Skip links
OneHealth Summer School

Privacy policy

Last updated: 16 December 2025

This Privacy and Cookie Policy explains how personal data is collected and processed when you use the website onehealthsummerschool.eu and submit an application to the One Health Summer School.

Data controller

This website (onehealthsummerschool.eu) is operated as part of the Horizon Europe project “IDAlert – Infectious Disease decision-support tools and Alert systems.”

The data controller for the personal data processed via this website and its application forms is:

Three o’clock
hello@threeoclock.co

If you have any questions about this Privacy and Cookie Policy or the processing of your personal data, please contact Three o’clock using the email address above.

What data is collected and how

When you apply to the One Health Summer School using the online forms on this website, you provide and Three o’clock collects the following personal data:

  • Name
  • Email address
  • Organisation or university affiliation
  • Phone number

No personal data is collected through cookies or other tracking technologies for analytics, marketing, or profiling purposes.

Only the information that you actively and voluntarily submit via the forms is processed for the purposes described below.

Purposes and legal bases for processing

Your personal data is processed for the following purposes:

  • To receive, review, and manage your application to the One Health Summer School.
  • To communicate with you regarding your application, selection results, and any questions you may have.
  • If you are selected, to manage your participation in the programme, including logistical information and updates.
  • To keep basic records necessary for project administration and reporting within the organising institutions and projects.

The legal bases for processing under Article 6 GDPR are:

  • Article 6(1)(b) GDPR: processing is necessary for the performance of a contract or in order to take steps at your request prior to entering into a contract (managing your application and, if selected, your participation).
  • Article 6(1)(f) GDPR: processing is necessary for the purposes of the legitimate interests pursued by the controller (project administration, accountability, and reporting), balanced against your rights and freedoms.

If the application form includes optional checkboxes for additional purposes (such as receiving future news or related events), that additional processing will be based on your consent under Article 6(1)(a) GDPR, and you may withdraw that consent at any time without affecting the lawfulness of processing that took place before withdrawal.

Data recipients and hosting

Your personal data is stored and processed using technical infrastructure provided by the hosting provider IONOS, with whom an appropriate data processing agreement is in place in accordance with Article 28 GDPR.

Within the OneHealth Summer School, access to your data is restricted to authorised persons at Three o’clock and, where strictly necessary, to designated project partners who are involved in the organisation and delivery of the One Health Summer School. These persons use your data only for the purposes described in this policy and are subject to confidentiality obligations.

Your personal data will not be sold and will not be shared with third parties for their own marketing purposes.

If data is ever transferred outside the EU/EEA, this will only occur where appropriate safeguards are in place in accordance with Chapter V GDPR (such as an adequacy decision or standard contractual clauses).

Data retention

Your personal data will be kept only for as long as necessary for the purposes set out in this policy and to comply with applicable legal or funding obligations.

Indicatively:

  • Data of selected participants may be retained for the duration of the Summer School and any applicable statutory or funder‑imposed retention periods.
  • Data of non‑selected applicants will be deleted or anonymised after the selection process and any short administrative follow‑up period, unless a longer retention period is required by law or clearly justified and communicated.

Once the relevant retention period has expired, personal data will be securely deleted or irreversibly anonymised.

Your rights under GDPR

Under the General Data Protection Regulation, you have the following rights in relation to your personal data:

  • Right of access: to obtain confirmation as to whether your data is being processed and to receive a copy.
  • Right to rectification: to have inaccurate or incomplete data corrected.
  • Right to erasure (“right to be forgotten”): in the cases provided by law.
  • Right to restriction of processing: in specific circumstances.
  • Right to data portability: where processing is based on consent or contract and carried out by automated means.
  • Right to object: to processing based on legitimate interests, on grounds relating to your particular situation.
  • Where processing is based on consent, the right to withdraw consent at any time, without affecting processing carried out before withdrawal.

To exercise any of these rights, please contact Three o’clock using the email address indicated above, clearly stating your request and providing sufficient information to identify you.

You also have the right to lodge a complaint with the competent data protection authority in the EU/EEA country where you live, work, or where you believe an infringement has occurred.

Security of processing

Appropriate technical and organisational measures are implemented to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures take into account the state of the art, implementation costs, and the nature, scope, context, and purposes of processing.

The website uses SSL/TLS encryption (HTTPS) to help protect data transmitted via the application forms. Access to personal data is limited to authorised persons who need it for their tasks and who are bound by confidentiality obligations.

Cookies and tracking technologies

This website does not use cookies or similar technologies for analytics, advertising, or user profiling.

Only elements strictly necessary for the basic technical functioning and security of the website may be used. Standard server logs may be generated by the hosting provider (IONOS) to ensure the operation and security of the service; these logs are handled according to the provider’s own data protection rules and the data processing agreement with IONOS.

If, in the future, non‑essential cookies or similar technologies are introduced (for example, for analytics), this policy will be updated and you will be informed, and where required under applicable law, your consent will be requested before such technologies are used.

Links to other websites

This website may contain links to websites of partners, funders, or other external organisations. This Privacy and Cookie Policy applies only to onehealthsummerschool.eu. When visiting linked sites, you are encouraged to read their own privacy policies.

Changes to this policy

This Privacy and Cookie Policy may be updated from time to time, for example to reflect changes in legal requirements, the IDAlert project, or the way personal data is processed. The date at the top of this document indicates when the policy was last updated.

This website uses cookies to improve your web experience.
This site is registered on portal.liquid-themes.com as a development site. Switch to production mode to remove this warning.