© 2014 MCM. 

Privacy Policy

The University of Sussex ("We") are committed to protecting and respecting your privacy.

 

This policy (together with any other documents referred to in it) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.

 

For the purpose of the General Data Protection Regulation 2018 (the GDPR), the data controller is The University of Sussex whose offices are at Sussex House, Falmer, East Sussex, BN1 9RH.

 

Information we may collect from you

 

We may collect and process the following data about you:

  • Information that you provide by filling in forms on our site http://www.multicriteriamapping.com (our site).

  • If you contact us, we may keep a record of that correspondence.

  • We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them.

  • Details of transactions you carry out through our site and of the fulfilment of your orders.

  • Details of your visits to our site and the resources that you access.

 

IP addresses

 

We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration.Where we store your personal dataThe data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area ("EEA"). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff maybe engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.

 

All information you provide to us is stored on secure servers. Any payment transactions will be processed by Worldpay Limited. We will not conduct payment transactions or hold any credit/debit card details.

 

Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.

 

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

 

Uses made of the information

 

We use information held about you in the following ways:

 

  • To ensure that content from our site is presented in the most effective manner for you and for your computer.

  • To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.

  • To carry out our obligations arising from any contracts entered into between you and us.

  • To allow you to participate in interactive features of our service, when you choose to do so.

  • To notify you about changes to our service.

 

Disclosure of your information

 

We may disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.

 

We may disclose your personal information to third parties:

 

  • In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.

  • If The University of Sussex or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.

  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our rights under the software licence between you and Us and any other agreements; or to protect the rights, property, or safety of The University of Sussex, our staff, students or agents, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

 

Access to information

 

The GDPR gives you the right to access information held about you. Your right of access can be exercised in accordance with the GDPR.  The GDPR gives you other rights as specified by the Information Commissioner's Office (ICO) here: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/ and listed here:

  1. The right to be informed

  2. The right of access

  3. The right to rectification

  4. The right to erasure

  5. The right to restrict processing

  6. The right to data portability

  7. The right to object

  8. Rights in relation to automated decision making and profiling.

 

Changes to our privacy policy

 

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by e-mail.

 

Contact

 

Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to IP Manager, Research & Enterprise Services, University of Sussex, Falmer House, Falmer, East Sussex BN1 9RH.

You can also contact mcm@sussex.ac.uk.