Privacy Policy

 

 

 

Introduction

 

The International Network on Offshore Renewable Energy (INORE) takes the protection of your data very seriously. As such, we have created a simple and clear Privacy Policy to inform you on how and when your data may be used. We ensure that all our internal processes comply with the General Data Protection Regulation (GDPR) and endeavour to be as transparent as possible with our members in everything we do.

 

 

 

 

Data may be handled slightly differently for registering as an INORE member (or INOREan) compared to attending INORE events. As such, we have split this privacy policy into two sections: INORE Membership, and INORE Events

 

 

 

 

Section 1: INORE Membership

 

 

What information do we collect?

 

We collect data from our members as they register an account on our website. The data collected includes:
• Full name*
• Date of birth and gender
• Email address*
• Current city and country*
• Information about your research interests*
• Job position and your institution’s name*
• Personal website and/or LinkedIn profile

 

 

 

 

*required field for registering membership with INORE.

 

 

 

 

 

 

How do we process your personal data?

 

We will use your email address to send you important INORE-related updates, events, and opportunities. The personal data that you provide upon registration will be made visible to other INORE members on our ‘Members’ page, and we encourage you to reach out and collaborate with other researchers in your field. Enabling networking and building relationships with other researchers in this way is what INORE is all about!

 

 

 

 

Your data is processed as above by our Data Officer, who is an elected member of the INORE Steering Committee. Other members of the Steering Committee will be able to access your data including the Web Manager and Communications Coordinator.

 

 

 

 

 

 

What legal basis do we have for processing your personal data?

 

In accordance with Article 6 GDPR [1] : by registering an account with INORE you consent to having your data processed as outlined in this Privacy Policy. This is for the specific purpose of enabling networking opportunities and furthering our official mission: “The advancement of education and the proliferation of public knowledge in relation to Offshore Renewable Energy”.

 

 

 

 

 

 

How is your data stored?

 

Your data is securely stored with our website provider, Trestian [2] . Your name and email address will also be stored with our email service provider, MailChimp [3] . Data is manually transferred from the INORE website to our email service provider by the INORE Data Officer. No copies of data are stored in any other locations during or after transfer.

 

 

 

 

 

 

How secure is your personal data?

 

INORE is not able to take any responsibility for the data security of any third-party services such as our website provider, Trestian [2], and our email service provider, MailChimp [3]. We encourage you to check the data policies of the third-party services if you have any concerns about data security. The INORE Steering Committee abides by an Internal Security Policy and has a process in place to contact data subjects and the authorities (Information Commissioners Office, UK [4] ) in the event of a data breach.

 

 

 

 

 

 

When do we share your personal data?

 

The personal data that you provide will be made available to other INORE members on the ‘Members’ page of our website, for the specific purpose of enabling networking. Your data will not be shared in any other way without your expressed permission for each occasion of sharing. In the event that you agree to have your data shared with a third-party, a data processing agreement between you, INORE and the third-party will be agreed to prior to any data sharing.

 

 

 

 

 

 

How long do we keep your personal data for?

 

Data will be held until the INORE membership is withdrawn by the member, upon which all data will be permanently deleted within a grace period of 1 month. For Steering Committee members, data will be stored for approximately 18 months after leaving their role, but no longer than 3 years.

 

 

 

 

 

 

What are your rights in relation to your data?

 

As well as the right to have your data stored and processed securely, you have the right to (i) request all the data INORE holds on you, and (ii) have your data permanently deleted.

 

 

 

 

In your account page on the INORE website both of these services are easily accessible, and requests will be processed within a grace period of one month. INORE also offers the functionality of temporarily hiding your profile data from the members directory, available in your account settings.

 

 

 

 

 

 

Section 2: INORE Events

 

 

 

What information do we collect?

 

Data will be collected, upon registration for events, by the event organising committee which may be made up of INORE Steering Committee members and/or INORE members. The data collected is likely to vary slightly from event to event, but is likely to include:
• Full name
• Date of birth and gender
• Email address
• Job position and your institution’s name
• Personal website and/or LinkedIn profile
• Information on the research you will present (if applicable)

 

 

 

 

 

 

How do we process your personal data?

 

The email address provided upon registering for an event will be used to contact you with important information regarding the event and event updates. Events with a networking element may wish to make some of your data visible to other delegates, through an event brochure or otherwise. If this is the case, it will be made clear in the registration process. Enabling networking and building relationships with other researchers in this way, is what INORE is all about!

 

 

 

 

The data you provide in the event registration will be processed by the event Data Officer. It may also be visible to the event organising committee and the INORE Steering Committee.

 

 

 

 

 

 

What legal basis do we have for processing your personal data?

 

In accordance with Article 6 GDPR [1] : by registering for an event with INORE you consent to having your data processed as outlined in this Privacy Policy. This is for the specific purpose of enabling networking opportunities and furthering our official mission: “The advancement of education and the proliferation of public knowledge in relation to Offshore Renewable Energy”.

 

 

 

 

 

 

How is your data stored?

 

Depending on the third-party service used for event registration, your data may be stored slightly differently. We encourage you to check the data policies of the third-party service if you have any concerns about data security. INORE is not able to take any responsibility for the data security of these third-party services, but we will always endeavour to use safe and secure registration services.

 

 

 

 

Once registered, data may be manually transferred from the third-party registration service to a secure INORE cloud storage by the event Data Officer. No copies of data are stored in any other locations during or after transfer, unless explicitly stated in the registration form (such as using data in event brochures).

 

 

 

 

 

 

How secure is your personal data?

 

As mentioned in the above sub-section, INORE is not able to take any responsibility for the data security of any third-party registration services, and we encourage you to check the data policies of the third-party service if you have any concerns about data security

 

 

 

 

The event organising committee, and INORE Steering Committee, abides by an Internal Security Policy and has a process in place to contact data subjects and the authorities (Information Commissioners Office, UK [4]) in the event of a data breach.

 

 

 

 

 

 

When do we share your personal data?

 

The personal data that you provide may be made visible to other event delegates, for the specific purpose of enabling networking. This is likely to include name and affiliation, but may extend to any and all data provided upon registration. Any data sharing for the event will be made clear during the registration process.

 

 

 

 

Your data will not be shared in any other way without your expressed permission for each occasion of sharing. In the event that you agree to have your data shared with a third-party, a data processing agreement between you, INORE and the third-party will be agreed to prior to any data sharing.

 

 

 

 

 

 

How long do we keep your personal data for?

 

Your data provided for registration will be deleted after each event. For practical reasons, event organisers will delete data within a grace period of one month from the end of the event.

 

 

 

 

 

 

What are your rights in relation to your data?

 

As well as the right to have your data stored and processed securely, you have the right to (i) request all the data INORE holds on you, and (ii) have your data permanently deleted. In order to make a request as above, you will need to email the event organising committee via an email address that will be made readily available during registration. Requests will be processed by the event Data Officer within a grace period of one month from receiving the request.

 

 

 

 

 

 

Contact Information

 

Contact details can be found on the INORE website.
Useful emails:

 

 

 

 

 

 

 

Third party content

 

The INORE website contains links to other websites and organisations. INORE does not take any responsibility for the content or information contained within any linked website.

 

 

 

 

The INORE Privacy Policy does not cover any third-party website so please check with the relevant organisation before entering any personal information on linked sites.

 

 

 

Sources

 

[1] https://gdpr.eu/article-6-how-to-process-personal-data-legally/
[2] https://www.trestian.com/
[3] https://mailchimp.com/about/security/
[4] https://ico.org.uk/