All documents and written information on this website are subject to copyright law and are owned by the Society for Healthcare Epidemiology of America (SHEA) or other individuals. Any reproduction of any part or any posting or document found on this website is prohibited, unless the copyright owner (e.g., SHEA) has granted written consent to do so. All other rights reserved.
The names, trademarks, service marks, and logos that appear on this website may not be used to indicate SHEA’s sponsorship of or affiliation with any product or service without written permission from SHEA. If you would like to request permission for use, please email info@shea-online.org.
As a service to our website visitors, SHEA’s website includes direct links to other Internet sites; however, SHEA is not responsible for the content or information contained on those sites.
SHEA is committed to data privacy for its website visitors, its members, and the general public.
Any areas of the website that do not require a user login and password are part of the public portion of our website, and SHEA does not monitor or track any personally identifiable information on this part of our website. SHEA may track browser information and site activity (e.g., page hits, return visits, etc.). If a user reports problems with the website, SHEA may ask for specific information to assist the website user.
Areas of the website that require a login and password are part of the Members Only section of the SHEA website. SHEA uses “cookies,” which uniquely identify browsers, to enable members’ computers to remember login information and to enable SHEA to improve its website. Users may change their browser settings to refuse all cookies or to be informed of cookie use. After each session, users should log out of the SHEA website and close their browser to protect their privacy.
SHEA collects personal and professional information in its membership application form and in registration forms for medical education trainings, conferences, and courses. In those forms, SHEA asks individuals to provide both personal and professional information. SHEA gathers the following types of information needed to process your transactions, fulfill your requests and maintain our membership records:
This information is used to:
Email contact information. SHEA does not share, sell, or trade email addresses, except to partners who offer educational opportunities. SHEA may use your email address to directly send you information and may provide you with online informational or marketing messages that have been approved by SHEA together with other communications to which you have subscribed.
On occasion, SHEA shares its mailing list with third parties, and provides these third parties members’/participants’ names, member number, organization, department, title, and mailing address on flat mailing address labels. These third parties use the list to share information of interest on upcoming events, research findings, or professional opportunities and are asked to prove their compliance with Data Protection standards. Members/Participants are asked if they opt in to sharing with third parties. All financial information is kept strictly confidential. Do-Not-Track Disclosure: Some browsers have a “Do Not Track” feature that allows you to communicate to websites that you do not want to have your online activities tracked. Our system does not respond to Do Not Track requests or headers from some or all browsers at this time. asked if they opt in to sharing with third-parties. All financial information is kept strictly confidential.
SHEA is committed to data privacy for its users and is committed to processing data in accordance with its responsibilities under the General Data Protection Regulation.
Lawful, fair and transparent processing
To ensure its processing of data is lawful, fair and transparent, SHEA shall maintain a Register of Systems.
The Register of Systems shall be reviewed at least annually.
Individuals have the right to access their personal data and any such requests made to SHEA shall be dealt with in a timely manner.
Lawful purposes
All data processed by SHEA must be done on one of the following lawful bases: consent, contract, legal obligation, vital interests, public task or legitimate interests (see ICO guidance for more information).
SHEA shall note the appropriate lawful basis in the Register of Systems.
Where consent is relied upon as a lawful basis for processing data, evidence of opt-in consent shall be kept with the personal data.
Where communications are sent to individuals based on their consent, the option for the individual to revoke their consent should be clearly available and systems should be in place to ensure such revocation is reflected accurately in SHEA’s systems.
Data minimization
SHEA shall ensure that personal data are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
Accuracy
SHEA shall take reasonable steps to ensure personal data is accurate.
Where necessary for the lawful basis on which data is processed, steps shall be put in place to ensure that personal data is kept up to date.
SHEA shall update the data during membership renewals and based on registrations as needed.
Archiving/removal
To ensure that personal data is kept for no longer than necessary, SHEA shall put in place an archiving policy for each area in which personal data is processed and review this process annually.
The archiving policy covers members only and includes membership information for 10 years of basic demographic information such as name, organization, title, and address.
Security
SHEA shall ensure that personal data is stored securely using modern software that is kept-up-to-date.
Access to personal data shall be limited to personnel who need access and appropriate security should be in place to avoid unauthorized sharing of information.
When personal data is deleted this should be done safely such that the data is irrecoverable.
Appropriate back-up and disaster recovery solutions shall be in place.
Breach
In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data, SHEA shall promptly assess the risk to people’s rights and freedoms and if appropriate report this breach
This policy governs data at www.shea-online.org and its annual meeting website, www.sheaspring.org. SHEA may change the content or services provided on this Website at any time and without notice. By accessing the website, all users agree to the terms of the policy.
If you have any questions, please contact SHEA at info@shea-online.org.