Privacy Policy

1. Information We Collect

1.1 Personal Information You Provide

We collect personal information that you voluntarily provide to us when you:

• Fill out contact forms or inquiry forms on our website
• Subscribe to our newsletter or mailing lists
• Register for events, workshops, or educational programs
• Apply for research positions, internships, or collaborations
• Communicate with us via email, phone, or other channels
• Participate in surveys, feedback forms, or research studies

This information may include:

• Name and contact information (email address, phone number, mailing address)
• Professional information (job title, organization, research interests)
• Educational background and qualifications
• Research proposals and academic credentials
• Communication preferences and consent records
• Any other information you choose to provide

1.2 Information Automatically Collected

When you visit our website, we automatically collect certain information about your device and browsing behavior:

• IP address and approximate geographic location
• Browser type, version, and operating system
• Device information (type, screen resolution, etc.)
• Pages visited, time spent on pages, and referral sources
• Date and time of visits and interactions
• Cookies and similar tracking technologies (see our Cookie Policy)

1.3 Information from Third Parties

We may receive information about you from:

• Research collaborators and academic institutions
• Professional networks and conference organizers
• Public databases and academic publications
• Social media platforms (only publicly available information)

2. How We Use Your Information

We use the collected information for the following purposes:

2.1 Primary Purposes

• Communication: Responding to inquiries, providing requested information, and maintaining correspondence
• Service Provision: Delivering educational programs, research services, and consulting
• Research Collaboration: Facilitating partnerships and joint research projects
• Event Management: Organizing workshops, conferences, and educational events
• Newsletter and Updates: Sending research updates, publications, and relevant information (with consent)

2.2 Website and Technical Purposes

• Improving website functionality, user experience, and content
• Analyzing website usage patterns and performance
• Ensuring website security and preventing fraud
• Technical support and troubleshooting

2.3 Legal and Compliance Purposes

• Complying with legal obligations and regulatory requirements
• Protecting our legal rights and interests
• Enforcing our terms and conditions
• Preventing illegal activities and maintaining safety

3. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent (e.g., newsletter subscriptions)
• Contractual Necessity: To fulfill our obligations under contracts or agreements
• Legitimate Interests: For research purposes, website improvement, and business operations
• Legal Obligation: To comply with applicable laws and regulations
• Vital Interests: To protect health, safety, or fundamental rights

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

4.1 Research Collaborations

• Academic institutions and research partners (with appropriate agreements)
• Co-investigators on joint research projects
• Peer reviewers and scientific journals (for publication purposes)

4.2 Service Providers

• IT service providers and hosting companies
• Email marketing and communication platforms
• Analytics and website optimization services
• Professional consultants and legal advisors

4.3 Legal Requirements

• Government authorities when required by law
• Law enforcement agencies for investigations
• Courts and regulatory bodies as legally mandated

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.

5. Data Security and Protection

We implement comprehensive security measures to protect your personal information:

5.1 Technical Safeguards

• SSL encryption for data transmission
• Secure servers and databases with access controls
• Regular security audits and vulnerability assessments
• Firewalls and intrusion detection systems
• Data backup and recovery procedures

5.2 Administrative Safeguards

• Employee training on data protection and privacy
• Access controls and user authentication systems
• Confidentiality agreements for staff and contractors
• Incident response and breach notification procedures
• Regular policy reviews and updates

5.3 Physical Safeguards

• Secure facility access controls
• Protected server rooms and equipment
• Document security and disposal procedures
• Environmental controls and monitoring

6. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy:

• Contact Information: 7 years after last contact or until withdrawal of consent
• Research Data: As required by research protocols and ethical guidelines (typically 5-10 years)
• Website Analytics: 24 months for usage data
• Email Communications: 5 years for business correspondence
• Legal Documents: As required by applicable laws and regulations

After the retention period expires, we securely delete or anonymize the information.

7. Your Privacy Rights

Under GDPR and applicable data protection laws, you have the following rights:

7.1 Access and Portability

• Right to access your personal data and receive a copy
• Right to data portability in a machine-readable format
• Information about how your data is processed

7.2 Correction and Deletion

• Right to rectify inaccurate or incomplete data
• Right to erasure ("right to be forgotten") under certain circumstances
• Right to restrict processing in specific situations

7.3 Consent and Objection

• Right to withdraw consent at any time (where processing is based on consent)
• Right to object to processing based on legitimate interests
• Right to opt-out of marketing communications

7.4 Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days and may require verification of your identity.

8. International Data Transfers

As a research institution with international collaborations, we may transfer your personal data to countries outside the European Economic Area (EEA). Such transfers are protected by:

• Adequacy decisions by the European Commission
• Standard Contractual Clauses (SCCs)
• Binding Corporate Rules for group companies
• Explicit consent for specific transfers
• Derogations for research and scientific purposes

9. Children's Privacy

Our website and services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16 without parental consent. If you believe we have collected information from a child under 16, please contact us immediately.

10. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or business operations. We will notify you of significant changes by:

• Posting the updated policy on our website
• Sending email notifications to registered users
• Displaying prominent notices on our website
• Obtaining fresh consent where required by law

Your continued use of our website after changes become effective constitutes acceptance of the updated policy.

11. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Czech Office for Personal Data Protection or your local data protection authority.