This privacy policy explains what information we gather and hold about you and how you can advise us if you want your information changed or removed.

This statement applies to the Institute for Sustainable Leadership (ISL) and its web site.

“We” and “us” and “our” means the Institute for Sustainable Leadership and trusted contractors who assist us with our services, web site, marketing and event preparation.

Why, where and how we collect your personal information

We gather and keep personal information about you for our legitimate interests and to provide you with information about our activities.

We collect personal information about you:

– When you email us

We keep your name and email address to respond to your enquiry.
This is held on individual computers owned by us.
We may keep these details for reference purposes only.

– When you fill in a form on our website

We gather the information given by you on the form. (Comprising your name, title, email address, organisation, country, date you completed the form, and other solicited information you agree to supply to us)

By completing the form, you have given us consent to use the information you give us to send you an email newsletter.
Your information is kept on a database hosted by Mailchimp (www.mailchimp.com), an email marketing service. Mailchimp implement and maintain appropriate technical and organisational security measures that are designed to protect your data from security Incidents and designed to preserve the security and confidentiality of your data. You can see their Data Processing Addendum to their Terms and Conditions here: https://mailchimp.com/legal/data-processing-addendum/

We do not pass this information onto anyone else.

– When you open or click on any email newsletters we send you

Information about when you opened the newsletter, the location of your internet service provider (country only) and the links you clicked on are recorded by Mailchimp to give us information on what you found interesting or useful.
This data is only accessible to ISL and trusted contractors and is not downloaded or kept anywhere else or given to anyone else.

– When you register interest in attending one of our events (such as conferences, seminars or study tours) or online courses

We hold the information you give us for these products only to contact you about the product.

You may provide us with sensitive information about your health, mobility or dietary needs for the purposes of enhancing your experience at our events. This information will be shared with the event venue and is only used for this purpose, and will be deleted within 10 months after the event takes place.

If you submit a paper for presentation at one of our conferences, you will register on the Conftool submission system (www.conftool.com). They are based in Germany.
The data held here is only accessible by us, and for the purposes of managing the papers and your attendance at the event.
The suppliers of Conftool may see your data if they need to fix a problem in the system and they need to access the system to view the problem.

The contract signed with Conftool includes a confidentiality agreement.
10 months after the conference, all the data is deleted from Conftool. Just before the deletion, we receive this data in a .csv format file and keep it on one of our computers as a record of the conference to help us plan for future events.

We note in Mailchimp which conference you have attended.

– When you make a purchase on this web site

You provide billing information including name, address and credit card information so that we can process payment to deliver our products or services to you under our contractual obligation. We do not store this information ourselves.
We only use third party payment gateways such as Stripe, PayPal, etc. that take the utmost care in securing data and comply with the GDPR (The General Data Protection Regulation).

Other information

Anonymous data collection and use

To maintain our web site, we may use your IP address to help diagnose problems with our server and to administer the web site by identifying which areas of the web site are most heavily used, and to display content according to visitor preferences. Your IP address is the number assigned to computers connected to the internet. This is essentially “traffic data” which cannot personally identify you, but is helpful to us for marketing purposes and for improving our services. Traffic data collection does not follow a user’s activities on any other websites in any way. Anonymous traffic data may also be shared with business partners and advertisers on an aggregate basis that cannot identify you.

Use of “Cookies”

We may use the standard “cookies” feature of major web browsers. We do not set any personally identifiable information in cookies, nor do we employ any data-capture mechanisms on our web site other than cookies. You may choose to disable cookies through your own web browser’s settings. However, disabling this function may diminish your experience on our web site and some features may not work as intended.

We do not collect any information as a result of you following us or posting comments on Twitter or LinkedIn.

If you buy a book from Book Depository store, via a link on our web site, then they will collect information about you – see their privacy policy at: https://www.bookdepository.com/help/topic/HelpId/20/Our-privacy-policy#helpContent

We receive purchase figures from them, but no personal identifying details.

Viewing by others

Note that whenever you voluntarily make your personal data available for viewing by others online through this web site or its content; where it may be seen, collected and used by others; we cannot be responsible for any unauthorised or improper use of the information that you voluntarily share (e.g., sharing a comment on a post, sharing details on a group coaching call, etc.).

Submission, storage, sharing and transferring of personal data

Personal data that you provide to us is stored internally or if you sign up to one of our online courses, through a data management system. Your personal data will only be accessed by those who help to obtain, manage or store that information, or who have a legitimate need to know such personal data (i.e., our hosting provider, newsletter provider, payment processors or team members).

It is important to note that we may transfer data internationally. For users in the European Union, please be aware that we transfer personal data outside of the European Union. By using our web site and providing us with your personal data, you consent to these transfers in accordance with this privacy policy.

Data retention

We retain your personal data only for as long as is necessary in order to be able to efficiently manage our relationship with you or if required for legal, contractual and accounting obligations.

Confidentiality

We aim to keep the personal data that you share with us confidential. Please note that we may disclose such information if required to do so by law or in the good-faith belief that: (1) such action is necessary to protect and defend our rights or property or those of our users or licensees, (2) to act as immediately necessary in order to protect the personal safety or rights of our users or the public, or (3) to investigate or respond to any real or perceived violation of this privacy policy or of our disclaimer, terms and conditions, or any other terms of use or agreement with us.

Passwords

To use certain features of the web site or its content, you may need a username and password. You are responsible for maintaining the confidentiality of the username and password, and you are responsible for all activities, whether by you or by others, that occur under your username or password and within your account. We cannot and will not be liable for any loss or damage arising from your failure to protect your username, password or account information. If you share your username or password with others, they may be able to obtain access to your personal data at your own risk.

You agree to notify us immediately of any unauthorised or improper use of your username or password or any other breach of security. To help protect against unauthorised or improper use, make sure that you log out at the end of each session requiring your username and password.

We will use our best efforts to keep your username and password(s) private and will not otherwise share your password(s) without your consent, except as necessary when the law requires it or in the good faith belief that such action is necessary, particularly when disclosure is necessary to identify, contact or bring legal action against someone who may be causing injury to others or interfering with our rights or property.

Security

We take commercially reasonable steps to protect the personal data you provide to us from misuse, disclosure or unauthorised access. We only share your personal data with authorised third parties who use the same level of care in processing your personal data. Whilst we cannot ensure or guarantee that loss, misuse or alteration of information will never occur, we use all reasonable efforts to prevent it.

You should bear in mind that submission of information over the internet is never entirely secure. We cannot guarantee the security of information you submit via our website whilst it is in transit over the internet and any such submission is at your own risk. If we become aware of a data breach, we will inform you immediately.

Data controller and processors

We are the data controllers as we are collecting and using your personal data. We use trusted third parties as our data processors for technical and organisational purposes, including for payments and email marketing. We use reasonable efforts to make sure our data processors are GDPR-compliant.

Targeted Social Media Advertisements

We may use the data you provide to us to run communication campaigns such as social media advertisements and / or create look-alike audiences for advertisements within the parameters specified above. We will not disclose personal information about you that would identify you to third parties.

How you can access, update or delete your personal data

You have the right to:

  1. Request information about how your personal data is being used and request a copy of what personal data we use.
  2. Restrict processing if you think the personal data is not accurate, unlawful, or no longer needed.
  3. Rectify or erase personal data and receive confirmation of the rectification or erasure. (You have the “right to be forgotten”).
  4. Withdraw your consent at any time to the processing of your personal data.
  5. Lodge a complaint with a supervisory authority if you feel we are using your personal data unlawfully.
  6. Receive personal data portability and transference to another controller without our hinderance.
  7. Object to our use of your personal data.
  8. Not be subject to an automated decision based solely on automatic processing, including profiling, which legally or significantly affects you.

You can unsubscribe yourself at any time from our newsletters by clicking the “unsubscribe” link at the bottom of the email.

If you want to find out what data we hold about you or want to make changes or remove it, please contact us.

Use of any personal information or contribution that you provide to us, or which is collected by us on or through our web site or its content is governed by this privacy policy. By using our web site or its content, you consent to this privacy policy, whether or not you have read it.

We can remove any or all data we hold about you at our discretion.

Last updated: 12 February, 2021.