Social and Legal Studios complies with the requirements of the General Data Protection Regulation (GDPR) of the European Union regarding the collection, processing, storage and use of personal data of authors, reviewers, editors, readers and other users of the journal.
Personal data, including names, email addresses, affiliations, ORCID identifiers, contact details and other information provided by users, are used exclusively for purposes related to the editorial, publishing and scholarly communication activities of the journal. Such data may be used for the submission, consideration, peer review, editing and publication of manuscripts, communication with authors and reviewers, preparation of metadata, indexing, archiving and ensuring access to published materials.
The editorial office does not use personal data for unrelated purposes, does not sell them and does not transfer them to third parties, except where this is necessary for the operation of the journal, the performance of editorial procedures, indexing, archiving, technical support of the platform or compliance with legal requirements.
In accordance with the GDPR, users have the right to access their personal data, to request their rectification, restriction of processing, portability and erasure, as well as the right to withdraw consent to data processing where such processing is based on consent. Requests concerning the exercise of these rights may be sent to the official email address of the journal.
At the same time, the journal recognises the public interest in preserving the integrity of the scholarly record. Therefore, certain data that form part of published materials, bibliographic metadata, editorial history, journal archives or records necessary to confirm authorship, peer review, correction, retraction or the consideration of ethical issues may be retained for the period necessary to ensure the reliability, traceability and integrity of scholarly publication.
In the event of a personal data security breach, the journal takes the necessary measures in accordance with the GDPR, including assessing possible risks, minimising the consequences of the breach and, where necessary, notifying the relevant individuals or competent authorities in accordance with applicable law.