PRIVACY NOTICE

The Ecological Continuity Trust (hereafter ECT) was formed in 2008, as a direct response to the loss of long-term experiments (LTEs) throughout the UK. We support long-term experiments by providing much needed funds through our grants scheme and emergency repair funds. We have established a network of key stakeholders that help champion LTEs and the valuable science they produce – the LTE User Group - together with wider Network Contacts, a Volunteer Pool to support work on our LTEs, and a new community database for the Resilient Landscapes and Seas (RLAS) partnership. We promote our LTEs and the RLAS partnership through newsletters, webinars and conferences. We hold limited personal data on staff, trustees, the User Group, volunteers, RLAS partners/database contacts, and attendees at conferences and events that we host. The ECT is therefore classified as a Data Controller.

This Privacy Notice explains when and why we collect personal information about you, how we use it and the conditions under which we may disclose it to others. Your personal data is defined as any information that can directly or indirectly identify you. This notice also explains how we keep your data safe and secure and includes information you need to know about your rights and how to exercise them.

If you have any questions regarding our Privacy Notice and our use of your personal data or would like to exercise any of your rights, please get in touch via the following information:

  • E-mail us: ECT Executive Director

  • Write to us: 

    Ecological Continuity Trust
    Manor House
    Little Wittenham
    Abingdon
    OXFORDSHIRE
    OX14 4RA 

If you are unhappy with the way we process your data, please get in touch by using one of the contacts above. You can also make a complaint to the Information Commissioner’s Office (ICO) which regulates the use of information in the UK. They can be contacted by:

  • Telephone: 0303 123 1113

  • Write to the ICO: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

  • Or by going online to www.ico.org.uk/concerns

If you are based outside of the UK, the complaint should be directed to the relevant Data Protection Supervisory Authority in that country.


Data Protection Principles

We will comply with data protection law. This states that the personal information we hold about you must be:

  1. Used lawfully, fairly and in a transparent way;

  2. Collected only for valid purposes that we have clearly explained to you and not used in any way that is incompatible with those purposes;

  3. Relevant to the purposes we have told you about and limited only to those purposes;

  4. Accurate and kept up-to-date;

  5. Kept only as long as necessary for the purposes we have told you about;

  6. Kept securely.


Personal Data Collected
How and why we collect it, and on what lawful basis

Our full Privacy Policy can be obtained on request from the Executive Director.

 
Your Rights

Under data protection laws in the UK and EU, you have certain rights over the personal information that we hold about you. If you would like to exercise your rights, please get in contact via the routes listed above. Here is a summary of the rights we think apply:

Right to be Informed

You have the right to be informed as to how we use your data and under what lawful basis we carry out any processing. This Privacy Notice sets out this information, but if you would like further information, please get in touch.

Right of Erasure – also known as the right to be forgotten

You may ask us to delete some or all of your information we hold about you. Sometimes where we have a legal obligation we cannot erase your personal data.

Right to Object

You have the right to object to processing where we are using your personal information, such as where it is based on legitimate interests or for direct marketing.

Correction of Inaccurate Personal Information

Inaccurate or incomplete information we hold about you can be corrected. The accuracy of your information is important to us and we are working on ways to make this easier for you to review and correct the information that we hold about you. We will also carry out an annual accuracy check. If any of your information is out-of-date or if you are unsure of this, please get in touch through any of the contact details listed in this notice.

Right of Restriction

You have a right to restrict the processing of some or all of your personal information if there is a disagreement about its accuracy, or we are not lawfully allowed to use it.

Right to Access Your Information

You have a right to request access to a copy of your personal information that we hold about you, along with the information on what personal information we use, why we use it, whom we share it with, how long we keep it for and whenever it has been used for automated decision making. You can make a request for access free-of-charge and proof of identity is required.

Automated Decision Making

Automated decision making takes place when an electronic system uses personal information to make a decision without human intervention. You have the right to question the outcome of automated decisions that may create legal effects or create a similar significant impact on you. We currently do not undertake automated decision making, however this may change in the future and we will update our policies and procedures if and when we do.

Portability

You can ask us to provide you or a third party with some of the personal information that we hold about you.

Right to Withdraw Consent

Where you have provided consent to our use of your data, you also have the right to withdraw that consent at any time. This means that we will stop processing your data.


Transferring Your Information Outside of the United Kingdom

Where personal data is stored outside of the UK and the EEA, safeguards to protect personal data may include, but are not limited to, the UK Addendum used in conjunction with the EU Standard Contractual Clauses (SCCs), or UK International Data Transfer Agreement (IDTAs). Such safeguards will be subject to Transfer Risk Assessments (TRAs). 

For example, we use Mailchimp and Squarespace for some of our marketing communications. These are American companies and information we store on Mailchimp and Squarespace may be transferred to one of their storage systems located in the United States. Where this may happen, we ensure the above information is included before entering into a contract with such companies. 

Changes to this Privacy Notice

We reserve the right to update this privacy policy at any time, and we will provide you with a new privacy policy when we make any substantial updates. We may also notify you in other ways from time to time about the processing of your personal information.