This page describes how the TGMI handles personal data that you provide through the TGMI website, the TGMI mailing list, or by registering for public TGMI events.
What information is being collected?
Some of your interaction with elements of this site may require you to enter your name and email address. For example, this occurs when you leave a comment on a blog post, if you sign up for the mailing list, or register for an event.
If you merely browse pages on our site without entering your own personal information, the only data that is collected is non-personal data. We use Google Analytics to analyse website performance and metrics, and have it set to anonymise IP addresses (and not keep any data for longer than 26 months), so this information cannot be used to identify you.
How we use your data
If you leave a comment on the site, or sign up for the weekly emails, we have access to the information you submitted. We only use this information for your intended purpose. You will not be added to the mailing list unless you signed up for the mailing list. If you sign up for an event, we will use your email address only to provide information regarding the event.
We do not pass on personal information to third parties. When we need to provide metrics (e.g. to our funder, Wellcome) about the performance of the TGMI’s outreach and engagement events, this will only be provided as summaries without personally identifiable information.
Photos taken at TGMI events may be used on our public website, but we will ensure to only include people who have given permission for their image to be included.
How we protect your data
We monitor and protect the TGMI site using Wordfence, which notifies us in case of a breach. If there is a risk of your data being breached, we will notify you as soon as possible. Offline backups of our website (which may include your data if you have left a comment on our website) are securely stored on password-protected computers and are deleted after one year.
Where your data is held
Some of the data we may have on you is held by data processors, as described below. To the best of our knowledge, all these data processors are themselves GDPR-compliant.
- Our webhost – We use a third party web-host based in the USA.
- Google Analytics – tracks all site visitors, but does not receive personal data.
- MailChimp – sends weekly emails that you can opt-in to. Each email sent via MailChimp includes an unsubscribe link so you remain in control.
- Eventbrite – We use this site to keep track of attendance at events. To help events run smoothly, we may print a physical copy of the attendance list to use during the event.
If you have any questions about the data we hold on you, you can contact us by emailing firstname.lastname@example.org