The Luxembourg Agency for Research Integrity (LARI) uses personal data. In our capacity of data controller, we are committed to protect and respect your privacy in compliance with European law.
The purpose of this privacy statement (“Privacy Statement”) is to inform all users of the website from whom personal data is collected by LARI how LARI processes such Personal Data and how you can control its use.
The protection of your privacy in the processing of your personal data is an important concern to which we pay special attention during our business processes. Personal data collected during visits to our sites are processed by us according to applicable legal provisions.
Scope of the Privacy Statement
This Privacy Statement sets forth the principles and guidelines governing the protection of your Personal Data\ collected on or through the sites.
LARI, in its capacity as data controller, collects, holds, stores and processes Personal Data (as defined below) in relation to you in compliance with any data protection law applicable in Luxembourg and in particular the law of 1 August 2018 and as from 25 May 2018, the Regulation (EU) 2016/679 of 27 April 2016 (“GDPR”).
Who we are
In this Privacy Statement, “LARI”, “we”, or “our” means the Luxembourg Agency for Research Integrity, an asbl/non-profit, RCS Luxembourg #F11081. LARI’s registered office is 2, avenue de l’Université, L – 4365 Esch sur Alzette, Luxembourg.
LARI is a non-profit organization, offering support to the public, researchers and organisations to promote research ethics and research integrity.
What personal information may we collect?
Personal data (“Personal Data”) refers to any information about you and which can be used to identify you directly or indirectly.
We collect and process the following categories of data:
· Personal identification data (e.g., first name, last name, contact details, CV)
· Personal details (e.g., date of birth, gender, nationality)
· Official identification data (e.g. ID, passport)
· electronic identification data (e.g. email address, IP address, geographical location, cookies)
· bank and financial identification data (e.g. bank account numbers)
This is data that is both provided to us directly by you or generated using our services.
Legal Basis and Purposes
LARI process your personal data based on the following legal basis and for the following purposes: As stated above, you provide your Personal Data on a voluntary basis.
In order for processing to be lawful, Personal Data should be processed on the basis of your consent or on the basis of some other legitimate grounds, prescribed by applicable laws and regulations.
1. Performance of a contract (GDPR, Art. 6.1.b)
Where processing is necessary for the performance of a contract in order to provide services within the remit of LARI, including research, consultation, investigation services, training events, workshops and conferences; coaching.
2. Consent (GDPR, Art. 6.1.a)
We will process your personal data based on your consent for example in the case you contact with us through the contact form to provide you with information you have registered for, and in case you have registered to join our events.
LARI may process your personal data, e.g. your CV in case you send your CV as a spontaneous candidate for the purpose of being part in the future recruitment process.
3. Legal Obligation (GDPR, Art. 6.1.c)
LARI may process your personal data where it is necessary to comply with legal and regulatory obligations. For example, to share personal data with the Comité National d’Ethique de Recherche Luxembourg (CNER).
4. Legitimate Interest (GDPR, Art. 6.1.f)
LARI may process your personal data, e.g. your CV in case you apply for a job position for the purpose of being part of the Recruitment Process.
LARI may process your personal data where it is necessary for checking any previous breaches of contracts with other institutions prior to entering into a contract or during the existence of the contract, to be able to defend our interests in defence or take legal action, to proceed to
investigations in case of a potential breach of contracts or violation of law or regulation which would have a negative impact on LARI.
When you visit our website, LARI store certain information about the browser and operating system you use, the date and time of your visit, the access status (e.g. whether you were able to access a website or received an error message, the website from which you accessed our websites. LARI also stores your IP address and the name of your Internet service provider for security reasons, in particular to prevent and detect attacks on our websites or attempts at fraud. We use the personal data collected when you visit our website in order to operate it in the most convenient manner for your use and to protect our IT systems from attacks and other illegal activities.
Personal data transfer to third parties
LARI will never sell or rent personal information to third parties. However, we may need to disclose information to third parties in connection with purposes set out in this privacy statement, such as with organisations that fund, subscribe to, otherwise support LARI as well suppliers and subcontractors who may process information on our behalf and IT/web based related support and services.
Where we are under a legal or regulatory duty to do so, we may disclose information to the police, regulatory bodies or legal advisors, and/or, where we consider it necessary to protect the rights, property or safety of LARI, its personnel, visitors, volunteers, advisory board, users or others.
When using suppliers who operation partially or fully outside the European Economic Area (EEA), potentially within a country that may have different data protection laws. In this example, LARI will take steps to ensure they provide an adequate level of data protection in accordance with Luxembourg law.
How long do we keep your personal data?
Web contact form and request for quotation: your personal data will be processed for the time strictly necessary to meet your request.
Recruitment process and spontaneous applications: your CV and information related to recruitment process will be processed until the recruitment process have been closed.
In case of spontaneous applications, your CV will be kept for two years.
Services provided by LARI: your personal data will be processed until the end of the contractual relationship. Once it is finished, and for tax purposes your data will be kept for a period of 5 years in compliance with the general tax law.
Personal data processed for the management in detailed form of enquiries directed to LARI consult and investigative services will be kept for 6 years.
Exclusive for professional contacts: your data will be kept until our professional relations end or you decide to cancel or oppose the processing of your contact data for such purposes.
You will be notified the first time you receive a cookie, and then you can decide whether to accept it or refuse it. By continuing to use the sites and clicking “I accept”, you expressly authorize LARI to use such cookies. You also have the option to decline and, in this case, you will not be able to use all functionalities of the sites.
You can also configure Your browser software to refuse all cookies (including cookies used for web analytics services); if you do so, however, some areas and features of the Sites may not function properly and/or you may not be able to access some parts or services of the Sites.
More information on the cookies that we use, and their features can be found in the Cookies Policy.
Social media cookies
LARI is active on social media platforms. For instance, LARI is present on five key social media platforms – Facebook, Twitter, LinkedIn, Instagram and YouTube. These communities strengthen our online presence and visibility.
LARI does not set cookies with the display of links to our social media channels when you are browsing our website;
You can watch videos, which we upload on our YouTube page. You can also follow links from our website to Facebook, Twitter, LinkedIn, Instagram and YouTube;
In order to watch some LARI videos, a message will alert you that you need to accept YouTube cookies to do so. YouTube has its own cookie and privacy policies over which we have no control. There is no installation of cookies from YouTube until you consent to YouTube cookies;
Similarly, by clicking on the Facebook, Twitter, LinkedIn, Instagram or YouTube button on our website, you will be re-directed to those websites, which have their own cookie and privacy policies over which we have no control.
Data subject’s Rights
You as a data subject have the right to obtain confirmation about the existence of a processing of your data, to access your personal data, request the rectification of data that are inaccurate or, where appropriate, request the deletion, when among other reasons, the data is no longer
necessary for the purposes for which they were collected or you as an interested party withdraw the consent granted.
LARI will process and keep your data in accordance with current regulations, without prejudice to the fact that as an interested party you can request in any case, the limitation of the processing of your data. In certain cases you may exercise your right to the portability of the data, which will be delivered in a structured format, commonly used or mechanical reading to you or to the new data controller you designate.
You will have the right to withdraw at any time the consent for any of the treatments for which you have granted it
Some of these rights may be limited where we have an overriding interest or legal obligation to continue to process the data or where data may be exempt from disclosure due to reasons of legal professional privilege or professional secrecy obligations.
LARI respects the rights for individuals in relation to their personal information as provided in the GDPR. If you want to exercise any of the below rights, please contact us via email at secretarygeneral@LARI.lu or by writing to:
Luxembourg Agency for Research Integrity (LARI)
6, avenue des Hauts-Fourneaux
L-4362 Esch-sur-Alzette, Luxembourg
A person also has the right to lodge a complaint about any use of their information with the Commission nationale pour la protection des données (CNPD).
The Luxembourg Supervisory Authority is:
Commission Nationale pour la Protection des Données
1, avenue du Rock’n’Roll
Tél.: (+352) 26 10 60 -1
LARI undertakes to ensure the protection and security of Personal Data, in order to ensure the confidentiality of your Personal Data and prevent your Personal Data from being distorted, damaged, destroyed or disclosed to unauthorized parties or used in an unlawful manner.
LARI maintains adequate physical, electronic, and procedural safeguards to protect Personal Data from loss, misuse and unauthorized access, disclosure, alteration and destruction.
Since all Personal Data is confidential, access is limited to Authorized Persons who have a need to know such data in carrying out their tasks. Without prejudice to the rules applicable in
relation to professional secrecy rules, all the people who have access to your Personal Data are bound by a duty of confidentiality and must comply with appropriate data protection clauses and legislation and are subject to disciplinary actions and/or other sanctions if they fail to meet these obligations.
Please contact us if you have any queries, suggestions or comments regarding this privacy statement, either via email to secretarygeneral@LARI.lu
or by writing to us at:
Luxembourg Agency for Research Integrity (LARI)
6, avenue des Hauts-Fourneaux
L-4362 Esch-sur-Alzette, Luxembourg
Policy operational date: November 2018
Date of last review: October 2021