Use this banner to inform your visitors of something important.
National Indian Students and Alumni Union UK (hereinafter referred to as “NISAU”) is the “data controller” for the purposes of the Data Protection Act 2018 and (from 25th May 2018), the EU General Data Protection Regulation 2016/679 (“Data Protection Law”). This means that we are responsible for, and control the processing of, your personal information.
With effect from August 11 2023, the DPDP Act 2023 shall also apply to the processing of digital personal data outside the territory of India, if such processing is in connection with any activity related to offering of goods or services to Data Principals within the territory of India (“Data Principal” means the individual to whom the personal data relates). NISAU will handle and secure any stakeholder data in compliance with the DPDP Act 2023.
NISAU UK is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and disclose your personal information in connection with the event, seminars, and webinars.
We may collect personal information such as but not limited to (non-exhaustive list) your name, title, email address, messages and responses via your email address, physical address, postal address, contact details, date of birth, etc.
This includes collecting information about yourself if you sign up to an event for NISAU by “liking”, “following”, or linking your email address to NISAU via a third-party website or network (e.g. communications network such as WhatsApp)
We may also collect your bank account details or card details to process any relevant transactions
We may also collect information about your health
We may also use images of you from our events for marketing purposes
We may also ask you for information when you report a problem with our website
If you contact us, we may keep a record of that correspondence
We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them
We may also collect information about your educational circumstances and aspirations including data related to studying abroad
Information that we obtain from you when you apply for a role at NISAU may include, subject to your prior written consent, sensitive information such as:
Racial or ethnic origin
Religious beliefs
Citizenship and Immigration status
Physical and mental health details
Commission of criminal offences and/or involvement in criminal proceedings
Information we get from your use of our website and services
In addition to cookies (for which see the section below entitled What Cookies We Use), we may also collect details about your usage of the website. Those may include, but are not limited to:
Traffic data
Location data
Weblogs and other communication data (whether this is required for our own purposesor otherwise)
The resources that you access such as our advisories, news links etc.
We may obtain some information from publicly available sources such as news articles or open postings on social media such as Facebook, Twitter, LinkedIn, YouTube, Instagram and Threads.
We use the personal information we collect for the following purposes:
To communicate with you about events, seminars, webinars and related matters;
We may also collect your bank account details or card details to process any relevant transactions.
We may also collect information about your health for the Covid-19 purpose or any other purpose as required for specific events, seminars, and webinars.
To provide you with information about future events or opportunities;
Mandatory / Regulatory processing (Attendance register, other relevant certifications) and administrative tasks
We may share your personal data with third parties for the following purposes:
o To organize eventsor activities in partnership with another organization.
o To provide services or products that you have requested.
o To communicate with you about services or products you may be interested in such as but not limited to your contact details being shared with universities or other organisations at the sole discretion of the NISAU.
To ensure that content from our website is presented in the most effective manner for you and for your computer
To comply with our legal obligations;
For any other purpose with your consent.
To undertake public relations activities;
To keep a record of your relationship with us;
To process your payments for any events / activities / donations;
Mandatory / Regulatory processing (Attendance register, other relevant certifications) and administrative tasks;
To administer the volunteering arrangement where you volunteer with us; and
To provide you with information, products, or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.
to notify you about changes to our service
to carry out in-house research and analysis, for example data mining, marketing statistics etc.
to monitor customer traffic patterns, website usage and related website information in order to optimize your useof our website; data collected in this way will be aggregated and anonymized and passed to a reputable third- party, but these statistics will include no information personally identifying you.
You can opt out of your data being used for any of the above purposes of use by contacting us directly through the email address provided in the Contact section below.
We may disclose your personal information to our volunteers, contractors, partners, sponsors and service providers who need to know the information to perform their duties. We may also disclose your personal information as required by law or in response to a legal process.
The legal basis for processing your personal information is “legitimate interests”. Under “legitimate interests” we can process your personal information if: we have a genuine and legitimate reason to carry out our activities and conduct events.
From time to time, we may send electronic copies of advisories and other material to some of our contacts. The e- mail software that we use to send this material might allow us to collect information about which contacts have received and opened our e-mails. It does so by tracking when images and links contained in each email are retrieved and clicked on respectively. We might collect this information to monitor and improve the effectiveness of the material we send by email. You are able to block the collection of this information by adjusting your e-mail software’s privacy settings to prevent the automatic downloading of images (although if you do, some or all of an email’s content may be unavailable unless you manually select to download images in that email) and by choosing not to click on the links. You can update your preferences or unsubscribe at any time by clicking on the relevant links at the bottom of each of our emails. You can update your preferences or unsubscribe at any time by clicking on the relevantlinks at the bottom of each of our emails.
Section 16 (1) of the DPDP Act 2023 permits personal data to be freely transferred to such countries or territories outside India, except those countries notified by the Central Government. Therefore, NISAU UK is permitted to transfer data of Indian data principals to the UK whenever necessary, until such time as the UK is blacklisted by the Indian government.
We will use and store any personal data we collect in accordance with the General Data Protection Regulation (GDPR) under the Data Protection Act 2018 and the Digital Personal Data Protection Act 2023. Your rights include:
Withdrawing your consent
You have the right to ask us not to process your personal data for marketing and donation request purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes. You may opt out of your personal data being used for direct marketing purposes by contacting us team@nisu.org.uk.
Our website may, from time to time, contain links to and from external websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Accessing and managing your personal information
The right to request a copy of your personal data which NISAU holds about you. You can make a request for accessfree of charge. Please make all requests for access via our email address provided below, and provide us with evidence of your identity. We will provide access without delay, and at latest, within one month of receipt of your request. However, if you have numerous or complex requests, we can extend the deadline by two months. If there issuch a delay, we will notify you within a month of receipt of the request, providing the reasons for its delay.
You also have the following rights:
to request us to erase your Personal Data;
to request us to correct or change any personal data if it is found to be inaccurate or out-of-date; and
to request us to restrict our processing of your Personal Data; and
to object to the way in which we are dealing with and processing your Personal Information.
Should you wish to exercise these rights, we will require you to prove your identity with two pieces of approved identification. We want to also make sure that your personal information is accurate and up to date. You may ask usto correct or remove information you think is inaccurate.
If you are not happy with the way in which we have processed or dealt with your information, you can complain to the Information Commissioner Office (ICO)/Data Protection Board of India.
When you visit this website a small text file known as a cookie may be downloaded to your computer. This allows usto provide a better service by directing you to your preferred country and language settings on subsequent visits. You can adjust how your computer deals with cookies via your internet browser. The web server may alsocollect the user’s IP address. We use this information to:
identify where users of our website come from;
work out how many times the Website has been visited;
track which parts of the Website have been visited so we can improve the content and layout.
In most cases, we collect this website usage information in a way which does not identify you and we do not attempt to link this information with the information that we collect about our contacts referred to above. However, if you arrive at our website by clicking a link in an e-mail we send, our software provider may link website usage informationto your email address as described in the NISAU Mailing List section above.
The law states that we can store cookies on your machine if they are essential to the operation of the website but thatfor all others, we need your permission to do so. You can set your browser not to accept cookies and the above website tells you how to remove cookies from your browser. However, in a few cases some of our website features may not function as a result.
If you do not wish to receive cookies from us or any other website, you can turn cookies off on your web browser: please follow your browser provider’s instructions in order to do so. Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit https://www.aboutcookies.org/ or www.allaboutcookies.org.
We will keep your information secure by taking appropriate technical and organisational measures against its unauthorised or unlawful processing and against its accidental loss, destruction or damage. Unfortunately, the internet is not always secure, therefore, although we will do our best to protect your personal data, we cannot guarantee the security of your data which is transmitted to our website or other products and services via an internetor similar connection and any transmission will be at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Where we use external companies to collect or process data on our behalf, your Data may be transferred to, and stored at, a destination outside the European Economic Area (EEA), which means all the EU countries plus Norway, Iceland and Liechtenstein. It may also be processed by staff operating outside the EEA who work for us or for one ofour suppliers. Such staff may be engaged in, among other things, the provision of support services.
If you do not want your information to be transferred outside the EEA you should not use our website, product or service or contact us via email.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our bestto protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk.
Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
We may share your personal information with third parties in the following circumstances:
If we or substantially all of our assets are acquired by a third party, in which case Personal Data held by us about youwill be one of the transferred assets.
If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use and other agreements; or to protect the rights, property, or safety of NISAU, or others. This can include exchanging information with other companies and organisations for the purposes of terrorismand fraud protection
If we have partnered with an organisation for an event that you have registered for. This could for examplebe a university.
Hotels, airlines and travel agencies should NISAU arrange your travel and accommodation, for example if you are aninvited guest speaker for one of our events.
The Purposes of transfer of your Data (save in the case of Sensitive Data, where we will have obtained your specific consent to do so for one or more of the Purposes) are lawful because it is necessary for us to hold and use your Personal Data so that we can perform our obligations under the contract we have entered into with you for the Purpose(s).
In the event of any of the above scenarios occurring, we will endeavour to ensure that your rights and freedoms in respect of the processing of your personal data are adequately and appropriately protected.
We will hold your personal information on our systems for as long as is necessary to operate the service in accordance with legal requirements and accounting rules.
Where your information is no longer required, we will ensure it is disposed of in a secure manner.
We use reasonable security measures to protect your personal information from unauthorised access, disclosure, or modification.
The events, seminars and webinars may contain links to third-party websites or services that are not owned or controlled by us. We are not responsible for the privacy practices or content of these third-party sites.
NISAU UK is committed to handling complaints and other feedback in accordance with the provisions outlined in the General Data Protection Regulations and the Data Protection Act 2018 in the UK. Similarly, in India, NISAU UK is committed to addressing complaints and other inquiries concerning data breaches in accordance with the provisions outlined in the Digital Personal Data Protection Act 2023. This encompasses ensuring compliance with consent regulations, maintaining confidentiality standards, and appropriately recording, managing, and sharing information.
In the event of a breach that meets the threshold for notification, NISAU will promptly inform the Information Commissioner’s Office (ICO) / Data Protection Board of India (which is yet to be established).
Following the resolution of a complaint, a summary will be retained on record, in alignment with relevant data protection protocols. If you have utilised our services and possess a file with us, the complaint record will be incorporated into your file for reference purposes. We prioritise the secure handling of information and strive to uphold the highest standards of data protection throughout our operations.
We shall review this policy from time to time and may update it. If we do so, the updated version will be uploaded onto the website, and will be effective from the moment it is uploaded, so please check it from time to time.
To exercise all relevant rights, queries or complaints, please in the first instance email us on team@nisu.org.uk
