Our Editor, Julie Hay, is our data controller and data control officer and pays personal attention to how we maintain information about those who contact us.
The data processor for details entered into the IJTARP website are Scholarly Exchange, operating under the auspices of the University of Pittsburgh. Individuals enter their own details here.
We propagate article and author information to reputable databases and directories in order to increase potential readership.
We also maintain information about authors and reviewers within a reputable CRM system, for which Julie Hay is the data processor. This includes, where known: name, email address(es), address details, telephone and/or other contact details, status in terms of journal activities, and sometimes notes of conversations that remind us of our discussions with you about IJTARP activities.
Our lawful basis for maintaining these records is as defined in the Information Commissioner’s Office (2018): “Contract: the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract.” (p.13).
We have an implied contract with subscribers to provide a regular journal for them to read. We have written contracts with reviewers and with authors.
Our intended purposes for maintaining records include:
- ongoing operation of the submission, peer review, formatting and publication procedures of the journal
- alerting subscribers to the publication of new issues and to occasional announcements
- other purposes as may arise in order to carry out the usual functions of the organisation
Those who provide information about themselves can log in and amend/update their data within the journal online database at any time.
Authors and reviewers are asked to contact the Editor to request amendments, updates or deletion within the CRM system.
Reference: Information Commissioner’s Office (2018) Guide to the General Data Protection Regulation (GDPR) https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ accessed 29 April 2018 (note – living document updated regularly)