Privacy Policy

Privacy Policy

Introduction

This privacy notice aims to inform you about how Midlands Medical Conferences (referred to as “MMC”, “we”, “us” or “our” in this privacy notice) processes your personal data when you use this website and tells you about your privacy rights under data protection laws.

For the purposes of EU data protection laws, we are the ‘controller’ of the personal data we collect about you through and in connection our operation of the Midlands Medical Conferences (MMC) platform.

Midlands Medical Conferences (MMC) incorporates privacy controls for members which affect how we will process your personal data. By using the privacy controls, you can specify your marketing and communications preferences and limit the publication of your information.

 

We want to protect your privacy and confidentiality. We understand that all users of our web site are quite rightly concerned to know that their data is being used lawfully. We take our responsibilities under Data Protection Act, and in due course GDPR, very seriously and we want to comply with the spirit and the letter of the guidance provided by the Information Commissioners Office

You can find information about ICO at their website https://ico.org.uk/

We regret that if there are one or more points below with which you are not happy, your only recourse is to leave our web site immediately.

We do not share, or sell, or disclose to a third party, any personally identifiable information collected at this site.

The law requires us to determine how we process different categories of your

personal information, and to notify you of the basis for each category.

If a basis on which we process your personal information is no longer relevant, then we shall immediately stop processing your data.

1.            Information we process because we have a contractual obligation with you

When you buy a product or service from us, or otherwise agree to our terms and conditions, a contract is formed between you and us.

In order to carry out our obligations under that contract we must process the information you give us. Some of this information may be personal information.

We may use it in order to:

We process this information on the basis there is a contract between us, or that you have requested we use the information before we enter into a legal contract. We shall continue to process this information until the contract between us ends or is terminated by either party under the terms of the contract.

2.            Information we process with your consent

Where there is no contractual relationship between us, such as when you browse our website or ask us to provide you more information about our business, including our products and services, you provide your consent to us to process information that may be personal information.

Wherever possible, we aim to obtain your explicit consent to process this information, for example, by asking you to agree to our use of cookies.

Sometimes you might give your consent implicitly, such as when you send us a message by e-mail to which you would reasonably expect us to reply.

Except where you have consented to our use of your information for a specific purpose, we do not use your information in any way that would identify you personally.

We continue to process your information on this basis until you withdraw your consent, or it can be reasonably assumed that your consent no longer exists.

You may withdraw your consent at any time by instructing us at  info@midlandsmedicalconferences.org

3.            Information we process because we have a legal obligation

We are subject to the law like everyone else. Sometimes, we must process your information in order to comply with a statutory obligation. This can include your personal information.

4.            Website usage information

 You can view the Terms and Conditions of Use of our website here.

 

Types of Data collected

Among the types of Personal Data that this website collects, by itself or through third parties, there are: Cookies, Usage data, email address, first name and last name (and address where required for registering for a conference or meeting organized by Midlands Medical Conferences).

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanation texts displayed prior to the Data collection.

The Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using this website.

Any use of Cookies – or of other tracking tools – by this website or by the owners of third-party services used by this Application serves the purpose of providing the service required by the User, in addition to any other purposes described in the present document and in the Cookie Policy, if available.

Users are responsible for any third-party Personal Data obtained, published or shared through this Application and confirm that they have the third party’s consent to provide the Data to the Owner.

 

Mode and place of processing the Data

Methods of processing

The Data Controller processes the Data of Users in a proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.

The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Data Controller, in some cases, the Data may be accessible to certain

types of persons in charge, involved with the operation of the site (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Data Controller at any time.

Data may be processed outside the European Union

Our websites are hosted in the UK.

We use social media platforms which may hold data out of the European Union.

We may also use outsourced services in countries outside the European Union from time to time in other aspects of our business.

Accordingly, data obtained within the UK or any other country could be processed outside the European Union.

 

The use of the collected Data

The Data concerning the User is collected to allow the Owner to provide its services, as well as for the following purposes: Analytics, Displaying content from external platforms, Interaction with external social networks and platforms, SPAM protection, Managing contacts and sending messages, contacting the User and Handling payments.

The Personal Data used for each purpose is outlined in the specific sections of this document.

Detailed information on the processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

Analytics

The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.

Google Analytics (Google Inc.)

Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the Data collected to track and examine the use of this Application, to prepare reports on its activities and share them with other Google services.
Google may use the Data collected to contextualize and personalize the ads of its own advertising network.

Personal Data collected: Cookies and Usage data.

Place of processing: US

Contacting the User

Contact forms and delegate registration forms

By filling in the contact form with their Data, the User authorizes this Application to use these details to reply to requests for information, or any other kind of request as indicated by the form’s header.

Personal Data collected: email address, first name and last name (and address where required for contracts and registration forms to attend conferences organized by Midlands Medical Conferences).

Handling payments

Payment processing services enable this Application to process payments by credit card, bank transfer or other means. To ensure greater security, this Application shares only the information necessary to execute the transaction with the financial intermediaries handling the transaction.
Some of these services may also enable the sending of timed messages to the User, such as emails containing invoices or notifications concerning the payment.

 

Interaction with external social networks and platforms

This type of services allows interaction with social networks or other external platforms directly from the pages of this Application.
The interaction and information obtained through this Application are always subject to the User’s privacy settings for each social network.
This type of service might still collect traffic data for the pages where the service is installed, even when Users do not use it.

Google+ +1 button and social widgets (Google Inc.)

The Google+ +1 button and social widgets are services allowing interaction with the Google+ social network provided by Google Inc.

Personal Data collected: Cookies and Usage data.

Place of processing: US

LinkedIn button and social widgets (LinkedIn Corporation)

The LinkedIn button and social widgets are services allowing interaction with the LinkedIn social network provided by LinkedIn Corporation.

Personal Data collected: Cookies and Usage data.

Place of processing: US

Facebook Like button and social widgets (Facebook, Inc.)

The Facebook Like button and social widgets are services allowing interaction with the Facebook social network provided by Facebook, Inc.

Personal Data collected: Cookies and Usage data.

Place of processing: US

Twitter Tweet button and social widgets (Twitter, Inc.)

The Twitter Tweet button and social widgets are services allowing interaction with the Twitter social network provided by Twitter, Inc.

Personal Data collected: Cookies and Usage data.

Place of processing: US

 

MailChimp (The Rocket Science Group, LLC.)

MailChimp is an email address management and message sending service provided by The Rocket Science Group, LLC.

Personal Data collected: email address, first name and last name.

Place of processing: US

SPAM protection

This type of services analyzes the traffic of this Application, potentially containing Users’ Personal Data, with the purpose of filtering it from parts of traffic, messages and content that are recognized as SPAM.

Google reCAPTCHA (Google Inc.)

Google reCAPTCHA is a SPAM protection service provided by Google Inc.

Personal Data collected: Cookies and Usage data.

Place of processing: US

Further information about Personal Data

Services online

The Personal Data collected are used to provide the User with services including payment.

The Personal Data collected to complete the payment may include the credit card, the bank account used for the transfer, or any other means of payment envisaged. The kind of Data collected by this Application depends on the payment system used.

Your Rights

 In this Section we have summarised the rights that you have under data protection law. Accordingly, you should read the relevant laws and guidance from the regulatory authorities for a full explanation of these rights.

Your principal rights under data protection law are:

 

 

You have the right to confirmation as to whether or not we process your personal data and, where we do, access to the personal data, together with certain additional information. That additional information includes details of the purposes of the processing, the categories of personal data concerned and the recipients of the personal data. Providing the rights and freedoms of others are not affected, we will supply to you a copy of your personal data, after you supplied appropriate evidence of your identity (this will require you to log in). The first copy will be provided free of charge, but additional copies may be subject to a reasonable fee. when logged into the website.

You have the right to have any inaccurate personal data about you rectified and, considering the purposes of the processing, to have any incomplete personal data about you completed. You have the ability to update and complete your account data yourself on the Update Your Profile page on the website.

In some circumstances, you have the right to the erasure of your personal data without undue delay and which we will endeavour to do within 30 days of your request. Those circumstances include: the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; you withdraw consent to consent- based processing; the processing is for direct marketing purposes; and the personal data have been unlawfully processed. However, there are certain general exclusions of the right to erasure. Those general exclusions include where processing is necessary for exercising the right of freedom of expression and information and for compliance with a legal obligation; or for the establishment, exercise or defence of legal claims.

In some circumstances, you have the right to restrict the processing of your personal data. Those circumstances are: you contest the accuracy of the personal data; processing is unlawful, but you oppose erasure; we no longer need the personal data for the purposes of our processing, but you require personal data for the establishment, exercise or defence of legal claims; and you have objected to processing, pending the verification of that objection. Where processing has been restricted on this basis, we may continue to store your personal data. However, we will only otherwise process it: with your consent; for the establishment, exercise or defence of legal claims; for the protection of the rights of another natural or legal person; or for reasons of important public interest.

You have the right to object to our processing of your personal data on grounds relating to your particular situation, but only to the extent that the legal basis for the processing is that the processing is necessary for: the performance of a task carried out in the public interest or in the exercise of any official authority vested in us; or the purposes of the legitimate interests pursued by us or by a third party. If you make such an objection, we will cease to process the personal information unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the establishment, exercise or defence of legal claims. If you object specifically to the processing of your account data, then fulfilment of this request will require the termination of your membership of Doctors.net.uk.

You have the right to object to our processing of your personal data for direct marketing purposes (including profiling for direct marketing purposes). If you make such an objection, we will cease to process your personal data for this purpose.

You have the right to object to our processing of your personal data for scientific or historical research purposes or statistical purposes on grounds relating to your particular situation, unless the processing is necessary for the performance of a task carried out for reasons of public interest.

To the extent that the legal basis for our processing of your personal data is consent, and such processing is carried out by automated means, you have the right to receive your personal data from us in a structured, commonly used and machine-readable format. However, this right does not apply where it would adversely affect the rights and freedoms of others.

If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence, your place of work or the place of the alleged infringement.

To the extent that the legal basis for our processing of your personal information is consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal.

You may exercise any of your rights in relation to your personal data by contacting our Member Services team by telephone or email.

 

Cookie Policy

This website uses Cookies. To learn more and for a detailed cookie notice, you may consult the Cookie Policy here.

Additional information about Data collection and processing

 

Legal action

The User’s Personal Data may be used for legal purposes by the Data Controller, in Court or in the stages leading to possible legal action arising from improper use of our services.

System logs and maintenance

For operation and maintenance purposes, this website and any third-party services may collect files that record interaction with this website (System logs) or use for this purpose other Personal Data (such as IP Address).

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time.

 

The rights of Users

Users have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Controller to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the Data Controller at the contact information set out above.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to its Users on this page. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. If a User objects to any of the changes to the Policy, the User must cease using this Website and can request that any personal data be removed. Unless stated otherwise, the then-current privacy policy applies to all Personal Data the Data Controller has about Users.

Definitions and legal references

Personal Data (or Data)

Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.

Usage Data

Information collected automatically from this Application (or third-party services employed in this Application), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User’s IT environment.

User

The individual using this website, which must coincide with or be authorized by the Data Subject, to whom the Personal Data refers.

Data Subject

The legal or natural person to whom the Personal Data refers.

This Website

The hardware or software tool by which the Personal Data of the User is collected.

Cookies

Small piece of data stored in the User’s device. For further information visit www.aboutcookies.org or www.allaboutcookies.org.

Legal information

Notice to European Users: this privacy statement has been prepared in fulfillment of the obligations under Art. 10 of EC Directive n. 95/46/EC, and under the provisions of Directive 2002/58/EC, as revised by Directive 2009/136/EC, on the subject of Cookies.

This privacy policy relates solely to this Website.

Latest update: 6th September 2018

Data protection registration

 

We are registered as a data controller with the UK Information Commissioner’s Office.

 

Our data protection registration number is ZA455381

 

Contact

Email: info@midlandsmedicalconferences.org

 

 

Copyright Midlands Medical Conferences Community Interest Company (CIC) Company number: 14399930