Privacy Policy


This policy explains what information we gather when you visit, and explains how that information is used.

Any changes to this privacy policy will be posted on this page. It was last updated on 16th March 2015.

Data collected

In common with most web sites, this site automatically logs certain information about every request made of it (see ‘logged data’ below for more details). This information is used for system administration, for bug tracking, and for producing usage statistics. The logged information may be kept indefinitely.

Relevant subsets of the logged data may be passed to computer security teams as part of investigations of computer misuse involving this site. Data may be passed to the administrators of other computer systems to enable investigation of problems accessing this site or of system misconfigurations. Data may incidentally be included in information passed to contractors and computer maintenance organisations working for NIAB, in which case it will be covered by appropriate non-disclosure agreements. Otherwise the logged information is not passed to any third party except if required by law. Summary statistics are extracted from this data and some of these may be made publicly available, but those that are do not include information from which individuals could be identified.

You should appreciate that a log is a record of what a server sees, not necessarily what was initially sent. If a request is sent via a proxy the log file will show the proxy's address. If someone has forged your address the log file will show your address.

A number of fill-in forms are provided on this site. Data collected (other than on-line payment details) is stored for subsequent processing. The data is only used to provide relevant information back to you or to act as input to a modelling system for which the results are only for you. The site administrators will from time to time examine the data you have supplied in order to answer your queries or to deal with any errors that may be found. Your data will never be divulged to any other parties unless you have explicitly given them access to your data or we are required by law to pass the information to a third party.

On-line payment details are NOT stored by NIAB and are handled by SAGEpay who have systems that are regularly checked for bank-level compliance.

This site may use web "cookies" as part of user authentication (login) and to store information needed by other facilities.

Logged data

The following data is automatically logged for each request:

  • The name or network address of the computer making the request. Note that under some (but not all) circumstances it may be possible to infer from this the identity of the person making the request. Note also that the data recorded may be that of a web proxy rather than that of the originating client
  • The username, when known during authenticated (logged in) access to the site
  • The date and time of connection
  • The HTTP request, which contains the identification of the document requested
  • The status code of the request (success or failure etc.)
  • The number of data bytes sent in response
  • The contents of the HTTP Referrer header supplied by the browser
  • The content of the HTTP User-Agent header supplied by the browser

Logging of additional data may be enabled temporarily from time to time for specific purposes. In addition, the computers on which the web site is hosted keep records of attempts (authorised and unauthorised) to use them for purposes other than access to the web server. This data typically includes the date and time of the attempt, the service to which access was attempted, the name or network address of the computer making the connection, and may include details of what was done or was attempted to be done.