Data: Difference between revisions

mNo edit summary
No edit summary
 
(7 intermediate revisions by 3 users not shown)
Line 1: Line 1:
== Your data on Physiopedia ==
== Your data on Physiopedia ==
These notes have been provided in response to the European General Data Protection Regulation (GDPR) to explain to Physiopedia site users how individual related data is gathered, stored, used and shared with third parties. Also how a Physiopedia user may ultimately choose to export and remove data from the site. Please note that all data on the Physiopedia platform is encrypted during transfer and is stored within a secure database hosted on world class cloud based infrastructure with regular backups taken to insure against data loss.
These notes have been provided in response to the [https://www.eugdpr.org/ European General Data Protection Regulation] (GDPR) to explain to Physiopedia site users how individual data is gathered, stored, used and shared with third parties. Also how a Physiopedia user may ultimately choose to remove data from the site. Please note that all data on the Physiopedia platform is encrypted during transfer and is stored within a secure database hosted on world class cloud based infrastructure with regular backups taken to insure against data loss.


== Who we are ==
== Who we are ==
Line 6: Line 6:


== Why we collect data ==
== Why we collect data ==
This data is collected to allow our users to securely participate in online professional development activities and be able to later evidence the successful completion of these activities. We also request and use data to allow us to alert users to new courses and features and also to improve our services.
This data is collected to allow our users to securely contribute to the professional content on the Physiopedia website. We also request and use general data to allow us to alert users to new activities and features, and also to improve our services.


== How long is the data stored ==
== How long is the data stored ==
All data is stored indefinitely unless an individual requests its removal. The account cancellation facility allows a site user to request that all their data be deleted from the site and database.
All data is stored indefinitely unless an individual requests its removal. The contact form can be used at any time for a site user to request that all their data be deleted from the site and database.


== Who has access to the data ==
== Who has access to the data ==
The Physiopedia site support team have secure access to your individual data in order to allow them to investigate and resolve any issues encountered when using the site. Individual data is not shared with third parties (e.g. physiotherapy member organisations) without the specific written permission of the individual user.
The Physiopedia site support team have secure access to your individual data in order to allow them to investigate and resolve any issues encountered when using the site. This individual data is not shared with third parties without the specific written permission of the individual user.


General anonymised course participation data is collated into reports that are shared with partner physiotherapy associations. For free MOOCs (open courses) an annual report including general anonymous course participation data is shared publicly.
General anonymised website use data is collated to allow us to analyse use and improve services. The following platform facilities are delivered using external services and so involve a strictly limited data transfer to third parties. These service organisation have been specifically selected because they provide world class functionality and data protection:
* Site usage tracking - [https://www.google.com/analytics/ Google Analytics]
* Social media sharing - [http://www.addthis.com/ AddThis]
* Data/cookie notification, pop-up messages and surveys - [https://getsitecontrol.com/ GetSiteControl]
* Site search - [https://swiftype.com/ Swiftype]


How can the user view and export their data
== How can the user view and export their data ==
The data stored for an individual user can be viewed by them on their profile page and their activity log page. They can export the entire content of their activity log in several formats.
The data stored for an individual user can be viewed by them on their profile page and their contributions page. They can export the entire content of their activity in several formats.


== How a user’s data can be deleted / removed from the site ==
== How a user’s data can be deleted / removed from the site ==
The account cancellation facility allows a site user to request that all their data be deleted from the site and database. This action will prevent this user downloading activity log data and course completion certificates following this deletion.
A site user can request that all their data be deleted from the site and database at any time by using the contact form. This action will prevent this user downloading activity data following this deletion.


== Details of the data collected ==
== Details of the data collected ==


=== Account creation ===
=== Account creation ===
On creation of a trial user account or a partner member organisation user account the following details are recorded in the site database:
On creation of a user account the following details are recorded in the site database:
* Email address
* Email address
* First name
* First name
* Last name
* Last name
* Submitted biography
* Any license / registration or other details provided
* IP address
* IP address
Where an individual full user account is purchased the following additional details are also recorded:
* Billing address
In the processing of a payment all the above details are securely passed to our world class payment platform provider Stripe. At the point of purchase your bank / credit card details are encrypted and passed to this payment provider. Note that only partial card details are recorded on the Physiopedia database.
At the time of registration users are offered the option to receive a Physiopedia email newsletter. Accepting this option will share that user’s email address with the MailChimp platform through which these newsletters are managed.
At the time of registration users are offered the option to receive a Physiopedia email newsletter. Accepting this option will share that user’s email address with the MailChimp platform through which these newsletters are managed.


=== Optional profile fields ===
== Email newsletters ==
The user can '''optionally''' provide:
Any Physiopedia user can opt in to receive a Physiopedia email newsletter. Accepting this option will share that user’s email address with the [https://mailchimp.com/ MailChimp] platform through which these newsletters are managed.
 
Professional licensing organisation
 
License number
 
=== Course participation ===
In the process of competing an online course several types of data are recorded:
 
Records of learning activities completed
 
Quiz scores
 
Courses completed
 
The following platform facilities are delivered using external services and so involve a strictly limited data transfer to third parties. These service organisation have been specifically selected because they provide world class functionality and data protection:
 
Course evaluations – Formstack
 
Forum posts – Muut
 
Embedded videos – Youtube
 
== Course accreditors ==
This item only applies to residents of US states covered by ProCert and South Africa competing courses accredited in their states / country. The course accreditors (FSBPT and SASP) require that we transfer the details (name and email addresses) of all course participants under their jurisdiction for their records.


== Contact forms ==
== Contact forms ==
Line 74: Line 52:
== Questions ==
== Questions ==
If you have any questions regarding the capture, storage and use of data by Physiopedia please don’t hesitate to contact us.
If you have any questions regarding the capture, storage and use of data by Physiopedia please don’t hesitate to contact us.
== Useful Links ==
* [[Physiopedia:Privacy Policy|Privacy policy]]
* [[Physiopedia:Terms of Service|Terms of Service]]
<div class="pp-no-course-suggestions pp-no-article-suggestions"></div>

Latest revision as of 11:16, 16 August 2019

Your data on Physiopedia[edit | edit source]

These notes have been provided in response to the European General Data Protection Regulation (GDPR) to explain to Physiopedia site users how individual data is gathered, stored, used and shared with third parties. Also how a Physiopedia user may ultimately choose to remove data from the site. Please note that all data on the Physiopedia platform is encrypted during transfer and is stored within a secure database hosted on world class cloud based infrastructure with regular backups taken to insure against data loss.

Who we are[edit | edit source]

We are Physiopedia, a charity registered in England and Wales. Our company registration number is 1173185 and our registered office is at 10 Queen Street Place, London, EC4R 1BE.

Why we collect data[edit | edit source]

This data is collected to allow our users to securely contribute to the professional content on the Physiopedia website. We also request and use general data to allow us to alert users to new activities and features, and also to improve our services.

How long is the data stored[edit | edit source]

All data is stored indefinitely unless an individual requests its removal. The contact form can be used at any time for a site user to request that all their data be deleted from the site and database.

Who has access to the data[edit | edit source]

The Physiopedia site support team have secure access to your individual data in order to allow them to investigate and resolve any issues encountered when using the site. This individual data is not shared with third parties without the specific written permission of the individual user.

General anonymised website use data is collated to allow us to analyse use and improve services. The following platform facilities are delivered using external services and so involve a strictly limited data transfer to third parties. These service organisation have been specifically selected because they provide world class functionality and data protection:

How can the user view and export their data[edit | edit source]

The data stored for an individual user can be viewed by them on their profile page and their contributions page. They can export the entire content of their activity in several formats.

How a user’s data can be deleted / removed from the site[edit | edit source]

A site user can request that all their data be deleted from the site and database at any time by using the contact form. This action will prevent this user downloading activity data following this deletion.

Details of the data collected[edit | edit source]

Account creation[edit | edit source]

On creation of a user account the following details are recorded in the site database:

  • Email address
  • First name
  • Last name
  • Submitted biography
  • Any license / registration or other details provided
  • IP address

At the time of registration users are offered the option to receive a Physiopedia email newsletter. Accepting this option will share that user’s email address with the MailChimp platform through which these newsletters are managed.

Email newsletters[edit | edit source]

Any Physiopedia user can opt in to receive a Physiopedia email newsletter. Accepting this option will share that user’s email address with the MailChimp platform through which these newsletters are managed.

Contact forms[edit | edit source]

The user may optionally choose to contact the Physiopedia team using a site contact form. Submitted details are be stored in the contact logs:

  • Email address
  • Name
  • Message

Notification of data breaches[edit | edit source]

In the event of a data breach we will alert all affected site users within 72 hours.

Questions[edit | edit source]

If you have any questions regarding the capture, storage and use of data by Physiopedia please don’t hesitate to contact us.

Useful Links[edit | edit source]

Retrieved from "https://www.physio-pedia.com/index.php?title=Data&oldid=219354"