The Content Ed Net Group (CEN) is a strong proponent of data protection and personal privacy. We strive to ensure that any personal data is held for real business needs and subject to proper levels of security and control.

This policy (and any documents referred to) sets out the basis under which we process (store, manage, use etc) any personal information provided to us.

Who is the Data Controller ?
For the purposes of the European General Data Protection Regulations the overall controller is Content Ed Net Communications SLU, Spain

What data do we hold ?
The information we may hold includes name, email address, mailing address, telephone number, financial or credit card details, institution, affiliation, job title, subject specialism.

How do we collect those data ?
We may collect data directly or indirectly.

Directly through:

  • Accessing our websites. This includes information that provided when registering to use any of our websites, products or services, subscribe to one of our services, search for a product, place an order, participate in a discussion group, make an application for employment or report a problem with our site or request content or other information from us; or
  • Corresponding with us by post, telephone, email or otherwise; or
  • Vendor – client relationships.

We may also process certain personal information which was not provided to us directly be the user.

In limited circumstances, we may collect data made available in the public domain, such as contact details, research interests, and the institution. When we do this, we carefully consider whether do so is in the person’s interest and any impact on their rights, and we inform them as soon as practically possible about our use of their data and their right to object to this and to unsubscribe from any communications from us.

Indirectly through:

We work with business partners, such as web hosting providers, email service providers and list brokers, to deliver our products, services and communications, and they may provide us with additional personal information. This could include details of content that users have viewed or requested through our websites, or details of which email communications from us were viewed or clicked on.

We may obtain personal details as a result of a business acquisition, or from corporations (for example through Master Service Agreements), societies and associations that we work with.

Cookies – When visiting our websites we automatically collect technical information from the visitor’s computer or other device.

We use cookies (small text files that are placed on their device) to give our users the best possible experience when visiting our websites, as described in our global Cookies Policy which can found on our corporate website. Users can disable cookies through their web browser’s settings and still access our websites – although certain functionality may not be available in those circumstances.

The information we may collect in this way may include the Internet Protocol (IP) address used, browser type and version, the type of device used, and time zone setting, etc. We may also collect information about each visit made to our website, including the website immediately before navigating to our sites, and how the progression through and from our sites – as well as content searched for or viewed on our sites.

What do we do with those data ?
To deliver our products and services – we may use personal information to:

  • Carry out our obligations arising from any contracts entered into and to provide the information, products and services that are requested from us (as is necessary for the performance of those contracts);
  • Notifications about changes to our services (as is necessary for the performance of a contract and/or as is necessary for our legitimate interests);
  • Allowing access to restricted areas of our websites.

To improve the effectiveness of our products, services and marketing communications – we may use personal information (in each case as is necessary for our legitimate interests or exceptionally where we have received consent) to:

  • Administer our websites and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
  • Improve our websites to ensure that content is presented in the most effective manner for our users and for their computer or device;
  • Keep our websites safe and secure;
  • Provide information about other goods and services we offer that are similar to those that have already been purchased or enquired about, provided that our users have not told us that they do not wish to receive this information (as is necessary for our legitimate interests);
  • Make suggestions and recommendations about goods or services that we believe may be of interest, based on previous transactions, behaviour, subject interests and other information that we may hold about our users and their institution or organization.

Whom do we share those data with ?

For the purposes referred to in this policy and relying on the bases for processing as set out above, we may share personal information amongst businesses in the Content Ed Net Group, as defined on our corporate website:

CEN may also share personal information with our business partners who are providing a service to us, for example:

  • A platform for a CEN web-based product;
  • A provider of web analytics services; or
  • For the purposes of fulfilling an order placed with us, delivering a product or otherwise carrying out a contract.

Transfer outside the European Economic Area (EEA)

CEN is a global company and our systems and management team are integrated throughout the organisation. Personal information will be accessible to CEN employees and business partner service providers based outside the EEA.

Rights in respect of personal information

Users have the following rights:

  • To obtain access to, and copies of, the personal information that we may hold;
  • To require that we cease processing personal information if the processing is causing damage or distress; and
  • To require us not to send marketing communications.
  • To obtain access to, and copies of, the personal information that we may hold;
  • To require us to correct the personal information we hold if it is incorrect;
  • To require us to erase their personal information;
  • To require us to restrict our data processing activities;
  • Where our processing is based consent, the right to withdraw that consent (without affecting the lawfulness of our processing based on consent before its withdrawal);
  • Where the processing is carried out by automated means, to receive from us the personal information we hold about them that has been provided to us; and
  • To object, on grounds relating to their particular situation, to any of our particular processing activities where they feel this has a disproportionate impact on their rights.

Please note that these rights are not absolute, and we may be entitled to refuse requests where exceptions apply.

Last update: June 2018