1. Who we are

Our website address is: https://iea.cc. This website is operated by International Ergonomics Association (IEA), a non-profit international organisation registered in the municipality of Thônex, Geneva, Switzerland, pursuant to article 60 et seq of the Swiss Civil Code.

As the Data Controller, we are committed to protecting your personal data and respecting your privacy in accordance with applicable laws.

2. Applicable Laws

As an organisation based in Switzerland operating globally, we process personal data in compliance with:

  • The Swiss Federal Act on Data Protection (nFADP).

  • The General Data Protection Regulation (GDPR) of the European Union, where applicable to our website visitors.

3. Information We Collect and How We Use It

The public areas of our website are informational and do not require user registration. We collect limited personal data depending on how you interact with the site:

A. General Website Visitors

  • Technical Data: When you visit our site, our servers automatically collect basic technical information, such as your IP address, browser type, operating system, and the pages you view.

  • Legal Basis: This data is processed based on our Legitimate Interest in ensuring the security, stability, and functionality of our website.

B. Authorized Users (Members / Administrators) While public registration is not available, we maintain a secure login portal for IEA administrators and representatives of Federated Societies.

  • If you log into this portal, we process your login credentials and session data.

  • Legal Basis: This processing is necessary for the Performance of a Contract or our legitimate interest in securely managing the association’s administration.

4. Cookies and Tracking Technologies

We use cookies to ensure our website functions correctly and to analyze how visitors use our site.

  • Essential Cookies: If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. When you log in, we set cookies to save your login information and screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login persists for two weeks. These cookies are strictly necessary for authenticated sessions.

  • Analytics Cookies: We use Google Analytics to measure website traffic and performance. Google Analytics uses cookies to collect anonymized data about your visit. This data is only processed if you grant active consent via our cookie consent banner.

5. Who We Share Your Data With

We do not sell, rent, or trade your personal data. However, your data may be processed by trusted third-party service providers (Data Processors) to ensure site functionality, security, and performance:

  • GoDaddy: Provides our web hosting infrastructure. Processes technical server logs.

  • Cloudflare: Provides website security, bot management, and content delivery network (CDN) services. Processes IP addresses strictly for routing and security checks.

  • Google Analytics: Provides aggregated website traffic analysis (subject to your consent).

6. International Data Transfers

Because we utilize international service providers (such as GoDaddy, Cloudflare, and Google), technical data like your IP address or analytics information may be transferred to and processed on servers located outside of Switzerland and the European Economic Area (EEA), including the United States. We ensure that our partners comply with international data transfer frameworks (such as Standard Contractual Clauses or the Data Privacy Framework) to guarantee an adequate level of data protection.

7. How Long We Retain Your Data

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy:

  • Server Logs & Security Data: IP addresses and technical logs are retained for a short period (typically up to 30 days) before being automatically deleted or anonymized.

  • Analytics Data: Data collected via Google Analytics is retained for 14 months before being automatically deleted.

  • Login Data: Retained for the duration of the active session or as outlined in the “Cookies” section above.

8. Embedded Content from Other Websites

Pages on this site may include embedded content (e.g., videos, images, maps, articles). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These external websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction if you have an account and are logged in to that website.

9. What Rights You Have Over Your Data

Under the nFADP and GDPR, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of the personal data we hold about you.

  • Right to Rectification: Request correction of inaccurate or incomplete data.

  • Right to Erasure (Right to be Forgotten): Request deletion of your personal data, provided we are not obliged to keep it for administrative, legal, or security purposes.

  • Right to Withdraw Consent: You can withdraw your consent for Google Analytics tracking at any time by clearing your browser cookies or updating your preferences in our cookie banner.

10. Contact Information

If you have any questions about this Privacy Policy, wish to exercise your data rights, or have concerns about how your data is handled, please contact us at:

International Ergonomics Association (IEA) Email: secretariat@iea.cc