Privacy Policy

This statement sets out how SysRisk uses and protects any information that we collect about you when you interact with us. SysRisk is committed to ensuring that your privacy is protected. Should we ask you to provide certain personal information please be assured that it will only be used in accordance with our privacy notice.

Who is responsible for the processing of your personal data?

SysRisk is a NERC (Natural Environment Research Council) funded collaborative project, led by the University of Reading. The University of Surrey is the “Data Controller” of your personal data. The University of Surrey is registered with the Information Commissioner’s Office (notification number: Z6346945) and we are committed to ensuring that the personal data we process is handled in accordance with data protection legislation.​ We have a named Data Protection Officer, James Newby, who can be contacted via dataprotection@surrey.ac.uk​.

In case of any general queries, please get in touch with us via our contact page.

When, how and why is SysRisk collecting data?

WEBSITE USE
When you visit the SysRisk website at www.sysrisk.org.uk, our hosting servers will establish an encrypted connection between your browser and our website. By the use of cookies, we may collect general information about your computer (such as IP address, operating system and browser).

COOKIES
A cookie consists of information sent by a web server to a web browser and is stored by the browser on the computer. The information is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser.

We may collect non-personally-identifiable information relating to your use of our sites via Google Analytics technology​. Google Analytics generates statistical and other information about website use by means of such cookies, which are stored on users’ computers. The information generated relating to our website is used to create reports about the use of the website. Google will store this information on servers in the United States. Google’s privacy policy is available at: ​https://policies.google.com/privacy.​ ​Further information and instructions for opting out of Google Analytics tracking are available at: https://tools.google.com/dlpage/gaoptout/

Throughout the website we have integrated social media share buttons from third party websites such as Facebook and Twitter. Pages with this embedded content may present cookies from these websites over which we have no control. You should check the relevant third party website for more information about how these cookies are controlled.

You may ​disable the use of cookies​ b​y selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

COMMENTS
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

MEDIA
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

EMBEDDED CONTENT FROM OTHER WEBSITES
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

What is the purpose and legal basis of such processing?

When you interact with us, or subscribe to our services (e.g. newsletters and events) we process personal information for certain legitimate purposes, which include some or all of those listed below. ​These purposes will never override your personal interests, fundamental rights and freedoms which require protection of your personal data.

  • To enable us to enhance, modify, personalise or otherwise improve our services and communications for the benefit of our service subscribers.
  • To identify and prevent fraud to enhance the security of our network and information systems.
  • To better understand how people interact with our website, our communications and events.
  • To better understand the professional contexts of our community.
  • To determine the effectiveness of our outreach and impact activities.

With your consent we will use your personal data in order to provide e-communications which we think will be of interest to you. You may unsubscribe at any time by clicking the unsubscribe link at the bottom in any of our newsletters or by getting in touch with us via our contact page.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

Whenever we process data we will ensure that we always keep your personal data rights in high regard. As an individual whose data we process (a data subject), you have certain rights in relation to the processing. You can find detailed information about your rights as a data subject on the ​University’s webpage.​

You have the right to:

  • withdraw your consent for us to process your personal data;
  • ask us to confirm that your personal data is being processed and to access (i.e. have a copy of) that data as well as to be provided with supplemental information about the processing;
  • request that we rectify any inaccuracies where the data we hold on you is inaccurate or incomplete;
  • have your data erased by us, although in certain circumstances we may not be able to do this (the circumstances where this applies can be found in the data subject rights information on the University’s webpage);
  • restrict the processing of your personal data in certain ways;
  • obtain your personal data for reuse;
  • object to certain processing of your personal data.

You have the right to object to the way we process your data. To exercise this right, please contact ​dataprotection@surrey.ac.uk​.

You also have the right to complain to the Information Commissioner’s Office about the way in which we process your personal data.

Links to other websites

SysRiskis not responsible for the content or privacy policies of any website linked to from www.sysrisk.org.uk

Review of this Policy

We keep this Policy under regular review. This Policy was last updated in January 2021.

Contact us

If you have any questions about the above privacy notice, please contact us via our contact page.