Contact details controller
Alzheimer Europe is the entity that is considered to be the controller of the data (this is the entity that determines the purpose and the means of the processing of data) including the personal data, gathered via this website (hereafter referred to as ‘Controller’).
The contact details of the Controller are as follows:
14, rue Dicks
Tel.: +352-29 79 70
Fax: +352-29 79 72
Active gathering of personal data
Pages of the website that include forms may ask you to submit following personal data: your e-mail address, your name, your phone number, and your organisation, in order for you to benefit from following specified features: newsletter subscriptions and to request further information. The provision of those personal data can be a condition for enjoying the specified features of this website.
Passive data collection
As you navigate around the website, certain data can be passively collected (that is, gathered without you actively providing the information), using various technologies. We and our service providers may passively collect and use information in a variety of ways, including:
Your IP Address: An Internet Protocol (IP) address is a number that is attributed to a computer by the internet service provider in order to grant access to the internet. Normally, an IP address is generally dynamic (it changes each time connection is made with the Internet) and not static. We use IP Addresses for purposes such as calculating website usage levels, helping diagnose server problems, and administering the website.
Using internet labels: Internet labels, (also known as single-pixel GIFs, clear GIFs, invisible GIFs and 1-by-1 GIFs) are smaller than cookies and provide certain information on the server such as the IP address and the web browser type of the visitor’s computer.
Using Navigation data: Navigation data (log files, server logs and click stream data) are used by the system administrator to improve the content of the website, for market research and in order to provide information to the visitor.
Through your browser: Certain information is collected by most browsers, such as your Media Access Control (MAC) address, computer type (Windows or Macintosh), screen resolution, operating system version, and Internet browser type and version. We may collect similar information, such as your device type and identifier, if you access the Site through a mobile device.
Device Information: We may collect information about your mobile device, such as a unique device identifier.
How we process data
We may use data from or about you in view of following purposes:
- to respond to your inquiries;
- to fulfill your requests, such as sending you newsletters or e-mail alerts (in which case your explicit consent will be asked);
- to send you important information regarding our relationship with you or regarding the website, changes to our terms, conditions, and policies and/or other administrative information;
- for IT purposes, such as enhancing our website and identifying website usage trends and other IT related purposes as indicated under the section on ‘Passive Data Collection’ above.
We will only process the collected data for the purposes as described above and will not further process the data in a manner that is incompatible with those purposes. The data will only be processed in so far necessary to achieve the above mentioned purposes. Your data will also be kept up to date where necessary (for which your input may be required and asked).
The personal data will be processed in, fairly, in a transparent manner and lawfully, meaning that at least one of the following legal bases applies:
- We have received your explicit consent for the processing of your personal data;
- We are obliged to process your personal data according to applicable law or court order;
- The personal data are processed in view of EPAD’s or the Controller’s purposes of legitimate interest as indicated above.
If the processing of your personal data is based on your consent, we want to inform you of the fact that you can withdraw your consent at any time by sending an e-mail to firstname.lastname@example.org or by using our contact form.
In so far your personal data are collected, your personal data will not be kept longer than is necessary for the purposes for which the personal data are processed or is required by law.
Where consent is asked from you and you are a child is below the age of 16 years, your holder of parental responsibility needs to give or authorise such consent.
The Controller and any processor shall implement appropriate technical and organizational measures to ensure the security of the personal data including protection against unauthorised or unlawful processing and against accidental loss and destruction.
We may disclose information collected through the website in so far necessary to achieve the above mentioned purposes:
- to the EPAD Consortium members (which are listed on the ‘partners’ section on our website), for the purposes as listed above;
- to our service providers – processors – who provide services such as website hosting and moderating, mobile application hosting, data analysis, IT services, e-mail and direct mail delivery services, auditing services, and other services, in order to enable them to provide services;as we believe to be necessary, if permitted or required by applicable law.
In transferring data to processors we will conclude a contract with such processor setting out the subject matter and duration of the processing, the nature and purpose of the processing, the type of personal data and categories of data subjects and the obligations and rights of the Controller. We will only use processors providing sufficient guarantees to implement appropriate technical and organizational measures so that the processing of the data meets the legal requirements.
Your personal data will not be transferred to other third parties unless required or allowed by applicable law.
If the processing of your personal data would take place in a third country (i.e. a country outside the European Economic Area) which does not offer an adequate level of protection, this processing shall be carried out in accordance with the requirements and appropriate safeguards under the applicable data protection legislation, such as, entering into EU standard contractual clauses.
With your explicit consent (in so far required), we may also use and disclose information collected through the website in other ways and for any other purpose. In addition, we may use and disclose information that is not considered to be personally identifiable and thus not personal data for any purpose.
Your rights with regard to your personal data
You have the right to review, correct, update, or delete the personal data that you have provided via the website. This can be done by contacting us through sending an e-mail to email@example.com or by using our contact form.
Furthermore, you can also object the processing of your personal data by the controller or any of our processors. This can also be done by sending an e-mail to firstname.lastname@example.org or by using our contact form.
You also have the right to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller or any processor to which your personal data have been provided, if and to the extent provided and allowed under applicable law.
Finally, you have a right to lodge a complaint with the competent supervising authority if you believe your personal data are or have not been processed in a way that is compliant with applicable law
COMMUNICATION IN CASE OF A PERSONAL DATA BREACH
in case of a personal data breach, we will notify the personal data breach to (i) the competent supervisory authority without undue delay and, where feasible, not later than 72 hours after having become aware of it, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons and (ii) you, the data subject without undue delay if the personal data breach is likely to result in a high risk to the rights and freedoms of natural persons.