Privacy policy


These policies set out how we collect, use and store personal data

The EURIKHA project is managed by the Service User Research Enterprise (SURE) part of the Health Service and Population Research Department, King’s College London. The Service User Research Enterprise (SURE) is the data controller and is hereafter referred to as ‘We’.

We collect certain information or data about you when you use our website. This policy explains what data we collect from you and how we use it.

We may collect the following information:

  • Information that you provide by filling in forms on our website. This includes information provided at the time of registering to create an account, commenting, subscribing to our mailing list, filling in a survey, or contacting us via contact forms. We will request consent at each point where we collect your information.
  • Details of your visits to our site, including which pages you visit and what you do. This is to enhance your experience of the site and for logged-in users to ensure access to restricted resources.
  • If you login to our site we may collect details of your IP address. This helps us ensure the security of our site by monitoring normal and malicious use of our site.

This helps us to:

  • Keep our records up to date.
  • Improve the products and services we provide.
  • Contact you in response to a specific enquiry.
  • Send you emails about our services which are particularly relevant to you.
  • Contact you via email about the services you receive from us.
  • Inform our research to ensure it appropriately reflects the needs of the community.

Information about your device, and how you use our website

How we collect itHow we use it
When you visit this website, information about your device, operating system, browser and your IP address are automatically saved in log files on the web serverThis helps us ensure the security of our site by monitoring normal and malicious use of our site
Lawful basis: legitimate interests
If you login to our site we also collect details of your IP address and the time of your loginThis helps us ensure the security of restricted content for logged-in users or members
Lawful basis: legitimate interests
We collect details of your visits to our site, including which pages you visit and actions you take. This helps us to see what parts of our site are being used and to improve our site for our visitors and users
Lawful basis: legitimate interests

Discussion forum

If you comment on our website through the discussion forum, you agree for your information to be stored and used to facilitate these features. Discussion forums require users to create an account, your email address will never be made public but is stored by our systems to enable you to login and to reset your password if required. We allow users to anonymise themselves including their usernames but your information and content you post is still visible by other forum users.

Posts on the discussion forum are viewable only by logged-in users of our website and are not included in search engines, but anyone can create an account. By posting to our discussion forum you agree to your information and content being made public in this way.

Researchers will never see your email address alongside content you post or other data you provide us (such as responses to optional questions) so you can remain anonymous in our research. Any non-identifiable information you provide through our site may be used to inform our research. We will do this by drawing from the topics, discussion, and examples you raise in this forum to:

  • Enrich our understanding of issues that are important to those involved in the work we hope to capture.
  • Inform where, and how, we look for the collective knowledge of users and survivors of psychiatry or mental distress, and people with psychosocial disabilities.
  • Guide our approach to archives and interviewing.
  • Enable EURIKHA to be more inclusive of different perspectives which are not usually represented in published material.

Special category data

How we collect itHow we use it
If you create an account with us you can optionally choose to provide us with information about your experience with mental health/distress/disability or mental health service use This helps our researchers to make sense of your contributions to the discussion forum by placing them in a broader context of work by users, survivors and people with psychosocial disabilities.
Lawful basis: explicit consent

Cookies and how we use them

Like most websites we set cookies to enable features on our website. You can find out more about cookies and how to manage them on the All About Cookies website.

We set strictly necessary cookies for security and to enable you to do things like login to our site.

Cookie nameReason
__cfduidSet by Cloudflare and used to identify individual clients behind a shared IP address and apply security settings on a per-client basis.
wordpress_[hash]
wordpress_sec_[hash]
wordpress_logged_in_[hash]
Set by WordPress if you login to our site to store your authentication details.
wordpress_test_cookieTests whether or not your browser has cookies enabled.
wp-settings-{time}-[UID] Set by WordPress and used to customize your view of admin area interface (if applicable), and possibly also the main site interface.
cookie_notice_acceptedTests whether you have accepted to have Google Analytics enabled or not

We use third parties for some services such as website analytics, embedded maps, embedded videos and web fonts amongst others. Some of these may set performance cookies and some services such as Google Maps and Youtube may collect IP addresses and/or set cookies. For more information on all of Google’s services please see Google’s privacy policy. Currently we only use Google Analytics and allow you to accept or decline setting these cookies.

Cookie nameReason
_gidSet by Google Analytics to distinguish users. We have enabled IP masking which ensures IPs are anonymised before being sent to Google.
_gaSet by Google Analytics to distinguish users. We have enabled IP masking which ensures IPs are anonymised before being sent to Google.
_gat_gtag_[property-id] Set by Google Analytics to throttle the request rate. We have enabled IP masking which ensures IPs are anonymised before being sent to Google.

Where we store your personal information

All information you provide to us is stored on our secure servers in Manchester, UK. We also back-up our site to a location in Germany: backups are kept for a maximum of 30 days. Data will also be stored internally on servers at King’s College London.

Sharing your information

We take your privacy seriously and will only use your personal information to respond to your queries, to provide the services you have requested from us, provide administration notices, or for the normal functioning of this website. Your personal information will never be shared with third parties for marketing purposes and will not be used by us for marketing purposes without your explicit consent.

We do use some third party companies who act as data processors, to provide services in order to run our website and in order to run our business. Your data may be shared or stored with them as follows.

ReasonLocation
We use a specialist server company to host our website.A secure datacentre in the UK. Data is permanently held unless changed or deleted. Onsite backups are kept for 7 days.
We use another specialist server company to store additional backups of our website.A secure datacentre in Germany. Backup data is encrypted. Data is kept for 30 days.
We use a specialist email service provider called Mailgun (covered by the EU-US Privacy Shield Framework) to improve deliverability of email sent from this website.Secure datacentres in the USA. Data is retained for the purposes of sending email and providing us with information about its delivery. Data is kept for 30 days.

Passwords

Where we have given you a password, or you have set your own password which enables you to access certain parts of our site, you are responsible for keeping this password confidential and secure. We ask you not to share a password with anyone.

Data retention

We will keep contact form enquiry data for no more than 18 months and all other data for no more than 10 years, unless specified otherwise in this policy.

Data rectification, portability and erasure

You have a right to update your data and keep it correct. You also have a right for copies of your data and a right to have your data erased from our systems. Please contact us with your requests and we will action them within a maximum of 30 days.

Changes to our privacy policy

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by email.

Contact

If you have any questions or comments about our privacy policy please contact us.

Disclaimer

Our site may contain links to and from other websites. If you follow a link to any of these websites, please note that they have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.

Posted: 23 February 2018
Updated: 21 January 2019