GDPR Privacy Notice
The purpose of the General Data Protection Regulation ("GDPR") is to protect all European Union ("EU") citizens from privacy and data breaches by allowing citizens to maintain control of the personal data kept and processed by organizations, which includes The National Laboratory of Genetics (“NLG”). The GDPR also protects the personal data of individuals, regardless of citizenry, in the EU.
The National Laboratory of Genetics is committed to safeguarding the privacy of personal data. This Privacy Notice outlines the collection, use, and disclosure of personal information provided to the NLG by any form. When information is submitted to NLG, or you use the NLG's websites and other services, you consent to the collection, use, and disclosure of that information as described in this Privacy Notice.
NLG Use of Information
NLG collects and processes personal data ("Information") from individuals only as necessary in the exercise of the NLG's legitimate interests, functions and responsibilities. For example, NLG also collects and processes Information from individuals who are applicants for employment positions. Information collected from customers or customer applicants is used to register or enroll persons in the NLG, provide and administer services to customers, manage a customer account, provide services, develop and deliver various programs, track progress, analyze and improve programs, recruitment, regulatory reporting, auditing, maintenance of accreditation, and other related NLG processes and functions. NLG also uses Information to conduct general demographic and statistical research to improve NLG programs, to identify appropriate support services or activities, provide reasonable accommodations, enforce NLG policies or comply with applicable laws. Finally, Information may be shared by NLG with third parties who have entered into contracts with the NLG to perform functions on behalf of the NLG, subject to the obligation of confidentiality and safeguarding from unauthorized disclosure.
Third Party Use of Sensitive Information
We may disclose your Sensitive Information and other Information as follows:
We implement appropriate technical and organizational security measures to protect your information when you transmit it to us and when we store it on our information technology systems.
Cookies and Other Technology
Retention and Destruction of Your Information
Your information will be retained by the NLG in accordance with applicable local or international laws (rules. practices), and the applicable retention periods in the NLG's Records Management policy. Your information will be destroyed upon your request unless applicable law requires destruction after the expiration of an applicable retention period. The manner of destruction shall be appropriate to preserve and ensure the confidentiality of your information given the level of sensitivity, value and criticality to the NLG.
You have the right to request access to, a copy of, rectification, restriction in the use of, or erasure of your information in accordance with all applicable laws. The erasure of your information shall be subject to applicable laws (rules. practices), and the applicable retention periods in the NLG's Records Management policy. If you have provided consent to the use of your information, you have the right to withdraw consent without affecting the lawfulness of the NLG's use of the information prior to receipt of your request.
Information created in the European Union will be transferred out of the European Union to the NLG. If you feel the NLG has not complied with applicable foreign laws regulating such information, you have the right to file a complaint with the appropriate supervisory authority in the European Union.
Updates to This Policy
We may update or change this policy at any time. Your continued use of the NLG's website and third party applications after any such change indicates your acceptance of these changes.