- 1 Your data on Physiopedia
- 2 Who we are
- 3 Why we collect data
- 4 How long is the data stored
- 5 Who has access to the data
- 6 How can the user view and export their data
- 7 How a user’s data can be deleted / removed from the site
- 8 Details of the data collected
- 9 Email newsletters
- 10 Contact forms
- 11 Notification of data breaches
- 12 Questions
Your data on Physiopedia
These notes have been provided in response to the European General Data Protection Regulation (GDPR) to explain to Physiopedia site users how individual data is gathered, stored, used and shared with third parties. Also how a Physiopedia user may ultimately choose to remove data from the site. Please note that all data on the Physiopedia platform is encrypted during transfer and is stored within a secure database hosted on world class cloud based infrastructure with regular backups taken to insure against data loss.
Who we are
We are Physiopedia, a charity registered in England and Wales. Our company registration number is 1173185 and our registered office is at 10 Queen Street Place, London, EC4R 1BE.
Why we collect data
This data is collected to allow our users to securely contribute to the professional content on the Physiopedia website. We also request and use general data to allow us to alert users to new activities and features, and also to improve our services.
How long is the data stored
All data is stored indefinitely unless an individual requests its removal. The contact form can be used at any time for a site user to request that all their data be deleted from the site and database.
Who has access to the data
The Physiopedia site support team have secure access to your individual data in order to allow them to investigate and resolve any issues encountered when using the site. This individual data is not shared with third parties without the specific written permission of the individual user.
General anonymised website use data is collated to allow us to analyse use and improve services. The following platform facilities are delivered using external services and so involve a strictly limited data transfer to third parties. These service organisation have been specifically selected because they provide world class functionality and data protection:
- Site usage tracking - Google Analytics
- Social media sharing - AddThis
- Data/cookie notification, pop-up messages and surveys - GetSiteControl
How can the user view and export their data
The data stored for an individual user can be viewed by them on their profile page and their contributions page. They can export the entire content of their activity in several formats.
How a user’s data can be deleted / removed from the site
A site user can request that all their data be deleted from the site and database at any time by using the contact form. This action will prevent this user downloading activity data following this deletion.
Details of the data collected
On creation of a user account the following details are recorded in the site database:
- Email address
- First name
- Last name
- Submitted biography
- Any license / registration or other details provided
- IP address
At the time of registration users are offered the option to receive a Physiopedia email newsletter. Accepting this option will share that user’s email address with the MailChimp platform through which these newsletters are managed.
Any Physiopedia user can opt in to receive a Physiopedia email newsletter. Accepting this option will share that user’s email address with the MailChimp platform through which these newsletters are managed.
The user may optionally choose to contact the Physiopedia team using a site contact form. Submitted details are be stored in the contact logs:
- Email address
Notification of data breaches
In the event of a data breach we will alert all affected site users within 72 hours.
If you have any questions regarding the capture, storage and use of data by Physiopedia please don’t hesitate to contact us.