EHSU Business & Entrepreneurship Society

About Enterprise Index Vacancy Portal Contact

Privacy Policy

Effective Date: June 5, 2025

Table of Contents

  1. Introduction
  2. Data Controller and Contact Information
  3. Information We Collect
    3.1. Personal Data
    3.2. Non-Personal Data and Technical Information
    3.3. Cookies and Similar Technologies
  4. How We Collect Your Information
  5. Use of Your Information
  6. Legal Bases for Processing
  7. Disclosure and Sharing of Information
  8. Data Retention
  9. Data Security
  10. International Data Transfers
  11. Your Rights and Choices
  12. Children’s Privacy
  13. Data Breach Procedures
  14. Links to Third-Party Sites
  15. Changes to This Privacy Policy
  16. Contact Information

1. Introduction

The EHSU Business & Entrepreneurship Society (“we”, “us”, “our”) values your trust and is committed to protecting the privacy of visitors and users (“you”, “your”) of our website, ehsu.business.blog (“Site”). This Privacy Policy explains our practices regarding the collection, use, disclosure, and retention of your personal data. By accessing or using our Site, you agree to the terms of this Privacy Policy and the practices described herein.

2. Data Controller and Contact Information

The data controller for the information collected via the Site is:

If you have any questions or concerns about this Privacy Policy or our data handling practices, please contact us using the details provided in Section 16.

3. Information We Collect

We collect data in various forms to ensure that we can provide you with the best possible experience on our Site. Below, we outline what information we collect and how it might be used.

3.1. Personal Data

When you interact with our Site through newsletter sign-ups, registration forms, event registrations, or direct contact, we may collect the following personal data:

  • Name
  • Email address
  • Contact numbers
  • Academic details (e.g., course of study, university affiliation) if provided voluntarily
  • Other information you choose to provide in forms or surveys

3.2. Non-Personal Data and Technical Information

In addition to Personal Data, we automatically collect non-personal data, which includes:

  • Device Information: Information about your device, including the operating system, browser type, and network data (e.g., IP address).
  • Usage Data: Information about how you navigate and interact with our Site, including page visits, time spent on pages, and click-through data.
  • Log Data: Server logs that record technical details such as time stamps, error messages, and other diagnostic information.

3.3. Cookies and Similar Technologies

We use cookies, web beacons, and other tracking technologies to:

  • Enhance your browsing experience by remembering your preferences.
  • Analyze usage trends and gather demographic information.
  • Provide tailored content and advertising.
    You may choose to disable cookies through your browser settings, but please note that some parts of the Site may not function correctly if cookies are disabled.

4. How We Collect Your Information

Our methods of collecting information include, but are not limited to:

  • Direct Interactions: When you fill out forms, subscribe to our newsletter, or contact us via email, we directly receive the information you send.
  • Automated Technologies: We use cookies, server logs, and similar technologies which automatically collect technical data about your device, browsing actions, and patterns.
  • Third-Party Sources: Occasionally, we may receive information from third-party services (such as analytics providers) to help improve our Site, provided that these third parties adhere to data protection standards.

5. Use of Your Information

Your personal data is used for several purposes, including but not limited to:

  • Providing and Managing Services: To administer registrations, send out newsletters and event notifications, and facilitate communications regarding our society’s activities.
  • Improving Our Site: To monitor user behavior, gather insights, and enhance the content and functionality of our Site.
  • Personalization: To customize your experience and display content most relevant to your interests.
  • Marketing and Communication: To send you updates, news, event invitations, and other promotional materials related to our society and student enterprise initiatives.
  • Legal Compliance: To fulfill our legal obligations and protect our rights.

We ensure that your information is only used for the purposes for which it was collected, and all data processing is conducted in accordance with applicable laws and regulations.

6. Legal Bases for Processing

We process your data under the following legal grounds:

  • Consent: When you have explicitly consented to the collection and use of your information (e.g., through newsletter sign-ups).
  • Contract: When processing is necessary to fulfill a contract with you (e.g., managing event registrations).
  • Legal Obligation: When processing is required by law.
  • Legitimate Interests: When needed to pursue our legitimate interests as an organization, provided those interests are not overridden by your personal rights and freedoms.

7. Disclosure and Sharing of Information

We do not sell, trade, or otherwise transfer your personal data to outside parties for commercial purposes. However, we may disclose your information in the following circumstances:

  • Service Providers: We may share information with trusted third-party service providers who assist us in operating our website, managing email communications, or hosting events. These providers are bound by data protection obligations.
  • Legal Requirements: If required by law, subpoena, or other legal processes, we may disclose your data to government authorities or regulatory bodies.
  • Business Transactions: In the case of a merger, acquisition, or asset sale, your information may be transferred or disclosed as part of the transaction. We ensure that any successor organization adheres to similar data protection obligations.
  • Protection of Rights: We may share information if necessary to protect the rights, property, or safety of our society, its users, or others.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The retention period may vary depending on the type of data and the context in which it was collected. When the data is no longer required, we will securely dispose of it in accordance with industry standards.

9. Data Security

We take data security seriously and implement a variety of technical and organizational measures to safeguard your information, including:

  • Encryption: Using encryption protocols (such as SSL/TLS) to protect data transmitted over the internet.
  • Access Controls: Limiting access to personal data to only those employees, contractors, and third parties who need to know that information.
  • Regular Reviews: Conducting periodic reviews and updates of our security practices to ensure the ongoing integrity and confidentiality of your data.
  • Incident Response: Having procedures in place to respond to any unauthorized access or data breaches.

While we strive to protect your personal data, no method of transmission or storage is 100% secure. You acknowledge that while we endeavor to safeguard data, we cannot guarantee its absolute security.

10. International Data Transfers

Our organization is based in the United Kingdom, and the personal data we collect will be processed in accordance with UK data protection laws. If we share your information with third parties outside of the UK or the European Economic Area (EEA), we will ensure that appropriate safeguards are in place to protect your data, such as standard contractual clauses or other legally recognized transfer mechanisms.

11. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal data, including:

  • Access: The right to request access to the personal data we hold about you.
  • Correction: The right to request that we correct or update your information if it is inaccurate.
  • Deletion: The right to request that we delete your personal data, subject to certain conditions.
  • Objection: The right to object to the processing of your data for specific reasons.
  • Restriction: The right to request that we limit the processing of your data in certain circumstances.
  • Portability: The right to receive your data in a structured, commonly used format, or to have your data transferred to another controller.

To exercise any of these rights, please contact us using the details listed in Section 16. We will respond to your request in accordance with the applicable legal timelines and guidelines.

12. Children’s Privacy

Our Site is not directed towards individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child without parental consent, we will take steps to delete the information as soon as practicable. If you believe that we have inadvertently collected data about a child, please contact us immediately using the details provided below.

13. Data Breach Procedures

In the unlikely event of a data breach, we have established procedures to:

  • Identify and Contain: Rapidly detect and assess the breach to contain its impact.
  • Notify Affected Individuals: Where required by law, notify individuals whose data may have been compromised.
  • Notify Authorities: Inform relevant data protection authorities in accordance with applicable law.
  • Review and Prevent: Conduct a post-incident review and update our security practices to prevent future breaches.

We are committed to transparency and timely communication should a data breach occur.

14. Links to Third-Party Sites

Our Site may contain links to third-party websites that are not operated by us. This Privacy Policy does not apply to those third-party sites. We encourage you to review the privacy policies of any third-party websites you visit, as we are not responsible for their data protection practices.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When significant changes are made, we will update the “Effective Date” at the top of this Policy and notify users through appropriate channels, such as a prominent notice on our Site or via email. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

16. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please do not hesitate to contact our administrator:

For further assistance regarding your privacy rights or to exercise any of your rights as detailed above, please reference the contact details provided.

By accessing and using our Site, you acknowledge that you have read, understood, and agreed to the terms outlined in this Privacy Policy. If you do not agree with our data practices, please refrain from using our Site.

This Privacy Policy is intended to offer a detailed understanding of how your personal data is handled by the EHSU Business & Entrepreneurship Society. Additional questions or specific concerns can be addressed directly through our contact channels, ensuring a transparent and secure experience for all our users.

Design a site like this with WordPress.com
Get started