Engineers in Business Fellowship (“EIBF”) is committed to protecting your privacy.
We recognise our obligation to keep personal information secure and believe it is important for our partners, Members, and other individuals to know how we treat their personal information.
This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
By visiting our website or otherwise providing data to us you are accepting and consenting to the practices described in this policy.
Here are some of the key changes we made on 25 May 2018, when the European Union General Data Protection Regulation (“GDPR”) came into effect:
- Who we are and how to get in touch with us: We have clarified what the EIBF is, where we are headquartered and who to get in touch with about any personal data of yours that we may be holding.
- Collection and use of data: We’ve provided more information about the ways we collect personal data about you, who we collect that data from, and how we intend to use it.
- Purpose of processing: We provide more detail on the purpose and legal basis for the processing your data
- Who has access to your information: Our policies and procedures haven’t changed but we’ll tell you exactly who will and won’t get access to your data.
- Your rights as a Data Subject: We’ve set the rights individuals have under the new GDPR in relation to their personal data and how those rights can be exercised.
Who are we?
We are the Engineers in Business Fellowship, a membership organisation existing to promote continuing business education for those in the engineering profession, to develop their skills in innovation, better management and governance. We are headquartered in the United Kingdom and incorporated as a Private company limited by guarantee without share capital, company number 02506591. Our registered office address is 16 Western Road, Lymington, Hampshire, SO41 9HL.
EIBF is registered as a Data Controller with the UK Information Commissioner’s Office (“ICO”), which is an independent public body sponsored by the Department for Digital, Culture, Media and Sport of the UK Government. The representative of the Data Controller can be contacted by organisations with questions about any aspect of our handling of data privacy, by email at firstname.lastname@example.org by telephone at +44 20 8941 8584, or in writing to the company registered address.
The information we collect from you
We collect information directly from individuals when they voluntarily submit their personal information to us by filling in forms (on our website or otherwise), or by corresponding with us by phone, email or otherwise.
This includes information you provide when you are awarded a scholarship, register to attend an event, request information, participate in a competition, promotion or survey or in discussion boards on our website.
The information you give us may include your name, address, email address, phone number, company name and address, alternative contact details (e.g. those of a family member or secretary), photograph and financial information.
At certain parts of our website, we may provide the opportunity for users to send an e-mail to us which may contain their personal data.
When this sort of information is collected we will provide the reason for collecting the information and how the information will be used.
The information we collect about you
With regard to each of your visits to our website we may automatically collect the following information:
- technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; and
- information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our website (including date and time); page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.
If you work for or are otherwise engaged with a company or institution in which EIBF has a legitimate interest, we may collect personal data about you from friends, colleagues or from information in the public domain to contact you. When we do so we will tell you the source of the personal data and give you the option to withdraw consent for further processing.
We may also capture personal data when you attend an event hosted by us via photograph, video or audio footage taken.
Our use of collected information
We use information held about you in the following ways:
Information collected from you. We will use this information:
- To administer our Membership scheme;
- to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
- to provide you with information about the services we provide;
- to notify you about changes to our service; and
- to respond to inquiries or to process requests.
Information we collect about you. We will use this information:
- to provide you with information about the services we provide;
- to administer our website and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- to improve our website to ensure that content is presented in the most effective manner for you and for your computer;
- to allow you to participate in features of our service, when you choose to do so; and
- as part of our efforts to keep our website safe and secure.
In summary, where we collect your personal data, we’ll only process it:
- to perform a contract with you, or
- where we have legitimate interests to process the personal data and they’re not overridden by your rights, or
- in accordance with a legal obligation, or
- where we have your consent.
How long do we keep your information?
We review our retention periods for personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory obligations. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us.
Who has access to your information?
We will not sell or rent your information to third parties.
We will not share your information with third parties for marketing purposes.
We may communicate your information to selected third parties including:
- Suppliers and sub-contractors for the performance of any contract we enter into with them or you;
- Analytics and search engine providers that assist us in the improvement and optimisation of our website; or
Where We Store Your Personal Data
The data that we collect from you may be transferred to countries other than the country you live in, where it may be processed by staff who work for us or for one of our suppliers. These countries may have laws different to what you’re used to. However, when we disclose personal data to a third party in another country, we put safeguards in place to ensure your personal data remains protected.
For individuals in the European Economic Area (EEA), this means that your data may be transferred outside of the EEA. Where your personal data is transferred outside the EEA, it will only be transferred to countries that have been identified as providing adequate protection for EEA data (like New Zealand), or to a third party where we have approved transfer mechanisms in place to protect your personal data – i.e., by entering into the European Commission’s Standard Contractual Clauses, or by ensuring the entity is Privacy Shield certified (for transfers to US-based third parties).
How do we secure your information?
Engineers in Business Fellowship maintains strict physical, electronic and administrative safeguards for the protection of users’ personal information from unauthorised or inappropriate access. Employees, business partners and affiliates who misuse a user’s personal information are subject to disciplinary actions.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
In addition to the EIBF policies explained above, as a data subject you could, under the prevailing regulations, choose to exercise the following rights, if applicable:
- to request from EIBF access to and rectification or erasure of your personal data or restriction of processing and to object to processing;
- to have personal data sent to you or another Data Controller in a commonly used machine-readable format (data portability);
- where the basis for processing is consent, the right to withdraw consent at any time;
- to lodge a complaint with a supervisory authority; and
- to be informed:
- whether the provision of personal data is part of a statutory or contractual requirement or obligation and the possible consequences of failing to provide the personal data;
- the categories of personal data sourced from third parties or publicly accessible sources;
- the existence of automated decision making, including profiling and information about how decisions are made, the significance and the consequences;
- the identity of any recipient or categories of recipients of the personal data;
- and, if EIBF intends to process your personal information for a purpose other than that for which it was collected, what that purpose is and any relevant further information.