GDPR Compliance
Your data protection rights under the General Data Protection Regulation
1. Introduction to GDPR
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that gives individuals in the European Union enhanced control over their personal data. Journament is committed to full compliance with GDPR requirements and protecting your privacy rights.
2. Your Data Protection Rights
Under GDPR, you have the following rights regarding your personal data:
You have the right to request a copy of the personal information we hold about you. This includes:
- What personal data we process
- Why we process it
- Who we share it with
- How long we keep it
- Where it came from
You have the right to request correction of inaccurate personal data or completion of incomplete personal data. You can:
- Update your profile information
- Correct errors in your account details
- Add missing information
- Request verification of corrected data
You can request deletion of your personal data in certain circumstances:
- The data is no longer necessary for the original purpose
- You withdraw consent and there's no other legal basis
- Your data has been unlawfully processed
- You object to processing and there are no overriding legitimate interests
You can request that we limit how we use your personal data if:
- You contest the accuracy of the data
- Processing is unlawful but you don't want deletion
- We no longer need the data but you need it for legal claims
- You've objected to processing pending verification
You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller. This includes:
- Export your bibliography library
- Download your profile information
- Transfer data to another academic platform
- Receive data in machine-readable format
You can object to processing of your personal data for:
- Direct marketing purposes
- Processing based on legitimate interests
- Scientific or historical research
- Statistical purposes
3. Legal Basis for Processing
We process your personal data based on the following legal grounds:
| Processing Activity | Legal Basis | Purpose |
|---|---|---|
| Account creation and management | Contract performance | Provide our services to you |
| Email communications | Consent | Send updates and notifications |
| Analytics and improvements | Legitimate interests | Improve our platform and services |
| Security monitoring | Legitimate interests | Protect against fraud and abuse |
| Legal compliance | Legal obligation | Comply with applicable laws |
4. Data Processing Principles
We adhere to the following GDPR principles:
We process data lawfully and transparently
Data used only for specified purposes
We collect only necessary data
Data kept only as long as needed
5. How to Exercise Your Rights
Contact Our Data Protection Team
To exercise any of your GDPR rights, please contact us through our official channels. We will respond to your request within 30 days.
6. Data Protection Officer (DPO)
Our Data Protection Officer oversees GDPR compliance and data protection practices. You can contact our DPO directly for any data protection concerns or questions about how we process your personal data.
7. Supervisory Authority
If you are not satisfied with our response to your data protection concerns, you have the right to lodge a complaint with your local data protection authority. For EU residents, you can find your supervisory authority through the European Data Protection Board website.
8. Updates to GDPR Compliance
We regularly review and update our GDPR compliance practices. Any significant changes will be communicated to you through our website and, where required, through direct notification. We remain committed to maintaining the highest standards of data protection.