Effective Date: 19-12-2023 (DD-MM-YYYY)
Thank you for using Lawnotation (“we,” “our”, “us”, or “our platform”). Your privacy is important to Maastricht University (UM) and that is why UM handles your data with care. The UM is the controller of your personal data. How UM guarantees your privacy is set out in this privacy statement. This privacy statement specifically relates to the processing of personal data in the context of when you access or use our online Lawnotation platform.
The UM also has a general privacy statement, which you can find at www.maastrichtuniversity.nl. Here and there reference will be made to this general privacy statement for more information.
If you have any questions regarding the use of the Lawnotation platform please contact biss-devs@maastrichtuniversity.nl.
If you have any questions about this privacy statement, would like to know more about how UM handles personal data or perhaps you have a complaint, you can contact:
Maastricht UniversityAttn: Data Protection OfficerPO Box 616 6200 MD Maastrichtprivacy@maastrichtuniversity.nl
You can also reach the UM data protection officer directly via fg@maastrichtuniversity.nl.
UM processes your email address. UM obtains these personal data directly from you, by signing up for an account for our platform. We do not collect any other personal data.
All other data collected is related to the use of Lawnotation itself. This data is related to, but not limited to, projects, documents, tasks, assignments, label sets, and annotations.
UM processes your personal data for the following purposes:
Sending login emails: when you login on our platform using your email address for the first time, we automatically create an account for you using your email address and send you an email with a link to login on our platform. After we have created an account using your email address, every time you login using your email address we send an email with a link to login on our platform.
Creating an account for you: to keep track of all the projects, tasks, and annotations that belong to your user account.
Notifying you on any data breaches: in case of any data breach – such as your email address or any of your data stored on the Lawnotation platform – we will use your email address to notify you about the situation as per Article 33 of the GDPR.
Sending newsletters: if you opt-in to our newsletter, we will use your email address to send you updates and promotional content about the Lawnotation platform, no more than once per week. Subscribing to our newsletter is optional and voluntary. You can unsubscribe at any time.
Whenever UM processes your personal data, it does so with a lawful basis for processing. UM will process personal data in performance of the agreement between UM and you. UM may also request your permission to process some personal data. In that case, the ground for processing is consent.
UM has taken measures to ensure that only those people involved in processing your data have access to them. Your email address and other non-personal data is stored into a secured third-party database (Supabase) with whom we have signed a Data Processing Agreement (DPA).
We do not sell, trade, or otherwise transfer your email address to outside parties. We may, however, share your email address with a trusted third-party service provider (Mailtrap) with whom we have signed a Data Processing Agreement (DPA) to help us with email delivery services.
Whenever another user adds you to a project on Lawnotation, all members of the project will be able to see your email address. Whenever you create a project on Lawnotation and invite other users, all invited members will be able to see your email address.
You have access to all the data you create on Lawnotation. If you are a team member on a project, the project owner will also have access to your data such as annotations, relations, confidence scores etc.
The developers of Lawnotation have access to your data limited to development and debugging purposes only.
We use industry-standard security measures to protect your email address and other data from unauthorized access, alteration, disclosure, or destruction.
Retention periods UM retains personal data no longer than is necessary to achieve the purpose of the data processing or to meet a legal obligation.
Privacy legislation gives you a number of rights with regard to your personal data. These rights are outlined below. You can find more information about these rights and how to exercise them in the general privacy statement at www.maastrichtuniversity.nl.
You have the right to access your personal data and to have those data corrected or deleted. In addition, you have the right to restrict the processing of your data, to transfer your data to another party, and to object when they are processed on the basis of a legitimate interest.
If you wish to exercise one of the above rights, please send an email to privacy@maastrichtuniversity.nl or directly to the data protection officer at fg@maastrichtuniversity.nl.
If you have a complaint about the processing of your personal data at UM, please contact us using the above contact details. You also have the right to file a complaint with the Dutch Data Protection Authority. You can find out how to do so on the website of the Data Protection Authority.
We may update this privacy statement from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the updated privacy statement on our platform. Your continued use of the platform after such changes signifies your acceptance of the updated privacy statement.
Please contact us at biss-devs@maastrichtuniversity.nl.