Data Rights

Data Collection and Processing Principles

DB Sentences is committed to upholding the highest standards for the lawful collection and processing of personal data in compliance with applicable data protection laws in the United States of America. We only gather personal information that is necessary to provide and enhance our pharmaceutical and health reference services. Collected data may include identifying information such as name, email address, and usage history when users interact with our website. This data is obtained through user submissions, registration forms, and website analytics to ensure a seamless, expert-informed experience for all users. We process personal data with clear, explicit purposes and refrain from collecting any data beyond what is required for our services. Individuals who engage with our resources will have their data processed in a manner that ensures accuracy, security, and ongoing confidentiality.

Legal Ground for Data Processing

All personal data collected by DB Sentences is processed on lawful grounds, such as user consent, fulfillment of contractual obligations, and where necessary to uphold legitimate business interests. These legal bases are applied carefully to each category of activity involving personal data, including communication, service improvement, system maintenance, and compliance with regulatory obligations. We will always inform users about the specific grounds for processing their data at the time of collection, ensuring transparency and accountability. In instances where consent is relied upon, users have the freedom to withdraw that consent at any time without prejudicing their access to core website resources.

Data Protection and Security Measures

We maintain robust data protection and security protocols designed to safeguard personal data against unauthorized access, disclosure, alteration, and destruction. Industry-standard encryption technologies, access control measures, and continual security monitoring are in place to preserve the confidentiality, integrity, and availability of user data. All data transmissions to and from the website utilize secure protocols, and our team undergoes regular privacy and security training to stay updated with best practices and regulatory requirements. Administrative, technical, and physical measures are periodically reviewed and enhanced to adapt to evolving threats and protect sensitive health and pharmaceutical information.

Data Subject Rights

DB Sentences affirms the data subject rights recognized under applicable data protection laws, such as the right to access, rectify, erase, restrict, or object to the processing of personal data. Users may request a copy of their personal data in a structured and commonly used format, as well as seek correction of inaccurate or incomplete information. When deletion is sought, we will comply unless retention is required for legal compliance or essential service provision. Data subjects also have the right to request information about any automated decision-making or profiling that may affect them. For all such requests, contact the data controller at [email protected] or by post to Graham Laskett, University of Sheffield, Western Bank, Sheffield, S10 2TN, United Kingdom.

Data Retention Policy

Personal data is retained only for the period necessary to fulfill the purposes outlined at the time of collection, or as mandated by applicable law. Once those purposes are satisfied or the retention period lapses, data is securely deleted or anonymized. We periodically review the necessity of retaining data and undertake systematic erasure when information is no longer needed. We also implement records management protocols to ensure compliance with relevant retention schedules without compromising users’ data rights. Detailed retention periods for specific categories of data may be obtained upon request through our official contact channels.

Third-Party Sharing and International Transfers

DB Sentences does not disclose personal data to third parties except when required by law, in connection with website operations, or with explicit user consent. Where external service providers or partners are engaged, contractual safeguards are implemented to ensure the confidentiality and lawful processing of data. In situations where personal data must be transferred outside the United States, transfer mechanisms compliant with international data protection standards are employed, such as standard contractual clauses and appropriate security controls. The details of such transfers are made available to users upon request, along with the measures taken to safeguard their personal information during cross-border exchanges.

Children's Data Protection

We do not knowingly collect or process information from individuals under the age of 13 without verifiable parental consent. Our website and content are designed for healthcare professionals, students, and adults seeking pharmaceutical knowledge. If we become aware of inadvertently collected data from minors, immediate action is taken to securely remove the data and mitigate any associated privacy risks. Parents or guardians seeking to exercise data subject rights on behalf of their children or to report inadvertent data collection are advised to contact us directly at [email protected].

Contacting the Data Controller

For all inquiries or concerns related to data protection, privacy rights, or this policy, users may contact the data controller, Graham Laskett, at [email protected] or write to: University of Sheffield, Western Bank, Sheffield, S10 2TN, United Kingdom. We are dedicated to prompt and transparent engagement and will address all requests relating to personal data, complaints, or clarification regarding our privacy practices in line with applicable United States law and industry standards.