the reasons for applying these techniques; the methodology used to analyze data, and the conclusions are drawn from our analysis are presented clearly and fully in each report. This includes publishing detailed accuracy scores for any machine learning algorithms applied as part of the research.
- This data is securely stored on a monitored server, accessible only to CASM staff, and encrypted in transit. In the event that a data breach is discovered, CASM will act swiftly to ensure that damage from this breach is minimized, including informing relevant supervisory authorities and acting to identify and resolve any security issues allowing the breach.
- We will maintain a publicly accessible page on its website for each project, explaining the sources and character of data collected for that project, the purposes for which this data will be used, and including contact details for a designated member of staff responsible for responding to public queries about this data.
- Data collected from social media sites is not stored for longer than is necessary to complete each project
- In order to respect the rights of data controllers to maintain control of their personal data, CASM will remove from any dataset personal data pertaining to an individual who requests such deletion. This includes taking reasonable measures to ensure that content deleted from social media platforms is also removed from datasets used by CASM.
- CASM does not publish any personal data collected during its research, nor is personal data shared with third parties external to CASM or transferred out of the UK, without the explicit consent of the data subject. Any data published or shared with a third party is aggregated, anonymized, or altered to prevent identification with a natural person.
- Where quotes from social media users are published in reports, these quotes are bowdlerized–altered in a way that preserves meaning but prevents retroactive identification of the original post through e.g. an online search. An occasional exception to this policy is observed when the user is publically known to the extent that they would not reasonably expect their social media posts to be private. It should be noted here that the GDPR only applies to natural persons, and not companies or organizations.