Privacy statement
The Spinoza Centre for Neuroimaging (SC) thinks that your privacy is important. This privacy statement explains which personal data are collected by the SC, how these data are processed and for what purpose.
PRIVACY POLICY
The SC is aware of its responsibility when processing personal data. The SC wants every person whose personal data it processes to be confident that this is done in a careful and lawful manner. The SC processes personal data in accordance with the General Data Protection Regulation (GDPR) and the privacy rules arising from it.
WHICH PERSONAL DATA IS RECORDED BY THE SC?
The SC only processes personal data if this is necessary for a specific purpose. The purpose determines which personal data have to be processed and no more data will be asked for than is essential for that purpose.
Depending on the purpose, the following personal data may be processed: name, address, town/city, e-mail address, company data, gender, date of birth, account number, and curriculum vitae.
On what basis does the SC process personal data?
The SC only processes your personal data if there is a legitimate basis for doing so. Depending on the purpose, personal data are processed because:
- you give your consent for this to be done
- it is essential for implementing an agreement that has been made with you
- it is essential in order to fulfil a legal obligation
- it is essential in order to protect your vital interests
- a public interest task is concerned
- the SC has a legitimate interest in doing so.
If the SC processes personal data on the basis of your having given consent, you have the opportunity to withdraw your consent at any time. From that moment on, the SC will no longer process any of your personal data.
PURPOSES
The SC collects personal data so that the following activities can take place:
- maintaining international academic relationships and participating in international academic organizations. A public interest task is concerned;
- to be able to help you and inform you regarding specific research issues. This is essential for implementing an agreement that has been made with you;
- to perform its role as employer. This is essential for implementing an agreement that has been made with you;
- to collect relevant data for the purposes of well-defined academic research. Only if you give your consent for this to be done;
- to communicate with you by sending electronic newsletters and e-mails, and/or by post. Only if you give your consent for this to be done or the SC has a legitimate interest in doing so;
- to be able to meet financial obligations. It is essential in order to fulfil a legal obligation;
- to answer your questions through social media, e-mail, by post or by telephone. The SC has a legitimate interest in doing so;
- to improve our website. The SC has a legitimate interest in doing so;
SECURING YOUR PERSONAL DATA
The SC secures your personal data to prevent misuse and unauthorised access to your personal data. Security measures include firewalls, encryption, multi-factor authentication and access control.
RETENTION PERIOD FOR YOUR PERSONAL DATA
In principle, personal data are not retained any longer than is necessary to achieve the purpose for which the personal data are collected. Personal data in documents that come under the 1995 Public Records Act shall be stored in the manner in which and for as long as is stipulated by this Act.
In cases where documents are archived in the public interest, for scientific or historical research, or for statistical purposes, personal data can be stored for a longer period. If this is the case, the SC, in accordance with the GDPR, will take appropriate technical and organizational measures to protect your rights.
DISCLOSURE TO THIRD PARTIES
The SC will only disclose your personal data to third parties if there is a legal obligation or basis to do so as referred to in Section 6 GDPR.
When the SC discloses your data to a third party, it will safeguard your rights to privacy, among other things by concluding a processing agreement in which arrangements are made as to how your personal data must be dealt with.
The SC processes your data as far as possible within the European Union. Certain activities may involve processing data outside the European Union. When this happens, appropriate measures are ensured so that applicable privacy legislation is complied with. For example, by concluding the necessary standard contractual clauses (so-called Standard Contractual Clauses) approved by the European Commission.
THIRD-PARTY WEBSITES
This statement is not applicable to websites of third parties that are connected to our website by means of links. The SC advises you to go through the privacy policy of these third parties thoroughly.
EXERCISING YOUR PRIVACY RIGHTS
You can submit a request to the SC to exercise the following rights:
- Right to access your personal data
- Right to rectify and/or add to your personal data
- Right to erasure of your personal data
- Right to restrict the processing of your personal data
- Right to data portability
- Right of objection
- Right not to be subjected to a decision based exclusively on automated processing, including profiling.
If your personal data are processed with a view to archiving in the public interest, scientific or historical research, or for statistical purposes, legislation places restrictions on, among other things, your right to access, rectification, restriction of processing, and your right of objection. Furthermore, if data are processed with a view to archiving in the public interest, your right to the portability of your personal data is also restricted. In addition, in this context the SC’s requirement to notify data subjects does not apply in all cases.
PRIVACY COORDINATOR
Should you have any questions and/or complaints about the safeguarding of your privacy within the SC, please contact our Data Protection Officer (DPO):
Name: Ronald van der Neut
Telephone/e-mail: +31 (0)20 566 5500 /
PERSONAL DATA AUTHORITY
Should you have any questions about the safeguarding of your privacy within the NIN as part of the KNAW, please contact our Data Protection Officer (FG), via e-mail: .
CHANGES TO THIS PRIVACY STATEMENT
The SC may change this privacy statement. Any changes will be published on the SC’s website. Changes made to this privacy statement will never be in violation of the GDPR and the privacy rules arising from it.
COOKIES
The SC makes use of cookies in so far as these are necessary for the operation of the website and to monitor the quality or effectiveness of the website.