The Privacy Policy of the Dag Hammarskjöld Foundation defines how to protect a person’s privacy according to the EU General Data Protection Regulation (GDPR). The Privacy Policy is published on the Foundation’s website. The Board and staff of the Foundation, as well as contracted advisors, consultants and partners of the Foundation, are obliged to adhere to the guidelines set forth in this policy.
This Privacy Policy was adopted by the Board of Trustees on 26 October 2018.
- Introduction
The Dag Hammarskjöld Foundation, hereinafter the Foundation, with organisation registration number 902000-7630 and registered domicile in Uppsala, Sweden, is committed to protecting your privacy.
The Foundation, as data controller, is responsible for the processing of your personal data under applicable data protection laws and regulations, including the EU General Data Protection Regulation (GDPR).
The Foundation commits to have appropriate and reasonable organisational, technical and administrative measures in place to protect your personal data. This includes, but is not limited to, IT security procedures, GDPR staff training and appropriate agreements with service providers and partners.
This Privacy Policy describes how the Foundation collects, processes and uses your personal data. It applies to all personal data collected by or submitted to the Foundation, whether offline or online, including via the Foundation’s registered websites and their mobile versions (the ‘Websites’), applications, widgets and other mobile interactive features (the ‘Applications’), or via the Foundation’s blog and social media platforms in the Foundation’s account name (the ‘Social Media’). By submitting information to the Foundation or by browsing the Websites, or by using the Applications or Social Media, you consent to the measures set forth herein.
- How the Foundation collects and uses your personal data
The Foundation, or its partners and authorised service providers, may collect your personal data;
- When you subscribe to the Foundation’s newsletter
Your e-mail address (while submitting your name is voluntary), and certain technical data are collected in order to send you the newsletter. The newsletter is distributed through the Foundation’s service provider Mailchimp that uses beacons, which contain information from you when you open your e-mail, such as IP-addresses, web browser and statistics. The Foundation only uses this technical data in the form of aggregated and generalised statistics in order to analyse the scope of the newsletter. You sign up for the newsletter on the Foundation’s Website, which requires your consent to the Foundation’s processing of your personal data. You can unsubscribe from the newsletter at any point by clicking on the unsubscribe link or by contacting the Foundation.
- When you order publications, dialogue papers or other reports
Your contact details (such as e-mail, name and postal/billing address) are collected in order to provide you with the requested material.
- When you register to attend events, lectures or seminars
Your contact details (such as name, e-mail and eventual preferences) that you disclose are collected to accommodate your needs and provide related services to you in this respect. The Foundation at times encourages you to fill out evaluation forms (which may include your personal data) in order to assess the usefulness and impact of the Foundation’s seminars and trainings.
- When you use the Websites
Technical data about your equipment, browsing actions and usage pattern are collected by using cookies, server logs, Applications’ usage data and similar technologies. This data is used to tailor your browsing experience, improve the Websites and the Foundation’s communication outreach to you. Please see the Foundation’s Cookie Notice for further details of how cookies are used to operate the Websites.
- When you otherwise communicate with or contact the Foundation
Personal data and other information can be collected when you voluntarily provide this information in order to respond to your inquiries and fulfil your requests. This may include personal data in the form of your CV or personal biography to consider your application for any vacancy, moderator role or publication.
- From third parties and publicly available sources
The Foundation may receive personal data about you from third parties and other sources, such as public databases, and via Social Media such as Facebook and Twitter. For example, if you chose to connect your social media account to the Foundation’s Social Media, certain personal data from your account could thereby be shared with the Foundation.
- How the Foundation shares your personal data
The international nature of the Foundation’s work may involve sharing your personal data with entrusted and authorised third-party service providers and partners, both within and outside the EU/EEA, as necessary for the purposes outlined above. Your personal data is only shared with individuals and others on a strict need-to-know basis and will under no circumstances be shared for marketing purposes. The Foundation’s partners include co-organisers of the Foundation’s lectures, seminars and publications. The Foundation’s service providers include accountants, data storage- and Websites hosting providers.
You should be aware that many countries outside the EU/EEA do not afford the same legal protection in terms of privacy as countries within the EU/EEA. The Foundation has put appropriate safeguards in place for transfers of your personal data outside the EU/EEA, which provide adequate levels of protection including appropriate agreements or the standard data protection clauses adopted by the European Commission.
- Storage and retention of your personal data
The Foundation mainly stores and process your personal data at the Foundation’s physical office. Limited data is stored in cloud format through the Foundation’s service provider Dropbox International Unlimited Company, and certain technical data is stored by Mailchimp. For further information about storage, security measures and GDPR compliance, please visit their respective websites.
The Foundation will only keep your personal data for as long as it is necessary for the purposes for which it was collected or in accordance with time limits stipulated by law or good market practice (including for audit and bookkeeping purposes), unless further retention is necessary for compliance with a legal obligation or as requested by public and government authorities.
The Foundation archives certain information, which may include personal data such as names and photographs, in order to preserve the work of the Foundation for research purposes viewed to be of public interest, in accordance with applicable law.
- Sensitive Data
The Foundation generally asks that you do not send and do not disclose any sensitive personal data, such as information related to racial or ethnical origin, health or medical condition, political opinion, religious or philosophical beliefs or trade union membership. In exceptional circumstances, should this information be required, the Foundation will ask for your explicit consent thereto and inform you how you can do this securely.
- External links and third-party sites
The Foundation’s Websites contain links to external sites. The Foundation is not responsible for the privacy practices or content of such sites. Further, the Foundation may provide you access to third party functionality through Social Media or Applications that allow you to register for an event, participate in chats, post comments or in other means share content. Any and all information provided by you, including any personal data disclosed by you to other organisations (such as Facebook, LinkedIn, Google, Twitter or an Application developer) will be subject to that third party’s applicable privacy policy. The Foundation has no control over and is not responsible for any third party’s use of data provided by you in connection with Social Media or Applications.
- Your Rights
You have the right to:
- Obtain a copy of the personal data that the Foundation holds about you;
- Rectify or erase your personal data (e.g. if you think your data is inaccurate or out-of-date);
- Restrict the processing of your personal data or otherwise object to the Foundation’s processing of your data;
- Request portability of your personal data;
- Lodge any complaint you may have regarding the Foundation’s processing to the Data Protection Authority.
- Changes to the Privacy Policy
This Privacy Policy is effective as of 25 May 2018 and may be updated on a needs-basis, which is why you are encouraged to review it from time to time. The Foundation endeavours to communicate any significant changes to this Privacy Policy to you as soon as practically possible via e-mail, the newsletter, and/or by prominent display on the Foundation’s Website.
- Contact the Foundation
If you have any questions or complaints about this Privacy Policy, or inquiries about your personal data, you may contact the Foundation at:
Dag Hammarskjöld Foundation
Övre Slottsgatan 2
SE-753 10 Uppsala, Sweden
E-mail: secretariat@daghammarskjold.se
Telephone (Karin Sandell, Head of Communications): +46 (0)76-541 10 04