The Digital Futures at Work Research Centre (Digit) is committed to respecting your privacy. This notice explains how we use any personal information we collect about you and your rights in relation to it. Please read it carefully.
Who we are
Our website address: digit-research.org
What personal data we collect and why we collect it
Contact and chatroom/forum registration forms
We keep contact and booking form submissions for a certain period for customer service purposes, but we do not use the information submitted through them for marketing purposes.
Forms are sent via email and their content is encrypted in transit.
No data from these forms is stored in the website database.
No personal details are stored on the website database.
Submitted details (name and email) are transferred to Mailchimp, our marketing automation platform. You can unsubscribe at any time and your personal data will be deleted.
When Participants leave comments on the site we collect the data shown in the Topics and Replies, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the chatroom, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
We provide more information about the cookies we use in our Cookies page.
Embedded content from other websites
The website includes embedded video content from YouTube. Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Further information about Google’s handling of user data: policies.google.com/privacy.
The website uses web fonts provided by Google but these are hosted locally so no personal data is collected by Google’s content delivery network.
See also ‘Third-party Cookies’ on Cookies page.
No personal details are stored in the website database by our security plugins.
Some data (including IP address, hostname, location) is temporarily stored in security logs on the server and/or sent via email to alert the website administrator of critical problems or suspicious activities on the site.
We use Google Analytics to track how our site is being used: how users find our website, how they move around on it, how long they stay for.
No personal data is sent to Google Analytics. No Remarketing or Advertising features are set and IP addresses are anonymised while tracking. We enable support for user opt-out and exclude tracking for users sending Do Not Track header.
See also Cookies.
Who we share your data with
Except as set out here, we do not share, or sell, or disclose to a third party, any information collected through our website.
How long we retain your data
We will keep contact form entries and chatroom/forum registration records for the duration of the Digit project (five years).
What rights you have over your data
You can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
The website is hosted at SiteGround in datacentres located in London (UK). It is protected by 256-bit encryption. SSL certificate provided by Let’s Encrypt from the Internet Security Research Group (ISRG).
Website administrator emails reside in the data centres of Zoho.com, which adhere to GDPR: zoho.com/gdpr.html
Emails to Digit from the website contact and chatroom/forum registration forms reside in the email servers of the University of Sussex.
Website database backups are encrypted and stored at Amazon S3 – server located in EU (London) and at Dropbox – data centres across the US – for up to 2 years.
How we protect your data
We have various measures in place to protect the website from malicious attack, including firewall protection, malware scanning, bot/spam blocking and encryption.
What data breach procedures we have in place
The website has internal reporting systems and contact mechanisms to alert us to any malicious activity on the site.
If you have any privacy-specific concerns, please contact the Data Protection Officer: Alex Elliott, GDPR@sussex.ac.uk.
Last updated: 12 December 2019