ERAB – The European Foundation for Alcohol Research
1/ Who are we ?
ERAB is an international not-for-profit organization under Belgian law. Our address is rue Washington 1050 Brussels, Belgium, and we are registered in the Belgian Crossroads Bank for Enterprises under enterprise number…… Our further contact details can be found under point 9 of this privacy statement.
ERAB values its relationship with you, and is committed to protecting your privacy with respect to the personal data we collect from you. With this Privacy statement (hereafter referred to as “the Statement”), ERAB informs you of our privacy practices and how ERAB uses personal data, which is submitted by you to ERAB via its website.
This Statement applies only to the specific webpages of ERAB (www.erab.org) (hereafter referred to as “Website”). Other websites that may be linked to this website are not be governed by this Statement. We encourage you to review each of these other website’s privacy policies before disclosing any personal information.
Unless otherwise stated, ERAB is the data controller for the personal data collected under this Statement. A “data controller” refers to the person who determines the purposes for which and the manner in which any personal data are, or are to be, processed.
It is not our policy to intentionally collect or maintain information about anyone under the age of 16.
By using this Website you are agreeing to the use of your information as described in this Statement.
2/ Which personal data do we collect?
We collect information about you from a variety of sources, including:
- information we collect from you directly;
- information we collect about you when you visit this website; that you provide through our Website, or through posting on any blogs, forums, wikis and other social media applications and services that we may provide.
- information that you have made publicly available, such as social media posts;
- information we collect when you take out a subscription to the ERAB newsletter or other services, or when you order our product(s).
- information we collect about you from other sources, such as commercially available sources, nominations by partners and corporate transactions such as mergers or transfers of assets.
Which personal data we collect, depends on your specific situation or request. For example, you may want to give us your name and contact information to communicate with you, or to do business with us if you are a supplier or a business partner. These personal data may include contact information such as your name, address, telephone number and e-mail address; financial information such as your credit card number; and other unique details such as your job details, user IDs and passwords, product and service preferences.
We do not seek sensitive information (e.g., data relating to race or ethnic origin, religious beliefs, criminal record, physical or mental health, or sexual orientation). If such information is however provided to us by you we will, where necessary, obtain your explicit consent to collect and use such information.
From time to time, we may also collect information that pertains to you indirectly through other sources, such as list vendors. When we do so, we ask the vendors to confirm that the information was legally acquired by the third party and that we have the right to obtain it from them and use it.
Please note that this Website may host various social media applications or services that allow you to share content with other users (collectively “Social Media Applications”). Any personal information or other information that you contribute to any Social Media Application can be read, collected, and used by other users of that Social Media Application over whom we have little or no control. Therefore, we are not responsible for any other user’s use, misuse, or misappropriation of any personal information or other information that you contribute to any Social Media Application. Please familiarise yourself with those privacy statements to understand their practices.
3/ Why do we need your data?
We use the data we collect for five basic purposes, described in more detail below: (1) to operate our business and provide, improve and personalize the services we offer, including the access to our platform, (2) to send communications, including promotional communications, (3) statistical purposes and aggregate insights, (4) marketing purposes, (5) developing services and customer support.
3.1 Providing and improving our services.
We use data to provide and improve the services we offer. This means that your data is used to allow us to manage our activities and to provide member support. This implies in more detail, and without being limitative, that we need your data, and where required disclose your data:
- to manage our records and a.o. confirm your membership
- to ensure that content from our web sites is presented in the most effective manner for you and for your computer;
- to verify your identity and to respond to any query you may raise with us, and to process your request and provide you with the best service possible;
- to carry out our obligations arising from any contracts entered into between you and us;
- to allow you to participate in interactive features of our services;
- to notify you about changes to our services, changes to our terms, conditions, and policies and/or other administrative information;
- to prevent or detect any misuse or fraud;
- for business operations.
We use data to develop aggregate analysis and business intelligence that enable us to operate, protect, make informed decisions, and report on the performance of our business. If you sign up for these offerings, be aware that your information may also be collected by and shared with those third parties. We encourage you to familiarise yourself with their privacy policies to gain an understanding of the manner in which they will handle information about you.
We use the data we collect to deliver and personalize our communications with you. The information you provide to us, as well as the information we have collected about you indirectly, may be used by us for marketing purposes. For example, we may contact you by email or other means to inform about news related to our services, how to use our services and products, upcoming events, security updates, and invitations to participate in a survey.
You may at any time choose not to receive marketing or other materials from us by following the unsubscribe instructions included in each e-mail you may receive, by indicating so when we call you, or by contacting us directly. Our contact details are mentioned hereunder under point 9.
We also enable communications between you and others through our services, including invitations for meetings and messages. In this case, as your data will be governed by their privacy statements, we strongly encourage you to familiarise yourself therewith to understand their practices and how your data will be used.
3.3 Statistical purposes and aggregated insights
We use your data for statistical purposes and to produce aggregate insights. For example, we may use data to generate statistics about number of users, event participants, geographical breakdown, expertise and other, the number of ad impressions served or clicked on, or the demographic distribution of visitors to a site. We may use such aggregated statistics for marketing purposes.
3.4 Online advertising
We may, from time to time, advertise our products and services on others’ web sites. Please familiarise yourself with those web site operators’ or network advertisers’ privacy statements to understand a.o. their practices relating to advertising, including what type of information they may collect about your internet usage.
3.5 Developing services and customer support
We use data, including public feedback, to conduct research and development for the further development of our services in order to provide you and others with a better experience, drive membership growth and engagement on our services, and help connect users to each other and to grow their business.
We use the data (which can include your communications) needed to investigate, respond to and resolve complaints and service issues (e.g., bugs).
4/ What are the reasons and legal basis for our processing?
Processing personal data must of course be done for legitimate reasons only.
We use and share your personal data with your consent. Whenever the processing is based on your consent, you are entitled to withdraw your consent. If you want to do so, please contact us. Our contact details are mentioned under point 9 of this Statement.
We use your data as necessary to complete any transaction you have requested or authorized. When you provide payment data to make a purchase, we will share payment data with banks and other entities that process payment transactions or provide other financial services, and for fraud prevention.
We may provide your personal information to other entities within ERAB’s network, such as partners of ERAB, in order to provide you with information or advertisement that could be of interest to you and conduct market or other research. If you do no longer wish to provide these information to (some of) the other entities within ERAB’s network anymore, please contact us. Our contact details are mentioned under point 9 of this Statement.
We also share personal data with vendors or agents working on our behalf for the purposes described in this Statement. For example, companies we have hired to assist in protecting and securing our systems and services may need access to personal data in order to provide those functions. In such cases, these companies must abide by our data privacy and security requirements and are not allowed to use personal data they receive from us for any other purpose.
Finally, we will access, transfer, disclose, and retain personal data, including your content when we have a good faith belief that doing so is necessary to:
- comply with applicable law or respond to valid legal process, including from law enforcement or other government agencies;
- protect our members, for example to prevent spam or attempts to defraud users of our platform, or to help prevent the loss of life or serious injury of anyone;
- operate and maintain the security of our platform, including to prevent or stop an attack on our computer systems or networks.
Please note that some of our products include links to products of third parties whose privacy practices differ from ours. If you provide personal data to any of those products, your data is governed by their privacy statements. Please familiarise yourself with those their privacy statements to understand their practices.
5/ Where do we process and store your data?
Personal data collected by us may be stored and processed in Belgium, or in any other country where our affiliates, subsidiaries or service providers maintain facilities.
In principle, we do not transfer personal data outside the European Economic Area other than to Switzerland, which is recognized by the European Commission as offering an adequate level of protection, so that the level of protection afforded under European legislation is not undermined.
In case we would intend to transfer certain personal data to a third country outside of the European Economic Area that has not been recognized by the European Commission as offering an adequate level of protection, which is currently done to Turkey, we will ask for your explicit consent for allowing such transfer. The legislation in such countries may however imply the absence of an adequate level of protection, including the unenforceability or lack of rights regarding your personal data, or insufficient technical or organizational measures to adequately protect your personal data. As your data will be governed by another set of legal rules, we strongly encourage you to inform yourself to understand the local practices and your rights.
6/ How long do we keep your data?
We will retain your data for as long as needed to provide you the requested services. If you wish to request the de-activation of your account, please contact us at firstname.lastname@example.org. We will retain and use your data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
7/ How do we secure your data?
We intend to protect your personal data and to maintain its accuracy. We implement reasonable physical, administrative and technical safeguards to help us protect your personal information from unauthorized access, use and disclosure. We also require that our suppliers protect such information from unauthorized access, use and disclosure.
8/ What are your rights?
We adhere to the European and national data protection law applicable in Belgium, which includes the following rights:
if the processing of personal data is based on your consent, you have a right to withdraw consent at any time for future processing;
- you have a right to request from us access to and rectification of your personal data; you can send us a request to the contact details mentioned under point 9 of this Statement. In certain cases, you may have the ability to view or edit your personal information online. Before we are able to correct any inaccuracies, however, we may ask you to verify your identity and to provide other details to help us to respond to your request;
- you have a right to object to the processing of your personal data, including the right to object to direct marketing;
- you have a right to restrict processing;
- you have a right to lodge a complaint with a data protection authority;
- you have a right to erasure, also known as ‘the right to be forgotten’. The broad principle underpinning this right is to enable you to request the deletion or removal of personal data whether there is no compelling reason for its continued processing.
9/ Any questions or complaints?
If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Privacy Commission. All information can be found at: https://www.privacycommission.be/en.
10/ Changes to our Privacy Statement
We may modify or amend this Statement from time to time at our discretion. When we make changes to this Policy, we will amend the revision date at the top of this page, and such modified or amended Statement shall be effective as to you and your information as of that revision date. We encourage you to periodically review this Statement to be informed about how we are protecting your information.