Legal information

CENUP (Department of Chemistry, Molecular Sciences Research Hub, 82 Wood Lane, London W12 0BZ, United Kingdom) is the controller for personal data processed via this website.

Contact: l.barter@imperial.ac.uk.

• Contact form / email enquiries: name, organisation, email address, reason for enquiry and any information you choose to include in your message.
• Server log data: IP address, browser type and version, operating system, referrer URL, date/time of access. Logs are kept by our hosting provider for security and abuse prevention purposes.
• Cookies & similar technologies: see our Cookie Policy.

We do not knowingly collect special category data and we do not collect personal data from children.

• Responding to enquiries - Art. 6(1)(b) UK/EU GDPR (steps prior to entering a contract) and Art. 6(1)(f) (legitimate interest in operating our business communications).
• Operating and securing the website - Art. 6(1)(f), legitimate interest in providing a stable, secure service.
• Optional analytics and marketing cookies - Art. 6(1)(a), your consent (which you can withdraw at any time).
• Compliance with legal obligations - Art. 6(1)(c).

We may share personal data with:

• Our hosting and infrastructure providers (acting as processors).
• Email and productivity providers we use to communicate with you.
• Professional advisors (legal, accounting) where strictly necessary.
• Public authorities, where required by applicable law or to defend our legal rights.

We do not sell personal data.

Some of our service providers may process personal data outside the UK or the EEA. Where this happens, we rely on appropriate safeguards such as the UK International Data Transfer Agreement (IDTA), the UK Addendum to the EU Standard Contractual Clauses, or an adequacy decision adopted by the UK Government or the European Commission.

We keep personal data only for as long as necessary for the purposes set out above. Enquiry correspondence is typically retained for up to 24 months after the last contact, unless a longer period is needed to comply with a legal obligation or to defend a legal claim. Server logs are typically retained for up to 30 days.

Subject to the conditions set out in UK and EU data protection law, you have the right to:

• access the personal data we hold about you;
• request rectification of inaccurate or incomplete data;
• request erasure of your data ("right to be forgotten");
• request restriction of processing;
• object to processing based on legitimate interest;
• data portability;
• withdraw any consent you have given, at any time, without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at l.barter@imperial.ac.uk.

If you believe our processing of your personal data infringes data protection law, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO, ico.org.uk) or, if you are in the EEA, with your national data protection authority.

We implement appropriate technical and organisational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.

We may update this policy from time to time. The current version is always available on this page, with the "last updated" date below.