Privacy Policy

The types of personal information we may collect and process include:

• Identifiers, such as name, username, IP address, institution identification number (e.g. student ID) or government-issued identification number (e.g. Social Security Number).
• Contact information, such as email address, postal address, telephone number.
• Demographic information, such as age or gender.
• Commercial information, such as purchase history or subscription information.
• Financial information, such as payment card data and associated fraud checks.
• Academic or Professional information, such as publications, work history, education, areas of expertise.
• Engagement information, such as content you provide to us, comments, feedback, posts, enquiries, and other communications.
• Images, such as CCTV if you visit our offices.
• Network and website activity information, as detailed in the section “Sources of Personal Information”.
• Preferences, such as communication, language, or marketing preferences.

Some of the personal information we process may be classified as sensitive personal information.  This definition varies according to local data protection laws.  We will only process such information when necessary for a specific and legitimate purpose, and in line with applicable requirements.

Information provided directly

We collect personal information directly from people who use our sites or services, visit our offices, or communicate with us. All information we ask for is mandatory unless marked as optional. If mandatory information is not provided, we may be unable to provide the requested service.

Information collected through automated technologies

We collect personal information when our sites are used, either directly or through our third-party analytics providers. This includes IP address, browser type and settings, device details, internet service provider, referring and exit pages, site content interactions, location data, and other usage information. We use tracking technologies such as cookies, web beacons, embedded scripts, location-identifying technologies, device recognition technologies, and session replay software. We use this information to enable site functionality, understand site interaction trends, personalize user experiences, and improve our services.

While we do not currently respond to “do not track” browser signals, users have several options to manage cookies and tracking technologies. Our Cookies Policy provides more information.

Information from other sources

We receive personal information from third parties such as: business partners, advertising and marketing agencies, data brokers, analytics providers, academic institutions, journal owners or societies, search information providers, and credit reference agencies. We also get information from publicly accessible sources like social media platforms.

If you choose to register and sign in using a third-party account (like Facebook or Google), that service handles your authentication. We will collect your name, email, and any other information you agree to share when you link your third-party account.

We use personal information for these purposes:

• Administration of products and services
  • Fulfilling contracts or transactions.
  • Providing, managing and supporting our products and services.
• Marketing and communication
  • Communicating about our or our partners’ programs or events (such as webinars, conferences, contests, or surveys).
  • Marketing our sites, products, or services (including through emails, newsletters, targeted advertising, phone calls, and SMS messages).
  • Responding to enquiries, requests, or comments.
  • Personalizing our sites, services, products, and communications.
• Development of products and services
  • Evaluating and improving our business (including enhancing our sites, services, products, and communications; developing new ones; and assessing promotions and advertising effectiveness).
  • Performing data analytics for internal research or other business purposes.
• Business management and administration
  • Supporting diversity and inclusion initiatives (such as using gender to analyze representation).
  • Detecting and investigating fraud and suspicious activity (such as violations of our Terms of Use) and keeping our sites safe and secure.
  • Complying with legal or regulatory obligations

We may use personal information for other purposes that we inform you of where we have your consent, a legitimate business interest, or another lawful reason.

Atypon does not make decisions that have legal or similarly significant effects on individuals using solely automated means without human review. If such decisions are made in any particular instance, we will provide information about how the decision is made, its consequences, and how to request a human review.

We may combine or anonymize information so that it can’t identify individuals. This de-identified information may be used for analysis, such as developing our products and services, identifying industry trends, and benchmarking. Where allowed by law, we may share de-identified information with third parties as described in the “Sharing Personal Information” section below.

Grounds for processing

When we process personal information, we do so under one or more of the following bases, as applicable to the specific processing purpose and relevant data protection laws:

• With your informed consent, which you can withdraw at any time.
• To fulfill our contractual obligations to you.
• To comply with our legal and regulatory obligations.
• To perform a task in the public interest.
• To pursue our legitimate business interests as outlined in this notice, unless those interests are overridden by your privacy rights.

Within Atypon. We may share personal information with our subsidiary, parent and affiliate companies for the purposes described in the “Use of Personal Information” section above.

With our service providers. We may share personal information with service providers that perform services on our behalf. Before sharing, they must agree to comply with applicable laws, maintain strong data security, and only process personal information as we instruct.

With partner organizations. We may share personal information with certain partners, including:

• If a third party (such as an academic institution, school, employer, or business) gives you access to an Atypon product or service, we may share information about your usage, assessment results, and other input.
• If you join a program or event in which we partner with third parties (such as a webinar, conference, or promotional event), we may share your information with the sponsors of that program or event.
• If you have access to our content or sites, sign up to receive journal alerts, or have a contribution accepted for publication, we may share your information with the related organization (for example, the journal owner or society).
• If you declare an affiliation with a funder, institution,  consortia, or similar organization, we may share your information with them to fulfil our services where that organization is a customer.
• If your information is part of the published content that Atypon provides access to.
• If we use advertising partners to serve ads and collect information when you visit our sites to show you relevant ads likely to be of greater interest to you.
• If you have consented to disclosure or we have a lawful and legitimate business reason for disclosure.

With public authorities. We may be required to disclose personal information to meet legal requests, including national security or law enforcement requirements.

With other third parties. We will share personal information with other third parties if we believe it is necessary to comply with the law or with legal process, to protect and defend our rights and property, to ensure the safety or property of our users or the public, or to prevent misuse of our sites and services. We may also share personal information during corporate transactions, such as a transfer of a journal, merging, acquiring, consolidating, or changing control.

The sharing outlined in this section may involve any of the categories of personal information listed above, but only the minimum data necessary to fulfil each specific purpose.

Atypon does not sell personal information to other organizations.

We may use third parties to display advertisements or send marketing information on our behalf, including online ads.  We will not share personal information with third parties for their own marketing purposes without your informed consent (such as event sponsors).  Atypon may promote third-party products or services to you where lawfully allowed and where we believe it would be in your interest.

You can opt-out or object to the use of your information for direct marketing at any time. You can use the opt-out or unsubscribe mechanism in the communications you receive from us, or send a request to [email protected]. You can also object to the use of cookies for advertising purposes, as explained in our Cookies Policy. If you opt out of marketing communications, we may retain minimal details to ensure we do not send you marketing in the future.  You will still receive communications that are necessary to deliver or administer requested products or services.

If we transfer personal information out of the European Economic Area we implement appropriate safeguards in accordance with applicable law, such as the European Commission’s Standard Contractual Clauses.

EU-US Data Privacy Framework, UK Extension and Swiss-U.S. Data Privacy Framework

Atypon Systems, LLC, complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. We have certified to the U.S. Department of Commerce that we adhere to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. We have also certified to the U.S. Department of Commerce that we adhere to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.

To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/. Atypon is committed to processing all personal data received under the EU-U.S. DPF or under the Swiss-U.S. DPF in line with the requirements of those Frameworks. Where personal data received under either DPF is shared with third parties, we will comply with the Notice and Choice Principles as required by those Frameworks, and we retain responsibility in line with the Frameworks’ requirements for any such personal data processed by a third party acting as an agent on our behalf and we are responsible for the event giving rise to the damage.

This Privacy Statement describes the types of Personal Data we collect, the purposes for which we collect and use your Personal Data, and the purposes for which we disclose your Personal Data to certain types of third parties in the sections above. Pursuant to the DPF, EU, UK, and Swiss individuals have the right to obtain our confirmation of whether we maintain Personal Data relating to you in the U.S. Upon request, we will provide you with access to the Personal Data that we hold about you. You may also correct, amend, or delete the Personal Data we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the U.S. under DPF, should direct their query to [email protected]. See Section 11 Your Rights below for more information.

In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, we commit to resolve DPF Principles-related complaints about our collection and use of your personal information. EU,UK, and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and/or the Swiss-U.S. DPF should first contact us by emailing [email protected]. See Section 11 Your Rights below for more information.

In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, Atypon commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF to JAMS, an alternative dispute resolution provider based in the United States. If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://www.jamsadr.com/dpf-dispute-resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you. If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Annex 1 of the DPF Principles, located at https://www.dataprivacyframework.gov/framework-article/ANNEX-I-introduction. The Federal Trade Commission has jurisdiction over Atypon’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), UK Extension to the EU-U.S. DPF, the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).

You can find detailed information on the Data Privacy Framework Program at https://www.dataprivacyframework.gov/.

Privacy rights typically include:

• Access to a copy of your personal information.
• Correction of any errors in your personal information.
• Deletion of your personal information.
• Restrictions or objections to how we process your personal information.

To exercise your rights you can submit a request to Atypon’s Data Privacy Team by email at [email protected] or by phone at +1-877-762-2974. For the protection of all individuals’ personal information, we will only process your request if we can reasonably verify your identity, or that you are authorized to act for the person whose personal information we hold.

When you submit a request, we may ask for more information to verify your identity and help us comply with your request. We do not typically charge for the exercise of individual rights, but we reserve the right to apply a charge in exceptional cases if there is a business need and in compliance with relevant data privacy laws.

In some situations, Atypon provides services for and on behalf of other organizations, such as schools, societies, or business partners.  In those cases, Atypon may act as a “Processor” (or “Service Provider”) under the instruction of those other organizations.  The other organization, often referred to as the “Controller,” holds overall responsibility for processing personal information and may be responsible for responding to individual rights requests. If you submit an enquiry or request to Atypon that needs to be forwarded to another organization, we will let you know.

If we cannot fulfil your request for any reason, we will provide an explanation. If you are dissatisfied with the response to your privacy request, you can appeal the response and we will review our decision.  You can submit an appeal by contacting [email protected].

If you have given your consent to processing, you can withdraw that consent at any time by contacting us.

For questions or complaints specific to personal information transferred under the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework, or the Swiss-U.S. Data Privacy Framework, please see section 6 above.

Most countries give you the right to lodge a complaint with a supervisory authority. However, we would encourage you to contact us first so we can try to resolve your concerns.