This is the privacy policy for the dmproadmap elixir-lu website hosted by ELIXIR Luxembourg (“we” “us”, “our”).
In this policy we outline what personal data (“data“) we collect when data subjects (“you“, “your“) visit our sites and use our services, for what purposes this data is collected, where and how long it is kept, your rights regarding data as per EU General Data Protection Regulation (“GDPR“). We also list relevant contact persons regarding requests and inquiries on data and data protection.
The data controller is the University of Luxembourg.
University of Luxembourg,
2, avenue de l'Université,
L-4365 Esch-sur-Alzette.
University of Luxembourg’s Data Protection Officer’s contact information is given below. This contact should be used to exercise of your rights regarding personal data and also for general inquiries on data protection.
Dr Sandrine Munoz,
dpo (AT) uni (dot) lu
University of Luxembourg,
Legal Affairs, Central Administration,
Maison du Savoir,
L-4365 Esch-sur-Alzette.
Data and its purpose of use
When you visit the dmproadmap elixir-lu website we collect the following information:
Site visitor information listed above is automatically collected by server-side software that deliver pages to site visitors. We use this data to analyse site access, which in turn allows us to further optimize and secure our site. The data is used for statistical purposes only.
Legal basis
The site visitor information is necessary for us in order to deliver the website to you as well as to guarantee the website’s stability and security. It is in our legitimate interest (GDPR Article 6(1)(f)) to collect and use site visitor information.
Storage location and duration
We store site visitor information on servers located in Luxembourg for a period of 12 months. Visitor logs are deleted after this period, aggregated statistics on site visits are stored for an indefinite period.
Transfers
We do not transfer site visitor information to any other country.
Data and its purpose of use
We use cookies on the dmproadmap elixir-lu website. Cookies are bits of information that are created and maintained by your web browser when you visit a website. Cookies are categorized as first-party and third-party. First-party cookies are placed by the website you visit and will not track your activity once you leave that website. Third-party cookies are often set by another site not the one you’re visiting, e.g. advertisements, social media widgets, and they may continue to track your activity across sites. The dmproadmap elixir-lu websites uses cookies listed below:
All cookies used by our site are first-party and there is no personal information stored in them.
Storage location and duration
Normally cookies are stored on your computer until the end of their expiry period summarized below. You may also choose to clear your browser cookies manually.
Cookie category | cookie name | Expiry period |
---|---|---|
Optimization and security | LBServer | End of browsing session |
Optimization and security | TS* | End of browsing session |
Session and authentication | _dmp_roadmap_session | End of browsing session |
Legal basis
Use of cookies is in our legitimate interest (GDPR Article 6(1)(f)) as it is necessary for us to deliver our sites to you in a stable and secure manner.
Transfers
Cookies listed above are required for our websites to function. These cookies are stored on your computer, and information in them is transferred to servers in Luxembourg, when cookie information is used by our site servers.
Data and its purpose of use
We collect additional personal data, beyond the IP address, only when you sign up to our website to make use of DMP development features. We collect and store the following personal data:
Above listed user information is used to deliver DMP development functionality to you. No personal data collected on our sites and services are used for direct marketing purposes.
Storage location and duration
User information is stored on servers located in Luxembourg. Your data will be retained for as long as our website's services are operational, even after you stop using the service. In case the services are decommissioned, we will keep we will user information for a duration of 1 year for record keeping purposes.
Legal basis
User information is necessary for us in order to deliver the DMP support services that you accept to receive (GDPR Article 6(1)(b)) when signing up. We use user information to authenticate you and to provide DMP development functionality on our website.
Transfers
User information is not transferred to any other country.
We have put in place a number of organisational and technical measures for the protection of your personal data in compliance with the EU GDPR. These measures include but are not limited to access control, encrypted data transmission, institutional policies, staff code of conduct and training on data protection. Only authorized personnel at ELIXIR-Luxembourg and its umbrella organisation the University of Luxembourg can access the data. Examples of such personnel include system administrators and the data stewards that communicate with the tool users that seek support by emailing the helpdesk.
As per GDPR, you as a “data subject” have rights on your personal data.
You have the right to be informed that ELIXIR-Luxembourg is processing your personal information.
You have the right to access your personal information and in case it is inaccurate or incomplete you have the right to have it rectified without undue delay.
You have the right to ask that we delete your personal data or restrict its use. Where applicable, you have the right to object to our processing of your personal data, and the right to data portability. Your requests for deletion and processing restriction will be assessed by us and we will notify you of the result of this assessment within one month of receipt of the request. This period may be extended by two further months where necessary, taking into account the complexity and the number of applications (in accordance with article 12.3 GDPR).
You can request that we notify you of any changes to your personal data to any other parties to whom your data has been sent.
You have the right to lodge a complaint with the Luxembourgish data protection supervisory authority, CNPD, in case you consider that our processing of your personal data infringes the GDPR.
In order to exercise any of the above rights, you shall contact the University of Luxembourg’s Data Protection Officer in writing.. For the contact procedure, please visit UNI-LU Data Subjects Rights Page .
This statement was last updated on May 7th, 2021.