Read your latest personalised notifications
No account yet? Start here
Don't miss out
Ok, got it
Version française disponible sur demande / French version available on request.
The ESC complies with the General Data Protection Regulation (GDPR) 2016/679 and the data protection laws in France, and takes all reasonable care to prevent any unauthorised access to your personal data. The ESC respects your privacy and is committed to safeguarding the confidentiality of your personal information. This policy explains how and why the ESC collects and uses the personal information of its members, customers and website visitors, and how the ESC protects your privacy. It also explains how you can manage your own personal information held in the ESC system through ‘My ESC’ on the ESC Websites.
When disclosing your personal information to us by using ‘My ESC’ on our Websites or by completing and submitting paper or electronic forms to us, you consent to the collection, storage and processing of your personal information as stated in this policy.
The personal information that we collect from you shall be obtained, processed and transmitted in compliance with applicable data protection legislation – European Regulation 2016/679 (GDPR) and, as our offices are located in France, the French data protection law N°78-17 of January 6, 1978. Per the European Regulation 2016/679 (GDPR), "Personal Information" means any information relating to an identified or identifiable natural; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This general policy is in addition to any specific policies concerning specific products or services. It may be amended at any time so we invite you to visit this page regularly for updates.
The ESC is a non-profit association which combines a wide range of activities in the field of cardiology, including:
This may require the handling of personal information of the individuals involved in these activities and hence the ESC collects personal information in a number of ways from a number of sources. This information may be communicated to the ESC on paper forms received through the postal services or by fax, or electronically through registration on the ESC Website and use of the ESC’s online services (‘My ESC’) or through other electronic forms made available through partner websites.
The sources of personal information received by the ESC are:
As per Article 14 of the European Regulation 2016/679, where we receive personal information about individuals from sources other than the individuals themselves (eg for ESC membership or congress registrations), we will take all practical steps to contact the person concerned to advise of their rights.
The principal ways in which the ESC collects personal information are:
As a general rule, the following minimum information must be provided in order for your order, request, application, etc. to be processed.
Additional personal information, which is mandatory for persons creating a ‘My ESC’ account on the ESC website is:
to enable us to provide you with more relevant information and to better understand the preferences of our audience so that we can give a better service generally.
Other information may be requested which is necessary or relevant for specific activities.
Mandatory information for specific purposes
When you visit ESC Websites, information is collected in an automated manner about your computer/device, your IP address, the referring website, what pages you visit, how long you stay on them and the general use you make of the website.
When you make use of our services (purchase a subscription, registration or product or consume an educational product), we keep track of this activity in logs.
During an ESC congress or event, attendees may be photographed and videotaped by ESC or its partners capturing the event. Some of these photographs or videos may be displayed by the ESC or its partners in future publications or materials connected with the event as well as social media. If you do not wish for your image to be displayed by the ESC, please go to the information desk or one of the registration desks onsite during the congress to have a specific sticker added to your badge. Without contradictory instructions from your side, you hereby grant the European Society of Cardiology (ESC), the irrevocable rights to record and use free of charge, on a worldwide basis and for the entire duration of protection of the rights thereto, on any and all supports or forms of media, your image, voice, name, photographs, and video on which you appear for purposes related to Scientific, Educational or Promotional Purposes. You hereby release, waive and discharge the European Society of Cardiology (ESC), its employees and independent contractors from any and all demands, claims, causes of action, damages and liabilities directly or indirectly arising out of any use of your image, voice or name pursuant to the foregoing rights grant.
Agreements made between the ESC and the ESC National Cardiac Societies (NCS) state that the NCS must provide up to date information on their members. This information is used to either create a My ESC account or update an existing account with the NCS membership status. As per Article 14 of the European Regulation 2016/679, where we receive personal information about individuals from ESC National Cardiac Society, we will take all practical steps to contact the person concerned to advise of their rights. For more information on this process, please contact your National Cardiac Society.
Personal information is needed by the ESC to enable it to properly manage its member and customers to fulfill its role in providing a wide range of services.
The personal information which you supply may also be specifically used to:
The information we collect automatically is used to:
Your personal My ESC account is only kept for a reasonable period of time, dependent upon the nature of the information and its intended use, but subject to a maximum of five years after your last use of an ESC product or service.
For certain specific uses (e.g. leadership positions, exam certifications, etc) are kept for varying amount of times according to the process involved. Should you wish to know how long your personal data will be kept for specific processes, please contact us.
For accounting purposes, invoices and expense claims are kept for 10 years in our systems.
Electronic communication is for most purposes the ESC’s preferred method of communication because it is generally convenient, rapid, effective and efficient. In order to be able to communicate with you directly electronically, the ESC needs your email address. You are therefore required to supply your email address when you create your ‘My ESC’ account on the ESC Website, which enables you to access a variety of services online.
For your convenience and security, your email address is unique to you in the system. (The ESC does not permit two different persons to have the same email address in the system). You are strongly recommended to use an email address which is personal to you and that is not shared with others. This is to ensure that communications which are sent to you personally are not read by others, and that others do not gain access to the information in your ‘My ESC’ account. Additionally, the unique email permits handling of “Forgot Password”, enabling you to reset your password in an automated and secure way using your personal email address.
The ESC respects the privacy of personal email addresses and complies with the current European legislation on email communication. The objective is not to send you unwanted messages, and your email details will not be passed on to any other individual or organisation without your permission for marketing purposes.
You can manage the extent to which the ESC communicates with you by using the email preferences section in your ‘My ESC’ account. Here you are asked to indicate whether or not you wish to receive ESC generated emails. If you decide that you do wish to receive email communications from the ESC you can select which categories of news interest you. All mailings sent to you offer the possibility to unsubscribe.
If you indicate that you do not wish to receive ESC generated emails you will only receive emails directly related to the transactions you have with the ESC (eg confirmations of registrations, etc.) and other necessary individual communications.
The ESC does not sell, trade, or rent your personal information to others. The ESC may supply your information to its contractors to perform specific services such as, for example, to the publishers who deliver ESC journals, the mobile app suppliers who supply guidelines, recommendations and congress applications, CRM service providers (eg Salesforce), email service providers (eg Salesforce Marketing Cloud), banking partners (Ogone), and others.
Otherwise, the ESC does not disclose personal information to any other person or organisation without your consent. In this context, your personal data may be disclosed to the following external partners of the ESC in the circumstances described below:
In accordance with the chapter 3 of the European Regulation 2016/679 with regards to data protection, you have the right to request from ESC, access to and rectification or erasure of your personal data or restriction of processing concerning your data or to object to processing as well as the right to data portability.
For such, please contact firstname.lastname@example.org (be aware that a proof of identity will be requested during the process via a secure web link).
You have the right to lodge a complaint with a supervisory authority, and for information, ESC has appointed a Data Protection Officer that you can reach at email@example.com.
When you visit ‘My ESC’ you have direct control over the information in your personal profile. You can access and change this information at any time from your ‘My ESC’ account.
Note that an opposition or deletion request once treated will not delete all trace of financial transactions which need to be kept, for accounting purposes, for a duration of 10 years.
To protect your information, the ESC uses an industry standard security protocol called Transport Layer Security (TLS) to encrypt the transmission of sensitive information between you and our Websites. To know if transmissions are encrypted, look for the lock on your web browser or check that the URL starts with https://.
Unfortunately, no company or service can guarantee complete security. Your account is protected by a password for your privacy and security. We strongly suggest you prevent unauthorized access to your account by selecting and protecting an appropriate password and limiting the access to your computer and devices. To assist you in ensuring security, we require a complex password be set to access your account which must comprise of at least 8 characters including letters, numbers and special characters. After 10 wrong password attempts, your account will be locked.
Please note that the ESC will never ask you for your personal details, password or credit card details by email. We advise you to be vigilant and apply caution. All transactions should go through your secure My ESC area.
Payment collection is made securely through our banking partner, Ogone, provided by Ingenico ePayments, a Payment Card Industry Data Security Standard (PCI-DSS) certified organization. PCI-DSS is an information security standard that has been created by the major credit card companies (American Express, Discover, JCB, MasterCard and Visa) to improve controls around credit card data handling and to reduce fraud.
In order to be certified, Ingenico ePayments undergoes regular assessments by external parties: Penetration testing, vulnerability assessment and audit by an external Qualified Security Assessor (QSA).
If you have requested to save your payment details, only the credit card type, last 4 digits and expiration dates are stored in our CRM. The full details are only kept by Ogone, our financial partner, on their secure servers.
Cookies are pieces of information that a website transfers to your computer’s hard disk for record keeping purposes. They are small text files that a website can use to recognise repeat users and facilitate their ongoing access to, and use of, the site. They do not pose a threat to your system or files.
We also use clear gifs in our email marketing communications which is used to track the emails that are opened by the recipients. This information allows us to have accurate reports and improve the effectiveness of our marketing and make our services and Websites better for you.
Finally, we utilise web analysis services to better understand your use of our Websites and services. These services collect information such as what pages you visit, how long you stay on them and where you came from before visiting that page. This information is used to examine the use of the Websites as well as potentially your actions to contextualise and personalise some of our content to your personal interests.
You do not need to register to access most of the ESC Websites, but you do have to register to use personal services online and access certain web content.
The details you supply the ESC may be combined with information from other ESC records to:
‘My ESC’ enables you to manage your personal information held by the ESC. If you are a Member of the ESC, or have used ESC products and services, a record will already exist for you which you can potentially access by logging in online through:
Last updated 25 May 2018
Our mission: To reduce the burden of cardiovascular disease
© 2018 European Society of Cardiology. All rights reserved