Privacy Policy
Last updated: 1 July 2026
This Privacy Policy explains how personal data is processed when you visit or use the SEISMIC website.
SEISMIC is an Innovative Health Initiative (IHI) research project coordinated by Philips, together with Erasmus MC as academic lead. This Privacy Policy only applies to the SEISMIC website and its related website functions, such as the contact form and newsletter subscription. It does not apply to personal data processed as part of clinical studies, research participation, patient care, or other research activities carried out by SEISMIC consortium partners. Those activities are governed by separate participant information sheets, consent forms and/or privacy notices provided by the relevant organisation conducting the research.
1. Summary
When you use the SEISMIC website, we may process limited personal data for the following purposes:
- to respond to messages submitted through the contact form;
- to send project updates or newsletters if you subscribe;
- to understand general website usage through privacy-friendly, cookieless analytics;
- to keep the website secure, functional and available.
We do not sell personal data. We do not use advertising pixels, retargeting tags, Google Analytics or Google Tag Manager. The website is not intended for children.
You can contact us about privacy matters at:
2. Who is responsible for your personal data?
For the SEISMIC website, personal data is processed in the context of the SEISMIC project, coordinated by Jaap Van Der Voet (Philips Medical Systems Nederland BV) together with Pieter Kruizinga (Erasmus MC) as academic lead.
Because SEISMIC is a consortium project and not a separate legal entity, the exact controller role may depend on the specific processing activity. For website-related processing, privacy questions can be directed to:
SEISMIC privacy contact
Email: seismic@erasmusmc.nl
Where required, your request may be forwarded to the appropriate SEISMIC project partner or responsible organisation.
At the time of publication, no formal Data Protection Officer has been appointed specifically for the SEISMIC website. Privacy-related questions can be sent to the contact address above.
3. Scope of this Privacy Policy
This Privacy Policy applies only to the SEISMIC website, including:
- visits to the website;
- contact form submissions;
- newsletter or project update subscriptions;
- basic website analytics;
- website hosting, security and maintenance.
This Privacy Policy does not cover:
- clinical studies;
- patient recruitment;
- research participation;
- medical or health data processed by hospitals, universities or research partners;
- informed consent procedures for study participants;
- internal consortium administration outside the website.
If you participate in a clinical study or research activity connected to SEISMIC, the organisation responsible for that study will provide separate privacy information.
4. Personal data we process
4.1 Contact form
If you contact us through the website contact form, we may process the following data:
- name;
- email address;
- organisation;
- reason for contacting;
- message content;
- technical metadata related to the form submission, such as date and time of submission.
We use this data to receive, assess and respond to your message.
4.2 Newsletter or project updates
If you subscribe to the SEISMIC newsletter or project updates, we may process:
- email address;
- subscription status;
- unsubscribe status;
- email engagement data, such as opens and clicks, depending on the email tool used.
The email marketing or newsletter tool has not yet been finally selected. Once selected, this Privacy Policy should be updated with the name of the provider and relevant processing details.
4.3 Website analytics
The SEISMIC website uses Plausible Analytics, a privacy-friendly analytics tool. Plausible is used to collect aggregated website statistics, such as:
- page views;
- referral sources;
- approximate location at country or regional level;
- device type;
- browser type;
- operating system;
- screen size;
- pages visited;
- time of visit.
Plausible is configured as a cookieless analytics tool and does not use tracking cookies or advertising identifiers. The analytics data is used to understand how the website is used and to improve the website.
4.4 Website hosting, security and technical logs
When you visit the website, certain technical data may be processed automatically by hosting, CDN, security and infrastructure providers. This may include:
- IP address;
- browser and device information;
- requested pages and files;
- date and time of access;
- technical error logs;
- security-related events.
This data is processed to make the website available, secure and reliable.
5. Purposes and legal bases
We process personal data only where we have a valid legal basis under the GDPR.
The contact form may include a required acknowledgement confirming that you have read this Privacy Policy. This acknowledgement is intended to make the processing transparent and should not be interpreted as the only legal basis for processing contact form data.
6. Newsletter unsubscribe
If you subscribe to the newsletter or project updates, you can unsubscribe at any time by using the unsubscribe link included in the email or by contacting:
After unsubscribing, we may retain limited information necessary to record that you have unsubscribed and to avoid sending you further newsletters.
7. Cookies
The SEISMIC website does not use analytics cookies, advertising cookies, tracking pixels or retargeting technologies.
Plausible Analytics is used as a cookieless analytics solution. No cookie consent banner is used for analytics because no analytics cookies are placed.
If strictly necessary technical cookies or similar technologies are introduced in the future, this Privacy Policy should be updated accordingly. If non-essential cookies are introduced, appropriate consent mechanisms should be implemented.
8. Who has access to personal data?
Personal data may be accessed by the following parties where necessary:
- authorised SEISMIC project representatives;
- Philips and/or Erasmus MC in their project coordination roles;
- relevant SEISMIC consortium partners, where needed to respond to your inquiry;
- Overflow Agency, as website developer and maintenance provider;
- Webflow, as website hosting and form infrastructure provider;
- the selected newsletter/email tool provider;
- Cloudflare or another CDN/security provider;
- IT, security, hosting and support providers.
Access is limited to what is necessary for the relevant purpose.
We do not sell personal data and we do not share personal data with third parties for their own advertising purposes.
9. Processors and service providers
We use external service providers to operate and maintain the website. These providers may process personal data on our behalf.
Current or expected service providers include:
- Webflow — website hosting, CMS and form submission storage;
- Plausible Analytics — privacy-friendly website analytics;
- Cloudflare — CDN, performance and security services;
- [Email tool to be confirmed] — newsletter and project update distribution;
- Overflow Agency — website development, support and maintenance.
Where required, appropriate data processing agreements are used with service providers.
10. International data transfers
Some service providers may process or access personal data outside the European Economic Area, including in the United States. For example, Webflow may process or store certain data in both the EU and the US.
Webflow’s Data Processing Addendum is incorporated by reference in Webflow’s Terms of Service and applies to the use of Webflow as processor. The DPA includes the EU Standard Contractual Clauses and other relevant transfer mechanisms for international transfers.
Where personal data is transferred outside the EEA, appropriate safeguards will be used where required, such as:
- Standard Contractual Clauses approved by the European Commission;
- adequacy decisions, where applicable;
- additional technical and organisational safeguards;
- data processing agreements with relevant providers.
11. How long we keep personal data
We do not keep personal data longer than necessary for the purposes described in this Privacy Policy.
Current retention periods are:
If the SEISMIC project is extended or if legal, audit, funding or reporting obligations require longer retention, data may be retained for a longer period where permitted by law.
12. Security
We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or disclosure.
These measures may include:
- HTTPS/SSL encryption;
- secure website hosting;
- restricted access to systems;
- role-based access controls;
- backups;
- encryption where appropriate;
- processor agreements with service providers;
- security measures provided by hosting, CDN and infrastructure providers;
- limited access for website maintenance and support.
No system can be guaranteed to be completely secure, but reasonable measures are taken to protect personal data.
13. Your privacy rights
Under the GDPR, you may have the following rights, depending on the situation:
- the right to access your personal data;
- the right to correct inaccurate or incomplete personal data;
- the right to request deletion of your personal data;
- the right to restrict processing;
- the right to object to processing based on legitimate interests;
- the right to withdraw consent where processing is based on consent;
- the right to data portability, where applicable;
- the right to lodge a complaint with a supervisory authority.
To exercise your rights, please contact:
We may need to verify your identity before responding to your request.
14. Right to withdraw consent
Where we process your personal data based on consent, you can withdraw your consent at any time.
For newsletters or project updates, you can withdraw consent by clicking the unsubscribe link in the email or by contacting us at:
Withdrawing consent does not affect the lawfulness of processing before consent was withdrawn.
15. Right to object
Where we process personal data based on legitimate interest, you may object to that processing. We will assess your objection and stop processing your personal data unless we have compelling legitimate grounds to continue, or unless processing is necessary for legal claims.
16. Complaints
If you believe that your personal data has not been handled properly, please contact us first so we can try to resolve the issue.
You also have the right to lodge a complaint with a data protection supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens:
Autoriteit Persoonsgegevens
Website: autoriteitpersoonsgegevens.nl
You may also contact the supervisory authority in the EU Member State where you live, work, or where you believe an infringement has occurred.
17. Children
The SEISMIC website is not aimed at children or minors. We do not knowingly collect personal data from children through the website.
18. Automated decision-making
The SEISMIC website does not use personal data for automated decision-making or profiling that produces legal or similarly significant effects for individuals.
19. Changes to this Privacy Policy
We may update this Privacy Policy from time to time, for example if website functionality, service providers or legal requirements change.
The latest version will always be published on the SEISMIC website. The date at the top of this Privacy Policy indicates when it was last updated.
20. Contact
For questions about this Privacy Policy or the processing of personal data through the SEISMIC website, please contact:
SEISMIC
Email: seismic@erasmusmc.nl