Our Editor, Julie Hay, is our data controller and data control officer and pays personal attention to how we maintain information about those who contact us.
The data processor for details entered into the IJTARP website are Scholarly Exchange, operating under the auspices of the University of Pittsburgh. Individuals enter their own details here.
We propagate article and author information to reputable databases and directories in order to increase potential readership.
We also maintain information about authors and reviewers within a reputable CRM system, for which Julie Hay is the data processor. This includes where known: name, email address(es), address details, telephone and/or other contact details, status in terms of journal activities, and sometimes notes of conversations that remind us of our discussions with an individual about IJTARP activities.
Our lawful basis for maintaining these records is as defined in the UK Information Commissioner’s Office (2018): “Contract: the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract.” (p.13).
We have an implied contract with subscribers to provide a regular journal for them to read free of charge. We have written contracts with reviewers, translators and authors.
Our intended purposes for maintaining records include:
- ongoing operation of the submission, translation, peer review, formatting and publication procedures of the journal;
- alerting subscribers to the publication of new issues and to occasional;
- other purposes as may arise in order to carry out the usual functions of the organisation.
Those who provide information about themselves can log in and amend/update their data within the journal online database at any time.
Authors and reviewers are asked to contact the Editor to request amendments, updates or deletion within the CRM system.
Reference: Information Commissioner’s Office (2018) Guide to the General Data Protection Regulation (GDPR) https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/