Data protection: Privacy notice for EMBL-EBI's public website

Find out what personal data is collected by the specific EMBL-EBI service you are requesting and for what purposes, as well as how your data are processed and kept secure.

Privacy notice for HEREDITARY's Data Management Plan (DMP)

This Privacy notice explains what personal data is collected by the specific EMBL-EBI service you are requesting, for what purposes, how it is processed, and how we keep it secure.

Note that this service collects personal data directly provided by the user, and also collects personal data from users that is provided by other organisations.

Who controls your personal data and how to contact us?

The EMBL data controller's contact details are:

Rolf Apweiler and Ewan Birney, EMBL-EBI Directors
Email: data-controller@ebi.ac.uk
EMBL-EBI, Wellcome Genome Campus, CB10 1SD Hinxton, Cambridgeshire, UK.

The EMBL Data Protection Officer's contact details are:

EMBL Data Protection Officer
Email: dpo@embl.org
EMBL Heidelberg, Meyerhofstraße 1, 69117 Heidelberg, Germany

Which is the lawful basis for processing your personal data?

Processing your personal data is necessary for our legitimate interest of delivering a service that provides broader societal benefits.

What personal data do we collect? How do we use this personal data?

We collect the following personal data:

Name
Email address
Username
Password
ORCID
Organisation
Project role

We will use the personal data:

To provide the user access to the service
To authenticate the user
To better understand the needs of the users and guide future improvements of the service
To check that the Terms of Use of the service are followed
To conduct and monitor data protection activities
To create anonymous usage statistics
To conduct and monitor security activities
To create the Data Management Plan (DMP) of the project

What personal data is provided by other organisations? How do we use this personal data?

HEREDITARY Project provides the following personal data:

Name
Email address
Organisation

And it is used to:

To create the Data Management Plan (DMP) of the project

Who will have access to the personal data provided by other organisations?

The personal data will be disclosed to:

Will your personal data be transferred to third countries (i.e. countries not part of EU/EAA) and/or international organisations?

There are no personal data transfers to third countries or to international organisations.

How long do we keep your personal data?

Any personal data directly obtained from you will be retained as long as the service is live, even if you stop using the service. We will keep the personal data for the minimum amount of time possible to ensure legal compliance and to facilitate internal and external audits if they arise.

Data will be kept in the Data Management Plan (DMP) of the project at the very least during the duration of the project (4 years).

Personal data defined as traffic and location data, such as IP address (and other identifiers enabling the identification of the communication source and target) and other unique identifiers applied by individual services of DSW are deleted after 18 month

Any personal data not directly obtained from you will be retained even after the service is not longer running running. EMBL-EBI will keep the personal data for the minimum amount of time possible to ensure legal compliance and the possibility to undergo internal and external audits.

Data will be kept in the Data Management Plan (DMP) of the project at the very least during the duration of the project (4 years)

Your rights regarding your personal data

You have the right to:

It must be clarified that rights 4 and 5 are only available whenever the processing of your personal data is not necessary to:

Published at: Tuesday, March 26, 2024 - 14:05