For Publishers
Discovery Metadata Peer review Hosting Publishing
For Researchers
Join Publish Review Collect
Blog
About
 Search
Advanced search
Search
For Publishers
For Researchers

DrugRepoCentral Privacy Policy

*

 

 

Privacy Policy

Privacy declaration for the site Drug Repurposing Central run by ScienceOpen

The information in this declaration applies to the processing of personal data on our website and is intended to inform you of the extent of processing, the purposes of processing, the recipients, legal bases, storage periods and your rights. Personal data are all information relating to an identified or identifiable person (hereinafter also referred to as “data subject”), for example your name, your address or your e-mail address. “Processing” of personal data means any operation performed on personal data; in particular the collection, storage, use and transmission of such data.

I. Name and Address of the controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is:

ScienceOpen GmbH
Pappelallee 78/79
10437 Berlin
Germany
Phone +49-30-609-8490-277
info@scienceopen.com

https://drugrepocentral.scienceopen.com/

https://www.scienceopen.com

 

Data Protection Officer: Prof. Dr. Alexander Grossmann

alexander.grossmann@scienceopen.com

II. General information on data processing

1. Legal basis for the processing of personal data

Insofar as the data subject has given consent to the processing of his or her personal data for one or more specific purposes, legal basis is Art. 6 para. 1 lit. a GDPR.

Insofar as the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract, legal basis is Art. 6 para. 1 lit. b GDPR.

Insofar as the processing is necessary for compliance with a legal obligation to which the controller is subject, legal basis is Art. 6 para. 1 lit. c GDPR.

If processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, legal basis is Art. 6 para. 1 lit. f GDPR.

2. Data erasure and storage time

The personal data of the data subject will be erased or processing restricted as soon as the purpose of storage ceases to apply. In certain cases, data can be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the data controller is subject.

After the data subject has registered on the platform, created a profile and agreed to the storage of their personal data (see section V.4), their data will be stored indefinitely until they specifically ask for it to be erased.

If the data subject has agreed to the use of essential cookies required for the performance of the website (see section IV.4), that data will not be retained for more than 12 months.

If the data subject has agreed to the use of analytics cookies by a 3rd party provider (see section VII.4), that data will not be retained for more than 13 months.

III. Provision of the website and creation of log files

1. Description and extent of data processing

Every time you visit our website, our system automatically collects data and information from the computer system of the accessing device (computer, smartphone, tablet, etc.).

The following data is collected:

  • Information about the browser type and version used
  • The operating system of the accessing device
  • The IP address of the accessing device
  • Date and time of access
  • Websites from which the system of the accessing device reaches our website

The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

2. Legal basis for data processing

Legal basis for the temporary storage of data and log files is our legitimate interest to fulfill the purpose specified below (Art. 6 para. 1 lit. f GDPR).

3. Purposes of data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s device. For this the IP address of the user must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. In addition, the data serves us to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

Our legitimate interest in processing the data also lies in these purposes.

4. Storage time

The data will be erased as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

If the data is stored in log files, this will happen after seven days at the latest.

IV. Usage of Cookies

Description and extent of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. If a user visits a website, a cookie may be stored on the user’s device. A cookie contains a characteristic character string that enables a unique identification of the browser when the website is called up again.

The following data is stored and transmitted in the cookies:

  • User authentication information
  • User interface settings

2. Legal basis for data processing

The legal basis for the processing of personal data using cookies is our legitimate interest to fulfill the purpose specified below (Art. 6 para 1 lit. f GDPR).

3. Purpose of data processing

The purpose of using cookies is to simplify the use of our website for users. Some functions of our website cannot be offered without the use of cookies. For this it is necessary that the browser is recognized even after a change of pages within our internet presence. The cookies are not used to create user profiles.

We need cookies for the following applications:

  • Log-in function
  • User interface configuration

In these purposes is also our legitimate interest in the processing of personal data.

4. Storage time

Cookies are stored on your device with which you access our website and are transmitted to our site. Therefore, you as a user also have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be erased at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website.

The following essential cookies (global ScienceOpen cookies) are required for performance:

Cookie name Retention time
initXss Session duration
cookiesAccepted 12 months

V. Registration

1. Description and extent of data processing

On our website, we offer users the opportunity to register by providing personal data. The data is entered into an input mask and transmitted to us and saved. The data will not be passed on to third parties. The following data is collected during the registration process:

  • Name
  • E-mail address
  • Password

You can also register with an account at Facebook, Linkedin or Orcid. Then these companies will transfer to us the aforementioned data. If you have registered with your full name, also this will be transferred to us.

At the time of registration, the following data is also stored:

  • The IP address of the user
  • The date and time of registration

2. Legal basis for data processing

The legal basis for the processing of data is Art. 6 para. 1 lit. b GDPR.

3. Purpose of data processing

A registration of the user is necessary for the user to participate on the website www.scienceopen.com and its subsidiary website www.drugrepocentral.scienceopen.com and to generate content on the site (publications, reviews, comments, etc.).

At the registration step, the user and ScienceOpen conclude a contract for the use of the Website ScienceOpen.com, subsidiary DrugRepoCentral.ScienceOpen.com and its services (more details in the terms of use of ScienceOpen Platform). The personal data provided are used to identify the user by creating a user account. The creation of the user account enables the user to participate on the website ScienceOpen.com and all of its subsidiary websites and generate content on the site(s).

4. Storage time

The data will be erased as soon as the purpose of its collection is no longer given. For the data collected during the registration process, this is usually the case when the user contract is terminated and the user’s account is erased.

If data is collected in the course of the registration which we are obliged to store due to tax, commercial law or other regulations, it will not be erased until the respective legal retention or storage periods have expired. The legal basis for this data storage is Art. 6 para. 1 lit. c GDPR.

5. Possibility of opposition and elimination

As a user you have the possibility to cancel the registration and delete your account at any time. Write us a message at the following address:

E-mail: support@scienceopen.com

If the data is required to fulfil a contract or to carry out pre-contractual measures or if there are legal storage obligations, premature erasure of the data is only possible insofar as contractual or legal obligations do not prevent erasure. If erasure is not possible, processing may be restricted.

VI. Notifications

1. Description, extent and purpose of data processing

When registering for an account you also have the possibility to give your consent to receive notifications by e-mail. We will then use your stored e-mail-address to send you information about what is happening on your account. You will receive notifications via e-mail in the following cases. If further e-mail notification types are developed, a corresponding option to opt-out from such notifications will be developed in parallel:

  • You receive invitations on ScienceOpen
  • Comments are posted to your ScienceOpen article
  • Reviews are posted to your ScienceOpen article
  • Someone follows you on ScienceOpen
  • When there is a Collection event on ScienceOpen
  • New postings to the ScienceOpen blog
  • New ScienceOpen feature tutorials
  • Your monthly ScienceOpen impact

2. Legal basis for data processing

The legal basis for the processing of data is your consent (Art. 6 para. 1 lit. a GDPR).

3. Storage time and revoke of consent

You have the possibility to unsubscribe from notifications via e-mail at any time and thus to revoke your consent, e.g. via the corresponding settings in your customer account or via the corresponding links which you will find at the end of each notification e-mail.

If you revoke your consent, we will no longer use your data to send you notifications. However, we will store your e-mail address and the proof of your consent for a period of three years starting at the end of the year in which we last sent you notifications via e-mail before your revocation, so that we can prove the consent in the event of a dispute. We will subsequently erase the data unless we need it for other purposes stated in this declaration, e.g. because you still have a customer account with us.

VII. Requests by E-Mail

1. Description and extent of data processing

It is possible to contact us via the e-mail address provided on our website. In this case, the user’s personal data transmitted via e-mail will be stored.

2. Legal basis for data processing

The legal basis for the processing of the data is our legitimate interest to fulfill the purpose specified below (Art. 6 para. 1 lit. f GDPR).

3. Purpose of data processing

Purpose of data processing is the handling of requests and other questions. The processing of personal data serves us solely to handle the contact approach or application. This is also our legitimate interest in the processing of the data.

4. Storage time

The data will be erased as soon as the purpose of its collection is no longer given. For the personal data that were sent by e-mail, this is the case when the respective conversation with the user is finished. The conversation is finished when the circumstances indicate that the matter in question has been solved. The e-mail thread will be deleted at the latest after 6 months to ensure that the issue has been resolved.

If data is collected in the course of e-mail communication which we are obliged to store due to tax, commercial law or other regulations, it will not be erased until the respective legal retention or storage periods have expired. The legal basis for this data storage is Art. 6 para. 1 lit. c GDPR.

VII. Webanalysis with Matomo Analytics

1. Description and extent of data processing

Our website uses Matomo Analytics, a web analysis service of InnoCraft Ltd, 7 Waterloo Quay PO625, 6140 Wellington, New Zealand. Matomo Analytics uses Cookies, which are text files placed on users’ computers, to help the website analyze how users use the site. The information generated by the cookie about the use of the website by users is transferred to a Matomo cloud server in the EU and stored there.

InnoCraft uses the following subprocessors to process the data collected by Matomo Cloud customers:

Subprocessor Data location and security Service
Oblivion Cloud Control B.V (Xebia) based in the Netherlands Europe (Frankfurt and Dublin) Secure infrastructure for servers and databases and logs hosted in Frankfurt, Germany. Offsite backups are stored in Dublin, Ireland. This service is provided by AWS Europe, and all data is hosted in Europe.
Oblivion Cloud Control B.V (Xebia) based in the Netherlands Worldwide Secure CDN (Content Delivery Network) to store and deliver JavaScript files. This service is provided by AWS Europe. The use of the CDN feature is optional and can be disabled. No personal data is collected or stored by our CDN. Visitors are sent to a server closest to their region meaning for example traffic from EU people stays in the EU.

Please refer to the Matomo Cloud Data Processing Agreement for more information: https://matomo.org/matomo-cloud-dpa/

Matomo Cloud Terms & Conditions: https://matomo.org/matomo-cloud-terms-of-service/2.

2. Legal basis for data processing

The legal basis for processing users’ personal data is our legitimate interest to fulfill the purpose specified below (Art. 6 para. 1 lit. f GDPR).

3. Purpose of data processing

The processing of user data by Matomo Analytics enables us to analyze the usage behavior of our users. We are able to compile information about the use of the individual components of our website by evaluating the data obtained. This helps us to continuously improve our website and its user-friendliness. In these purposes also lies our legitimate interest in the processing of the data. By anonymizing the IP address, users’ interest in protecting their personal data is sufficiently taken into account.

4. Storage time and possibility of objection

Cookies are stored on the user’s device and transmitted to our site from there. Users must actively opt-in to allowing analytics Cookies. This consent can be revoked from the website at any time. Therefore, you as a user have full control over the use of cookies. You can further deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be erased at any time. Matomo Analytics cookies are stored for the following periods of time: .

Cookie name Retention time
_pk_id.2.1a2e 13 months
_pk_ses.2.1a2e 30 minutes

You can opt-out of data collection by Matomo Analytics when first opening the website. You can change your consent and opt-out of analytics cookies at any time by clicking on the link provided on the website. An opt-out cookie is set to prevent future collection of your data when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you erase the cookies in this browser, you must set the opt-in or opt-out cookie again.

Further information on terms of use and data protection can be found at:

https://matomo.org/matomo-cloud-privacy-policy/

https://matomo.org/matomo-cloud-terms-of-service/

5. Recipient of the data and transfer to a third country

Notice on data transfer and GDPR compliance: While 100% of data and backups for Matomo Analytics are securely stored in Europe, the company is based in New Zealand. New Zealand is one of the few countries that the EU considers to have an adequate level of data protection. This provides legal certainty for Article 44 GDPR that the data does not go to a third country like the US even though we are using AWS. Because no personal data is transferred to third countries, no SCC’s are needed.

This means that Matomo Cloud is safe to use in the EU and fully GDPR-compliant.

VIII. Other recipients of data

For the provision of our website and the offered contact possibilities, we make use of other service providers who process the data stored by them exclusively on our behalf as processors according to Art. 28 GDPR.

Service Required
cloudflare.com MathJax helps to show mathematical formulas in TeX. Doesn’t use any personal data.
cloudfront.net Required for the Altmetric badge

IX. Rights of the data subject

If your personal data are processed, you are a data subject within the meaning of the GDPR and you have the following rights against the controller (in the case of the fulfilment of further conditions regulated in the relevant regulations, if applicable):

  • The right of access according to Art. 15 GDPR
  • The right to rectification according to Art. 16 GDPR
  • The right to erasure (“right to be forgotten”) according to Art. 17 GDPR
  • The right to restriction of processing according to Art. 18 GDPR
  • The right to a notification according to Art. 19 GDPR
  • The right to data portability according to Art. 20 GDPR
  • The right to object according to Art. 21 GDPR
  • The right not to be subject to a decision based solely on automated processing according to Art. 22 GDPR
  • The right to withdraw consent to the processing of personal data according to Art. 7 para. 3 GDPR

To assert these rights, please contact our data protection officer., Alexander Grossmann, alexander.grossmann@scienceopen.com.

Without prejudice to any other administrative or judicial remedy, you also have the right to lodge a complaint with a supervisory authority, in particular in the Member State where you are staying, working or suspected of infringing, if you believe that the processing of personal data concerning you infringes the GDPR.

Join for FREE
and become part of the ScienceOpen network