Privacy Policy

Introduction

At IRUS, we take the responsibility of looking after personal data in our possession seriously. This policy explains what we do with individuals' personal data, particularly with reference to the General Data Protection Regulation (GDPR). In this context:

• 'Personal Data' means data relating to a living individual who can be identified from that data, or can be identified from that data taken together with other information that we may or may not hold;
• 'Data Controller' means the persons or organisation responsible for determining how and why your personal data is used;
• 'Data Processor' means the persons or organisation responsible for processing personal data on behalf of a data controller.

Who are we?

We are IRUS-ANZ - a service managed by Jisc and Cranfield University, supported in Australia and New Zealand by CAVAL, which generates COUNTER-conformant statistics for participating institutional repositories.

What personal data we collect, where we get it from, what we do with it and why

The following information is needed for us to manage your participation in the IRUS-ANZ service. We'll use it, as described in our standard privacy notice at https://www.jisc.ac.uk/website/privacy-notice, to provide the service you've requested, as well as to identify problems or ways to make the service better.

The personal data we collect and use can be divided into two key types:

• Primary contact information - names and email addresses - for institutions participating in the IRUS-ANZ service;
• IP addresses that have been transmitted to us by our participating repositories for the purposes of processing their raw download usage data into COUNTER-conformant statistics.

Primary contacts

We collect your name and email address solely to contact you as a participant in the IRUS-ANZ service; the information is needed for us to manage your participation in IRUS-ANZ.

In this context we are the data controller.

Retention Period

We'll keep the information until we are told that you are no longer a representative for your institution.

IP addresses

IRUS-ANZ receives IP addresses relating to usage events transmitted to us by participating repositories via the Tracker Protocol https://irus.jisc.ac.uk/documents/TrackerProtocol-V3-2017-03-22.pdf. This identifying data is necessary to create proxies for user sessions for the initial processing of raw usage data in order to identify and discount robot and rogue usage, as required under the COUNTER Code of Practice. In addition, these IP addresses are used to present country level statistics, derived via geolocation.

In this context Jisc is the data controller.

The lawful basis under which we use IP addresses is legitimate interest, that is, without the IP address information we would not be able to provide you with credible, high-quality statistics.

Retention Period

The COUNTER Code of Practice requires usage statistics to be available for a minimum of 2 years. To support this requirement we retain data for a 2-year period and then destroy it. We only retain data after the completion of initial processing into COUNTER-conformant statistics, in order to:

• restate statistics if required, e.g. if we subsequently discover an error in our processing or if some other unforeseen circumstance arises;
• to carry out periodic analyses of the raw usage dataset for the purpose of improving our robotic and rogue usage detection.

Keeping personal data secure

We take appropriate security measures to protect personal data from unlawful or unauthorised processing and accidental loss, destruction or damage.

Contact Us

You can contact us regarding your rights under GPDR, or anything else in this privacy notice:

• By email: dataprotection@jisc.ac.uk
• By post: 4 Portwall Lane, Bristol, BS1 6NB

See also: the Jisc standard privacy notice

For enquiries about IRUS-ANZ, please contact IRUS@caval.edu.au | Accessibility | Privacy