For the sake of clarity we distinguish between our users (click on the link to navigate to the right section):
You actively make use of Scitodate's services as an Client.
General information about Scitodate's data security.
Information about cookies on Scitodate's own websites.
Scitodate’s contact information.
How does Scitodate use Data for its services?
Scitodate offers its Clients the service. Scitodate services offers visualisation or identifying academic entities operating in a specific field of expertise (hereinafter: Academic entity data). Scitodate aggregates scientific data (e.g. scientific articles) from openly accessible sources.
Due to the very limited privacy aspect (openly published data), no direct contact to the subject and the fact that Scitodate needs this data for its services, Scitodate invokes justifiable interest within the GDPR as the lawful bases for processing.
This anonymous data concerns; Article title, Article abstract, Article body (when available), Publication date, Affiliations, Keywords. This data is gathered from open access sources and publicly available.
In addition to the anonymous data, Scitodate handles names of authors and their professional contact information from the openly accessible and published scientific articles or from other openly accessible sources.
For data processing in regards to our services for our Clients we have drawn up a standard processor agreement. This can be read here.
Location of the data
For its service, Scitodate hosts all data of its customers on its own (assigned) servers within Europe and does not use cloud services located outside of Europe.
Right to access
Do you wish to have access to the data that Scitodate has stored from you? You can submit a request for this. Read here how to do this.
Right to be forgotten
Do you wish to execute your right to be forgotten from Scitodate services? You can submit a request for this. Read here how to do this.
You actively use Scitodate's service as A Client
The application form on Scitodate's websites requires Clients to provide contact information (such as name and address), to provide Scitodate with unique identifiers (a password). Scitodate uses this information so that they can provide their services and to provide Clients with information about their services. If necessary, the information is also used to come into contact with the Clients. Unique identifiers are used to determine identity when logging into the personal account within the Scitodate system. Passwords are automatically encrypted and cannot be viewed by Scitodate. Information is transferred exclusively over secure SSL connections.
Personal information collected shall only be used by Scitodate for the objectives described above. Personal information shall not be provided or sold to unauthorized third parties. All personal information is optimally secured and treated with the utmost care by Scitodate. This information is also only available internally to persons for whom access is essential to the performance of their tasks.
Scitodate does store the time and IP address of the login details in order to ensure safety. This is explicitly mentioned in Scitodate's General Terms and Conditions. Clients are obliged to sign a contract with Scitodate before they get access to the Scitodate Network.
Scitodate is convinced that behavior of people is the utmost important part of data security. Scitodate staff is well informed about the rules for data security. There is a special policy for incoming data, and there is a security and escalation protocol. On a regular basis, the data policy is again brought to attention to the Scitodate staff. The data policy is also officially included in the Scitodate's terms of employment. On a senior level, a data officer is responsible for the above mentioned policy.
The second - very important - part of data security at Scitodate, is that Scitodate saves the least amount of data as possible (privacy by design).
Scitodate has an advanced right management system, that ensures that only authorized personnel on a certain level can access private data.
Scitodate aims to secure their systems in the best possible manner. Scitodate has standard procedures for the commissioning of new software. This must ensure only save software is taken into use.
The Scitodate servers are being managed within the European Union by external hosting providers. These are ISO 9001 and ISO 27001 certified, among other standard security certifications.
Cookies on Scitodate websites
Website analysis Google
Website analysis Squarespace
This website is hosted by Squarespace, a complete web hosting package which includes basic analytics of page views and visits. This gives Scitodate the opportunity to analyse their website and to improve it. The data is only used for the purpose of improving the website. The data is not shared with others, and within Scitodate's organisation only a limited amount of people have access. The cookies do not contain personal data. The used tool is configured in such manner that it does not save personal data.
Website analysis LeadFeeder
Scitodate B.V. has its head office at: De Boelelaan 1081, 1081 HV Amsterdam, the Netherlands.