Amateur
Entomologists'
Society

Privacy & Cookie statement

This policy explains what information we gather when you visit the websites of the Amateur Entomologists' Society (AES), and how that information may be used. The Amateur Entomologists' Society is a UK registered charity (number 267430) and our postal address is:

The Amateur Entomologists' Society,
PO Box 8774,
London,
SW7 5ZG

The society can be contacted at: contact@amentsoc.org

This policy applies only to data collected through direct access to the Amateur Entomologists' Society websites: www.amentsoc.org, shop.amentsoc.org and www.entrecord.com. In addition, our online shop is provided by a third-party and their access to data is also outlined below.

Our websites contain links to other websites. This privacy policy only applies to this website so when you follow links to other websites you should read their privacy policies.

Contents


Data collected to provide goods and services

In order to supply our goods and services (such as someone joining the society or purchasing a book) we will need to request some information from you (for example, your name and a delivery address). Data collected from shop customers or as part of the membership application process for the AES and/or Bug Club requires your interaction with third-parties.

When using our website or online shop the connection is encrypted (https) and details of the encryption can be viewed in the web address bar of your browser.

Lawful basis for processing data collected via our websites

In the case of processing under 'Legitimate Interests' this covers situations where you would reasonably expect us to process your data. For example, if you contact the society with a question about entomology then we need to use the email address you supplied to reply to you. The society maintains Legitimate Interest Assessments.

At all times the Amateur Entomologists' Society operates in accordance with the General Data Protection Regulation or the current UK data protection legislation. In addition, members are advised of data protection issues pertaining to membership of the society at the time of sign-up and also annually by the Registrar.

Your rights

You have the right to request a copy of the information that we hold about you. If you would like a copy of some or all of your personal information, please contact us.

We want to make sure that your personal information is accurate and up to date. You may ask us to correct information you think is inaccurate. In the case of the online shop and email newsletter then the data is supplied by you and remains in your direct control. You can log back in to the online shop and newsletter service and correct/update your information as appropriate.

In the case of your rights when data is processed as part of a contract or based on your consent then you have the right to have your data erased, to data portability and, in the case of consent, to withdraw consent. Where we use Legitimate Interests then you have the right to have your data erased and to object to any processing - although in both cases this could prevent us from completing the original request you made when supplying us with the data.

If you wish to raise a complaint on how we have handled your personal data, you can contact our Registrar who will investigate the matter. If you are not satisfied with our response you can complain to the Information Commissioner's Office (ICO).

Children

The society provides membership to children as members of the Bug Club or as junior members of the society. Under 18s must ask a parent or guardian to complete their membership application. Orders via our online shop must also be completed by someone over the age of 18 and payment via PayPal (the only form of online payment we accept) must be made by someone over 18 because PayPal cannot be used by anyone younger than 18.

Our junior members are not eligible for inclusion in our membership list. Junior members can access the members' only area of the website and mailing list but only when access is requested/established by their parent/guardian.

Third-parties

Where we need to allow third-parties to process your personal data we ensure in advance that stringent data protection arrangements are in place. For example, address labels provided to the printing firms who mail out members' journals are sent electronically in encrypted form and the printers delete them once used for a mailing. Certain personal data are also available to the society through PayPal payments.

If you use our online shop (shop.amentsoc.org) then this is provided by a UK-based company called Bluepark and payment is then made via PayPal. The privacy policies for each organisation are available online: BluePark privacy policy and PayPal privacy policy

www.amentsoc.org and www.entrecord.com websites are hosted with Webfaction (a service of Paragon Internet Group Limited) on servers within the UK (Webfaction's privacy policy).

Our members' only monthly email newsletter is a membership service that members need to actively sign up using double opt-in consent. We do not add people to the list directly. The newsletter is currently provided through MailChimp - a US-based email marketing service which has signed up to the EU-US Privacy Shield agreement (MailChimp's privacy policy). Members retain direct control of their data and can edit or unsubscribe to the newsletter at any time using the link provided in each issue, should they so wish.

Data transfers

In some cases, such as sending postal addresses to printers to enable the mailing of journals to members, we need to transfer your data to contracted third-parties. In these cases the data is encrypted before transfer and transferred securely. The data is then destroyed by the third-party when it is no longer needed.

Data retention

Please note that we are legally required to retain financial data for six years and in some cases longer, e.g. to retain proof of eligibility for Gift Aid. In the case of long-standing members, correspondents and volunteers (in particular, trustees and officers of the society) their data (including in a few cases relevant sensitive data) may be archived securely for legitimate interest historical or statistical purposes, including for example to enable us to confer honorary life memberships.

Emails sent to the society will be held for a maximum of six years unless they are needed for legitimate interest historical purposes, to prove consent to processing or for statistical purposes. If you have provided contact information with an event listing then this will be removed from the website after the event but we will retain the details in our database until one year after the event before being erased. The data will be stored in our secure backups for a further three months before being permanently erased.

Records allowing access to the members' only area of the websites and the email newsletter will be deleted one year after your membership expired (to allow late renewals).

Backups

www.amentsoc.org and www.entrecord.com

In some circumstances the websites may contain personal data, such as contact information for an event or access details for the members' only area. This data is backed up daily. Backups are encrypted and securely copied from the server to another server provided by Amazon within their data centre in Ireland. The server storing the backups itself uses an encrypted disk. Backups are stored for three months before being automatically deleted.

In addition to these backups, the web host used for the main website (Webfaction) take their own backups but we do not have access to these.

shop.amentsoc.org

Our online shop is provided by a third-party, Bluepark, and they take their own backups of data held in the shop but we do not have access to these.

Data collected automatically when you visit our website

As with the vast majority of websites, the AES websites automatically log certain information about every request made. If available to us, this information can be used for system administration, security, bug tracking, and for producing usage statistics. The logged information may be kept indefinitely but, on its own, cannot be used to identify individuals (except if you provide us with that data, e.g. via a contact form, or have set up your system to provide this specific information).

Data may, on occasion, be passed to the administrators of other computer systems to enable investigation of abuse or security issues. Otherwise the logged information is not passed to any third-party except if required by law. Summary statistics may be extracted from this data and some of these may be made publicly available but will not be used to identify individual persons.

We have access to the server logs for www.amentsoc.org and www.entrecord.com but not for shop.amentsoc.org.

Logged data

The following data is automatically logged by the Web server each time you request a document (HTML file, an image, download a PDF etc.):-

Logging of additional data may be enabled temporarily from time to time for specific purposes.

Analytics

The AES uses Google Analytics to anonymously monitor site usage. This information helps, amongst other things, us identify areas of the site that are popular (or unpopular) and what browsers and web devices the site should support. As an organisation run by unpaid volunteers being able to prioritise our efforts in particular areas is very important - the anonymous data obtained from analytics cookies is vital for this prioritisation process.

Google Analytics on the AES website, Entomologists' Record and online shop is configured to anonymise IP addresses before sending usage data to Google.

Cookies

Cookies (small files stored on your computer's hard drive) are used on the AES website.

If your web browser allows the setting of cookies then the AES website may set the following (first party) cookie:

We use Google Analytics to collect anonymised usage statistics. No individuals are identified in this process but the analytics does require the setting of these cookies:-

Should you wish to prevent these cookies being stored then this can be accomplished by changing your browser settings.

Please note that if you remove/refuse cookies from our site then most of our content will be available to you but some services, such as making purchases from our online shop, will not be available to you. If you are not able to use our online shop you can order our books or buy membership by post.

Changes to our privacy policy

We keep our privacy policy under regular review and we will place any updates on this Web page.

This privacy policy was last updated on 23rd May 2018.