This policy was updated on: 3rd April 2019. Further updates will be posted here.
This website (https://iasat.org) is operated by the International Association for the Study of Affective Touch (IASAT).
If you register as a member, or make any submissions to the website, identifying information about you will be collected – including (but not limited to) your name, email and other contact information, and IP address. Required information is clearly marked, whilst non-essential information is provided at your discretion.
The information you provide will be used to facilitate all the operations of the International Association for the Study of Affective Touch (IASAT) – including membership, research, IASAT marketing and conference organisation.
Your information will be stored securely, and will only be accessible to those acting on behalf of IASAT, i.e. website administrators & IASAT staff. It will not be distributed to other entities except where required by law, or to facilitate IASAT operations (i.e. the mailing list service, conference organisers).
If you have a data protection query, please contact us.
IASAT may collect personal data from you:
- In person
- On the telephone
- On paper
- On social media
- From public records or sources
We may collect personal data about you such as:
- Age & date of birth
- Contact details & communication preferences
- Demographic information, including gender
- Academic & employment history
- Topics you are interested in
Where you interact with us digitally, such as by visiting our website or communicating with us via social media, we may also collect:
- Your IP address
- Information about your browser, device and its operating system
- Referral information, page visits, and content you view on our site
- Your username or social media handle
- Any other information you share when using third party services such as Google, Twitter, Facebook or LinkedIn.
We may also place cookies on your device.
We may use your personal data to:
- Contact you for support, or to inform you about news and events
- Understand your views, and issues important to you
- Process surveys you have participated in
- Respond to your queries
- Administrate events, and any applications to join or leave IASAT
- Manage our sites and services
In addition to the above we may also process your data for other purposes where you ask us to, or enter into a relationship with us that requires us to.
We have a right to process your personal data in this way, where we believe you have clearly consented, or where there is a mutual, legitimate interest in holding or processing your data. You may ask about the data we hold on you, ask us to stop processing your data for these purposes, or opt out of communications at any time, by contacting us.
We only keep your personal data for as long as required to meet the purposes set out in this Notice, unless a longer retention period is required by law, and all the above is subject to your legal rights.
Specific Uses Of Your Data
Images: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Events: If you create, submit, import, save, or publish Event, Venue, or Organizer information, this information is retained in the local database. Venue information includes: name, address, city, country, province, postal code, phone, website, geographical coordinates (latitude and longitude). Organizer information includes: name, phone, website, email. Event information includes: website, cost, description, date, time, image. If you register for an event on our site, attendance information including name, dietary requirements, accessibility requirements, and transaction information will be saved. When purchasing Eventbrite Tickets, attendee, purchaser, and order information are stored and managed by Eventbrite. We also make use of certain API keys, in order to provide specific features. These API keys may include the following third party services: Google Maps, Facebook, Meetup, PayPal, and Eventbrite (API key, auth URL and Client Secret). Where you interact with these services, user information may be passed on. These services may be located abroad.
Forms: a record of all form submissions is stored on our database and emailed to our team; data is retained until it is deleted by an administrator, after which point it is irretrievable. You may request a report of saved data related to your email address. Submissions may be used to facilitate events, and may be published where appropriate.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Your rights over personal data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
RIGHT OF ACCESS
You may, at any time, request access to the personal data that we hold which relates to you (sometimes called a subject access request). This right entitles you to receive a copy of the personal data that we hold about you. It is not a right that allows you to request personal data about other people, or a right to request specific documents from us that do not relate to your personal data.
RIGHT TO RECTIFICATION AND ERASURE
You may, at any time, request that we correct personal data that we hold about you which you believe is incorrect or inaccurate. You may also ask us to erase personal data if you do not believe that we need to continue retaining it (sometimes called the right to be forgotten). Please note that we may ask you to verify any new data that you provide to us and may take our own steps to check that the new data you have supplied us with is accurate. Further, we are not always obliged to erase personal data when asked to do so; if for any reason we believe that we have a good legal reason to continue processing personal data that you ask us to erase we will tell you what that reason is at the time we respond to your request.
RIGHT TO RESTRICT PROCESSING
Where we process your personal data on the legal basis of us having a legitimate interest to do so, you are entitled to ask us to stop processing it in that way if you feel that our continuing to do so impacts on your fundamental rights and freedoms or if you feel that those legitimate interests are not valid. You may also ask us to stop processing your personal data (a) if you dispute the accuracy of that personal data and want us verify its accuracy; (b) where it has been established that our use of the data is unlawful but you do not want us to erase it; (c) where we no longer need to process your personal data (and would otherwise dispose of it) but you wish for us to continue storing it in order to enable you to establish, exercise or defend legal claims. If for any reason we believe that we have a good legal reason to continue processing personal data that you ask us to stop processing, we will tell you what that reason is, either at the time we first respond to your request or after we have had the opportunity to consider and investigate it.
RIGHT TO PORTABILITY
Where you wish to transfer certain personal data that we hold about you, which is processed by automated means, to a third party you may write to us and ask us to provide it to you in a commonly used machine-readable format.
RIGHT TO STOP RECEIVING COMMUNICATIONS
Wherever possible, we will provide you with a choice about how we can contact you. You can opt out of communications at any time by Contacting Us. It may take several days for requests submitted this way to become effective on our systems. Please note that this right to stop communications does not apply to emails that we send to you that are a necessary part of us providing a service to you (such as messaging you about an event you are attending) or us notifying you about how your personal data is being used.
You may exercise any of these rights by contacting us using the details below and providing the necessary details for us to be able to identify the relevant data and to act on your request accurately. When you contact us making a request to exercise your rights we are entitled to ask you to prove that you are who you say you are. We may ask you to provide copies of relevant ID documents to help verify your identity. It will help us to process your request if you clearly state which right you wish to exercise and, where relevant, why it is that you are exercising it. The clearer and more specific you can be the faster and more efficiently we can process the request. If you do not provide us with sufficient information then we may delay acting on your request until you have provided us with additional information (and where this is the case we will tell you).
Depending on how and why you provide us with your personal data, it may be shared within IASAT, or with companies that provide services to us. This data sharing is governed by strict privacy agreements, and access is limited to specific uses.
Third Parties with access to some or all of your personal data include:
ADMX.uk (for Event Management, and Website Design, Hosting, Maintenance and Analysis)
Eria (for Website Hosting, Maintenance and Analysis)
UCL, Liverpool John Moores University, & Linkoping University (for administration of the IASAT)
Eventbrite (for Event Management)
Mailchimp (for Email Communcation)
WordPress (For Website Maintenance and Analysis)
In addition, we may share your personal data with third parties where required to do so by law. Beyond this, we will never pass your personal data to any unrelated third parties unless you have given us explicit permission to do so, for example where you have requested to be added to our online database of researchers.
We will not sell your personal data.
Cookies and technical information
A cookie is a small text file placed on your device when you visit a website. You can accept or decline cookies through your browser settings or other software. For more information about cookies, see Information Commissioner’s Office’s Cookies Information
We (IASAT) may also store information about you using cookies (files which are sent by us to your computer or other access device) which we can access when you visit our site in future. These files are required to enable certain website features (i.e. memberships, advertising, purchase tracking).
If you want to delete any cookies that are already on your computer, please refer to the instructions for your file management software to locate the file or directory that stores cookies.
Information on deleting or controlling cookies is available at www.AboutCookies.org. Please note that by deleting our cookies or disabling future cookies you may not be able to access certain areas or features of our site.
When you visit one of our websites, we may place one or more cookies on your device. These are for purposes which include:
- Improving your experience of visiting the site, including providing personalised content
- Gathering information you have submitted via the site
- Processing requests for information or action that you have made through the site
- Processing login requests
- Enabling your activity in one place to be used to decide on what information, if any, to present to you in other places
- Gathered statistical information about the usage of the site
- Ensuring the smooth operation of online services
- Remembering whether or not you have been shown a cookie notification message on an earlier visit to the site
- To make sure online adverts you may receive from us are relevant to your interests.
We also provide options to share content on social media which may result in your being directed to the social media network’s own systems. If you proceed with this, those networks may gather personal data about you in line with their own privacy policies. On our websites or in other digital communications we may also use technologies variously described as web beacons, pixel tags, clear gifs or tracking pixels to provide us with information about how people have navigated L
IASAT takes the protection of your information very seriously. We use encryption (SSL) to protect your personal data when appropriate, and all the information provided to us is stored securely once we receive it. Our agents only have access to the information they need, and the web servers are stored in a high-security environment. We may store your personal data on secure servers either on our premises or in third party data centres.
IASAT may transfer your personal data outside of the EU to trusted service providers or third parties, so they may process or store the information on our behalf. By providing us with your personal data, you agree to us doing so in accordance with applicable data protection laws and regulations and the terms of this privacy notice. Where your data is stored or otherwise processed in the US, it is governed by European Commission model contract clauses.
Specific information about the cookies used on IASAT.org
If you leave a comment on our site you may opt in to saving your name, e-mail address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.