The online community is provided and hosted by the University and the online payments system is provided by our third party suppliers, IATS. IATS is a specialist online credit card payment provider that complies with international credit card security standards.
1. Information that we collect from you and your use of this site
When you visit our site you will be asked to provide certain information about yourself. You can choose not to provide some of the information we request, although some information, such as an email address, is required in order to be a member of the online community.
If you decide to make a gift using the online payment system we need you to provide both contact and financial information to ensure the verification of your identity.
1.1 Information you give us
We receive and save any information you enter on our website or give us in any other way. However, we will never store credit card information at the University. It is only used by our third-party merchant provider to process a transaction e.g. if you register for an event or make a gift, and is never passed on to us.
We will use your contact information to send further information about the University or to contact you when necessary. You may always opt out of receiving future mailings; see the "Opt Out" section below.
1.2 Automatic Information
We automatically receive and save certain types of information whenever you interact with the online community website. We use the information to monitor website traffic and to assist with the navigation and user experience of the website.
When you visit some pages on the site, your computer may be issued with a small file - a "cookie". A cookie is a piece of information in the form of a very small text file that is placed on an Internet user's hard drive. It is generated if you choose to let your computer remember your login information.
2. How we use your information
Personal data collected will also be used to update the records we hold for you and, if you have made a credit card payment it will be specifically used to enable us to acknowledge your gift, manage your event booking or provide a service to you. We will also use it to contact you about other opportunities and ways to support the University.
Financial credit card data will be retained by reputable third-party banking provider, IATS, who handle our customers' card transactions and may be used for any of the following purposes: accounting, billing and auditing, administrative and legal purposes, security and payment verification.
If you indicate to us that you wish this gift to be anonymous, we understand this to mean that you want us to ensure that knowledge of your gift is kept solely within the University and is accessible only to University staff. If you have other specific wishes regarding your anonymity, please indicate this to us.
We may also use and analyse the information we collect so that we can manage and improve the services on the website. Demographic and statistical information about user behaviour may be collected and used to analyse the popularity and effectiveness of the website. Any disclosure of this information will be in aggregate form and will not identify individual users.
3. How your data is shared with other members of the online community
3.1 Information available to other members
We do not assume that you will want to share information with other users, including your contact details.
Other users will only be able to find you in search results based on your education details and other biographical and business information if you choose to make this information public when you edit your profile. They will not be able to view any information that is marked as private.
3.2 Your use of the information provided by others
Any use of the information contained in personal profiles of other members of the community for direct or indirect soliciting, profit, or mass emailing is strictly prohibited. Durham University reserves the right to restrict or deny access to this site if you misuse it.
4. How we handle the data submitted by you
4.1 Data Protection Legislation
The University is your data controller. As your data controller the University has notified its activities to the Office of the Information Commissioner as required under the Data Protection Act 1998 (the "Act") and is listed in the Public Register of Data Controllers. Personal information will only be collected and/or processed by the University in accordance with the Act. The University has a Data Protection policy at http://www.dur.ac.uk/data.protection/policy/
4.2 Opt Out or Change Your Contact Information
Our site provides users the opportunity to opt out of receiving communications from us. You may choose to receive only specific communications or none at all. Use the mailing preferences page to inform us.
You may also update your contact information previously provided to us by editing your profile.
4.3 Data Security
Please protect sensitive data at all times throughout your online transaction. Make sure that nobody can see over your shoulder when typing in personal information and close your browser when you have finished. The University and its third-party suppliers use very reasonable endeavour to ensure that access to information provided and the payments you make whilst using this site are secure. We work to protect the security of your information during transmission. The site is secured using a Secure Socket Layer (SSL) and all online credit card transactions comply with the credit card industry standards for security.
You should be aware that the computer that you use to attach to the online-payments system (via a web browser) must also be secure and include the latest operating system, software and anti-virus updates. The use of a shared computer to connect to the online-payments system could increase the risk that others will see your sensitive information.
The University online-payments system will require you to enter your credit card details. An encrypted tag is generated by IATS, our online merchant provider, which is used to verify the transaction. No credit card information is retained by either the University or IATS.
4.4 Disclosure of your information
- Except as set out in this policy or as required by law, your personal data will not be provided to any third party without your prior written consent
- It may be accessed by or given to third parties who act for us for the purposes set out in this policy or for other purposes approved by you. Those parties process information and may provide support services to the University or on the University’s behalf.
- Your e-mail information is held on servers in Atlanta, managed by a third party provider. This data is protected under the Safe Harbour scheme for countries outside of the European Economic Union. This ensures that the data is protected in the same way as within Europe.
- We employ other companies and individuals to perform functions on our behalf and in turn they may also use third parties for these functions. For example, verifying and processing credit card information. The Contracted Agencies have access to personal information needed to perform their functions, but may not use it for any other purposes.
4.5 Monitoring Use of University Systems
In order to protect the security and working of University network and computer systems, it may be necessary to monitor or log the use of these systems. If there are indications of abuse of systems or that individuals may be using systems in excess of their authority, files, messages and any or all uses of the systems may be intercepted, monitored, recorded, copied, audited, inspected and disclosed to authorised University and law enforcement personnel.
4.6 Sending us an Email
You also may decide to send us personally identifying information, for example, in an electronic mail message containing a question or comment, or by filling out a Web form that provides us this information. We use personally identifying information from email primarily to respond to your requests. We may forward your email to other employees who are better able to answer your questions. We may also use your email to contact you in the future about our programs that may be of interest.
If you sign up for one of our email lists, we will only send you the kinds of information you have requested. We won't share your name or email address with any outside parties.
5. Links to external websites
6. Links to our website
Creating a text link from your website to our site does not require permission.
7. Use of text and images
If you would like to publish information that you find on our website, please send your request to the Alumni Relations Office at firstname.lastname@example.org
Where text or images are posted on our site with the permission of the original copyright holder, a copyright statement will appear on the page.
This website is designed to be accessible to all users.
We welcome your comments. If you have suggestions on how to make the site more accessible, please contact us at email@example.com
9. How to contact us
Should the information we hold about you be incorrect, you can change and update your personal information and you can also have your information corrected by contacting us. You can amend information on the profile page within the online community or by writing to the Alumni Office at the address below.
Development and Alumni Relations Office
The Palatine Centre