ECRcentral respect the EU’s General Data Protection Regulations (GDPR) and this policy explain how we collect and treat any information you give us. You won’t find any complicated legal terms or long passages of unreadable text.
ECRcentral value your privacy as much as we do our own, so we’re committed to keeping your personal information safe. We’re uncomfortable with the information companies, governments, and other organisations keep on file, so we ask for only the bare minimum from our users. We’ll never use your personal information for any reason other than why you gave it, and we’ll never give anyone access to it unless we’re forced to by law.
We ask you to provide your email address, first and last name once you register. If you prefer to use the provided social logins to register, we also get your full name, email address, public profile URL to show it on your profile page. We collect your email address when you sign up for one of our newsletters.
When you sign up by email or through social logins, we collect your name, email address, a social media username to show it on your profile page.
If you sign up for a newsletter, we only collect your email address and ask for your name if you wish to provide.
When you register through our website, we store your information in Amazon Web Services servers. If you sign up for a newsletter, we store your email address and name in MailChimp, which is the marketing platform we prefer. When you comment on our website (excluding community forum), these are stored in Disqus, which is comment management platform we prefer. We chose these systems partly for their commitment to security. Your comments are stored by Disqus, so please read about their data policy and GDPR compliance here.
We occasionally use your contact information to send you updates about new features, resources and funding opportunities. When we do, you have the option to unsubscribe from these communications and we won’t send them to you again. We might also email you about our products and services, but if you tell us not to, we won’t get in touch again.
When we store information in our own systems, only the people who need it have access. Our team with manager and admin role have access to everything you’ve provided, but individual moderators have access to only the discussion forum posts.
You have full control over your personal data. Your full profile page is only viewable to the registered users on the website, and your email address is always masked. You have full access to add/edit/delete your personal information and also delete your account completely.
Where we store your information in third-party services, we restrict access only to people who need it. We encrypt the passwords using bcrypt before we store in our database.
The servers we use are all protected and only accessible after authentication using SSH keys pairs. All traffic to our website is encrypted using certificates obtained from Let’s Encrypt.
We take complaints very seriously. If you’ve any reason to complain about the ways we handle your privacy, please feel free to contact us. You are free to delete your account at any time.
If we change the contents of this policy, those changes will become effective the moment we publish them on our website.
Last updated: February 05, 2019.