KEY THINGS TO KNOW:
- We use your personal information to provide the services to you and manage your registration and queries.
- We never sell your personal information to third parties.
- We store your personal information on servers located in the UK.
- Remember that when you post Innovation Stories, Challenges and comments, other Partners will be able to see it.
1. What persondata does MMHIN collect?
1.1. Personal information means information that identifies you personally such as name, photo or contact details or data that can indirectly identify you or be linked with such information in order to identify you.
1.2. Your personal information is collected:
1.2.1.When you register as a Partner on the Virtual Hub. We collect first and last name, email, brief biography, and password (hashed) on a minimum requirement. Job title, job organisation, profile photo, research interest and social media account links are optional.
1.2.2.From time to time through other forms we may ask you to fill in to provide additional information; for example, when the Network organises events.
2. What does MMHIN use your personal information for?
2.1. We use the personal information in the following ways:
2.1.1. To maintain your account and registration that we need to do the provide the service to you. We cannot provide the services without this.
2.1.2. To allow other Partners to search and contact you to form collaborations.
2.1.3. To allow the matchmaking of Partners when Challenges are posted.
2.1.4. To investigate and address queries, questions and complaints and respond to any feedback. This is necessary and for our legitimate interests in providing a responsive service to our Partners.
2.1.5. To update you on any changes to our Site and services, this is necessary and for our legitimate interest to ensure you are kept informed about any changes to services we provide you.
3. How long does MMHIN retain personal information?
3.1. We only retain personal information for as long as is necessary for us to use your information as described above, where it is in our legitimate interest, or to comply with our legal obligations. When determining the relevant retention periods, we will consider the following factors.
3.1.1. If you are a Partner of the Virtual Hub.
3.1.2. Legal obligation(s) under applicable law to retain data for a certain period.
3.1.3. Potential complaints and disputes.
3.1.4. Guidelines issues by relevant data protection authorities.
3.1.5. Otherwise, we securely erase your information once this is no longer needed.
4. Who can see and access my personal information?
4.1. If you contribute by posting an Innovation Story, this means that your name, affiliation and what you post there can be seen by other Partners and non-Partners (guests) of the Virtual Hub.
4.2. If you contribute by posting a Challenge, this means that your name, affiliation and what you post there can be seen by other Partners of the Virtual Hub. We may share Challenges with our non-Partner affiliates, which includes grant funders, regulators, and innovation agencies; your name, affiliation and what you have posted will be seen by them.
4.3. Partners of the Virtual Hub can search for Partners’ profiles, which can contain full name, job title, job organisation, profile image, biography, email, research interests (keywords) chosen by the Partner themselves. You can determine the level of details to include in your Partner’s profile.
4.4. Non-Partners of the Virtual Hub can search for Partner’s profiles on a limited basis, which contain full name, job title, job organisation, limited biography, and research interests (keywords).
4.5. We may pass your personal information to law enforcement agencies, regulators, courts, or other public authorities if we must, or are authorised to by law.
4.6. We don’t sell your personal information to third parties.
5. Does MMHIN transfer my personal information outside the EEA?
5.1. We store data on servers located in the UK, which is within the EEA. We may also work with a service provider (e.g. email service and Google analytics) provider outside the EEA to provide service to us. In these cases, we have security measures in place, and we provide EU Model Clauses as an adequate safeguard for the transfer of EU data outside the EEA, in line with data protection law. To find out more about how we safeguard your information (including such safeguards) in relation to transfer outside the EEA, please contact us at firstname.lastname@example.org or visit UCL Data Protection.
6. What are my rights?
6.1. By law, you have a number of rights when it comes to your personal data. Further information advice about your rights can be obtained from the data protection regulator in your country. You can exercise any of the following rights by writing to us via email: email@example.com.
6.1.1.The right to be informed. You have the right to be provided with clear, transparent, and easily understandable information about how we use your information and your rights. This is why we are providing you with the information on this Policy.
6.1.3. The right to rectification. You are entitled to have your information corrected if it is inaccurate or incomplete. You can request that we rectify any errors in personal information that we hold by modifying your Partner’s profile or by email address.
6.1.4. The right to erasure. This is also known as ‘the right to be forgotten and, in simple terms, enables you to request the deletion or removal of your information where there is no compelling reason for us to keep using it. This is not a general right to erasure; there are exceptions.
6.1.5. The right to restrict processing. You have the right to ‘block’ or suppress further use of your information. When processing is restricted, we can still store your information, but may not use it further. We keep lists of people who have asked for further use of their information to be ‘blocked’ to make sure the restriction is respected in future.
6.1.6. The right to data portability. You have the right to obtain and reuse your personal data for your own purposes across different services. For example, if you decide to switch to a new provider, this enables you to move, copy or transfer your information easily between our IT systems and theirs safely and securely, without affecting its usability. This is not a general right however and there are exceptions.
6.1.7. The right to object to processing. You have the right to object to certain types of processing, including any profiling.
6.1.8. The right to lodge a complaint. You have the right to lodge a complaint about the way we handle or process your personal data with your national data protection regulator.
6.1.9. The right to withdraw consent. If you have given your consent to anything we do with your personal data (i.e. we rely on consent as a legal basis for processing your personal information), you have the right to withdraw your consent at any time (although if you do so, it does not mean that anything we have done with your personal data with your consent up to that point is unlawful). You can withdraw your consent to the processing of your personal information at any time by terminating your account.
6.1.10. The right to lodge a complaint. You have the right to lodge a complaint about the way we handle or process your personal information with your national data protection regulator.
7.1.1. Necessary Cookies:
220.127.116.11. Login cookies – to distinguish you from other Partners. The information they use is an alphanumeric session key to help us recognise you when you return to the Virtual Hub. It will typically last for two weeks from the time you log in if you remain logged in, or it will be deleted immediately when you log out.
18.104.22.168. Security cookies – this is a cookie that prevents cross site request forgery (CSRF or XSRF) attacks, a common type of web-based attack in which a malicious website is able to perform actions/requests on your behalf on the main website/system. CSRF cookies are anonymous and do not contain any information that can be used to identify the user.
7.1.2. Optional Cookies (Third-Party Cookies):
22.214.171.124. Statistic tracking cookie: to recognise that a user has previously visited a relevant page, so that we can distinguish them from a user visiting for the first time. No identifiable personal information is contained within this cookie. It will typically last for 12 months.
126.96.36.199. Google Analytics cookie: to better understand traffic patterns of usage. These typically last for up to 2 years.
7.2. Necessary Cookies are essential to the running of the Site, they are set when you enter the Site.
7.3. Optional Cookies are not essential and so we rely on your consent for the use of these cookies. You will see a pop-up consent notice on our Site when you visit. You may refuse to accept our Optional Cookies by activating the setting on your browser which allows you to refuse the setting of cookies.
7.3.1. Not accepting our Optional Cookies will still allow you to access to all features of our Site, but will prevent us from collecting analytic information that will help us develop the Site.
7.4. Most internet browsers are initially set up to automatically accept Cookies. You can change the settings to block Cookies or to alert you when cookies are being sent to your device. If you use different devices to view and access the Virtual Hub (e.g. your computer, smartphone, tablet etc.) you will need to ensure that each browser on each device is adjusted to suit your cookie preferences.
7.4.1. Disable Cookies in Internet Explorer >>Click here
7.4.2. Disable Cookies in Chrome >> Click here
7.4.3. Disable Cookies in Safari >> Click here
7.4.4. Disable Cookies in FireFox >> Click here
7.4.5. Disable Cookies in Safari IOS >> Click here
7.4.6. Disable Cookies in Google Android >> Click here
7.4.7. Click here for more information on Cookies and how to manage them.
8. How can I be sure my data is secure?How can I be sure my data is secure?
8.1. We take appropriate technical and operational measures to protect the personal information the Virtual Hub gathers and processes about you. You should always bear in mind that there is no such thing as 100% information security. For example, communications over the internet and mobile phone networks are not completely secure and we cannot accept responsibility for unauthorised access or loss of personal information that is beyond its control. You also need to take steps to protect your log in details, use anti-virus software and to act sensibly when providing personal information. If you have any concerns, then do contact us.
9. How do I contact MMHIN?