Governance and policies

Source: https://www.exeter.ac.uk/research/services/governance/governance/#a5 Parent: https://www.exeter.ac.uk/about/oursite/dataprotection/request/#a4

• Governance and policies
• Research Management Capabilities
• Responsible Research Assessment

Contact

If you have any questions regarding this Privacy Notice please do not hesitate to contact us on 01392 723456 or business@exeter.ac.uk

Governance and policies

Dual assurance

Research Services' activities at the University of Exeter are overseen by Dual Assurance for Research comprising:

• Professor Krasi Tsaneva-Atanasova, Deputy Vice-Chancellor (Research and Impact)
• Malcolm Skingle, Dual Assurance Lead for Council, for Research and Impact
• Drs Astrid Wissenburg, Director, Research Services

Research and Impact Executive Committee

The Research and Impact Executive Committee is one of the University's key sovreign committees reporting to the University Executive Board. It includes the Associate Pro-Vice-Chancellors for Research and Impact who meet regularly to ensure the delivery of the Research and Impact strategy at University and faculty-level. For details of the University structure of governance please see the organisation of the University of Exeter pages.

University policies relating to Research Support

For more information please see the Research Toolkit. A full list of all University policies is available on the document and policies page in the current staff site.

Research Services Privacy Policy

The University of Exeter (the “University”) is a data controller and is committed to protecting your personal data and working in accordance with all relevant data protection legislation.

The Research Services team supports collaborations with external (non-University) partners. We will keep data about you or your organisation and the projects that you undertake with us in order to help us effectively manage our activities with you, including project management and marketing products and services.

This Privacy Notice explains how the University processes and uses the personal data we collect from individuals working with Research Services.

What data do we hold?

The University may hold data relating to you from a number of sources. The majority of data we hold on individuals or businesses is that which you provide to work/collaborate with us, attend an event or engage with us in any other way.

Our records may include:

• Contact details – for example your address, email address and telephone number (we update these whenever you tell us they have changed).
• Engagement details – for example the type of engagement you have had with us, your attendance at events, your personal contact with us, projects that you have undertaken with us, and your relationships with other University of Exeter colleagues, directorates, alumni or supporters.
• Personal details – for example disability and dietary preferences for event management purposes, career history in applications or CV/research track records, research ideas and project outlines, salary details for proposal budgets, research monitoring grades for outputs.
• Your preferences – to help us engage you in the ways most relevant to you. We may also augment data you provide with data which is publicly available.\ We are required to ensure that data we hold about you is as accurate as possible, therefore we may update your details based on reliable publicly available sources.\ For example we may update your address, telephone number or business details. We use a wide variety of sources either directly or via internet search engines, some on a subscription basis, to augment, update and validate the data we hold.

How do we use your data?

The University primarily uses your data to manage your projects with us and to communicate opportunities, products and services available through Research Services.

These can include:

• Making you aware of the products and services available
• Opportunities for collaboration
• Opportunities for  funding
• Working with you and other partners/ funders in research development, bid preparation
• Working with you and other partners/ funders in contract/agreement preparation
• Working with you and other partners/ funders on live project management, monitoring and reporting
• Analysing data about University research as a whole  to inform University strategy, policy and planning
• Sending you e-newsletters
• Inviting you to events
• Asking you to support the University by giving your time, experience or financial support
• These activities may include an element of direct marketing
• Where relevant, the data may also be made available to other departments across the University
• Where applicable under research, data held for research reasons may be shared with other Universities and further information is detailed in the Research Privacy Notice
• We may use analysis to help us identify your likely support for particular projects.

How will we share your data?

• Data may be shared with internal teams at the University of Exeter for the opportunity of collaboration or promotion of benefits and services.
• Data may be shared with internal teams at the University of Exeter to address key queries or to work collaboratively on applications, contract/agreement negotiations, live projects and other planning, policy and strategic work of the University.
• Data may also be disclosed to partner organisations who are working with us on collaborative bids, contracts/agreements, live projects and strategic activities.
• Data may also be disclosed to partner organisations such as our University networks, GW4 or SETsquared, to enable you to take advantage of invitation-only opportunities, events or activities available across the wider region.
• Data will be disclosed to funders and external evaluators as part of their grant review and award processes, research assessment evaluations and as such may be shared with independent peer reviewers via these routes
• The University does NOT sell data to third parties or allow third parties to sell on data where data is shared with them.

How do we protect your data?

Your data is held securely on secured network drives and the University’s internal Customer Relationship Management (CRM) databases.

The secured network drives and databases are accessible to a limited number of University staff.

All staff who access the secured network drives and databases have completed the University’s data protection training.

The University ensures that appropriate data sharing agreements are in place prior to sharing your personal data with any partners.

Your rights and preferences

The University may contact you by post unless you request otherwise, and by telephone, text, email or other electronic means as you have previously consented. If you no longer want to receive communications by post, telephone, text, email or other electronic means, please contact the Innovation, Impact and Business Team at 01392 723456 or business@exeter.ac.uk

When contacting us please provide your name, company name, address, email address and telephone number. Please also specify if you wish to unsubscribe from all communications or from specific communication types or channels. If you ask us to delete your data, we will remove your data from the appropriate Customer Relationship Management database.

Legal basis

The legal basis for processing your personal data for the purposes as described above is that it is necessary for the pursuit of a functions of a public nature, compliance of a legal obligation, contractual necessity or that consent has been provided by the data subject in order for them to access opportunities provided by the University, which aim to help you and your organisation to develop and thrive in accordance with the objectives of a global 100 University.

This Privacy Notice will be kept under review. Any changes will be updated on our website and communicated to you as appropriate. This Privacy Notice was last updated in April 2018.

You have the right to:

• Ask us to see, correct or delete the data we hold about you
• Object to specific data uses, as described above
• Object to receiving communications and direct marketing
• Ask for the transfer of your data electronically to a third party

The University’s Data Protection Officer is responsible for monitoring compliance with relevant legislation in relation to personal data and can be contacted at dataprotection@exeter.ac.uk, you can also contact the DPO if you have any queries or concerns about the University’s processing of your personal data. You have the right to lodge a complaint with the Information Commissioner’s Office.