04.04.2019

Privacy Notice for Digital Musical Instruments / Compositions / Performances Survey

We are circulating the digital musical interactions survey through mailing lists. Answering the survey is voluntary. You do not need to complete the survey. The main objective of the survey is to gain insights for the relationships between the digital musical instruments, their programming environments, their live performances and compositions performed with them. This survey study is joint research study of Aalto University and Queen Mary University of London. The research study is funded by Academy of Finland (pr. 319946).

1. What data is processed?

There are 4 main sections in the survey. The first section comprises questions aiming to collect data related to the style of music and preferred programing languages. Questions in the second section focuses on the characteristics of the musical language of the instruments, the choices of the programming languages in the design of musical instruments and the compositions that are performed with those instruments. The third section aims to better understand the nature and the structure of the compositions, the narrative, notation and form of the piece as well as their relations with particular musical instruments. The final section is about the live performances, aiming to collect data on the ways the practitioners, musicians, scholars look into the role of the instrument, audience and the environment in live performances.

Mailing lists will be the only resources for this survey. No additional information will be collected. Researchers will send the survey link through these mailing lists, but they will not have access to these mailing lists. Researchers will not have access to the mailing lists, but we give participants an option to disclose their contact information for further research questions. As mailing lists are operated by other organisations, the survey data is considered to be personal data as defined in General Data Protection Regulation (GDPR).

2.  How is data processed in the study?

The data will be analysed and reported so that no mailing list information is connected with a particular piece of data. Data published in public repositories will be aggregated so that no direct identifiers are published, however names of performances, instruments and compositions will be included. The research study does not have negative effects for data subjects.

a) What is the purpose of processing data?

The purpose of the study is to disseminate the possible relationships between the nature of the programming languages and the musical instruments / compositions / performances created and developed with them. Through these possible relations we are aiming to understand further the idiomaticity characteristics in digital musical instruments.

b) Legal basis for processing the data

The processing of personal data is required for the performance of a task carried out in the public interest, namely scientific research and for academic and journalistic expression.

3. Storage of data and anonymisation

The criteria for defining storage of research data containing personal is based on good scientific practice. In scientific research the aim is to store the research data so that the research results can be verified and previously collected data can be used for further scientific research.

During the study, Aalto University file services will be used to store data. The services include a snapshot feature and regular backups that make file versions automatically to recover from unwanted deletions – tape backups provide also system-level disaster recovery. All the Aalto University laptops include automatic data encryption with Bitlocker, and secure file transfer over the network with a VPN solution, that will be utilised in the project. The researchers will transfer the data through using an encrypted secure VPN connection to transfer the collected data in a database on a protected server of Aalto University. During the study, full access to data will be limited to Sound and Physical Interaction Research Group personnel. The study outputs will be published in scientific and academic publications and repositories.

Anonymised data is no longer personal data.

4. The rights of the study participant in a scientific study

According to the General Data Protection Regulation (GDPR), data subjects have the right to obtain information on the processing of their personal data. We try to give this information in this Privacy Notice, but if you still have questions, please contact the researchers of this study, contact information is given below.

Executing this survey and this research study do not require the identification of data subjects by the researchers. According to the GDPR, researchers are not obliged to maintain, acquire or process additional information in order to identify the data or the data subject for the sole purpose of complying with the GDPR. If we cannot identify the data related to a data subject, the rights of access, rectification, objection and erasure shall not apply, except if the data subject provides additional information enabling his or her identification and the identification of the research data that relates to data subject. To exercise his or her rights, the data subject should contact the Data Protection Officer, or the research study contact person.

5. More information on the study and the exercising of your rights

The controller in this study is Aalto University. The research has a responsible principle investigator, Koray Tahiroglu. The contact person in Aalto University is Koray Tahiroglu (koray.tahiroglu@aalto.fi ), the contact person in Queen Mary University of London is Andrew McPherson (a.mcpherson@qmul.ac.uk )

The research participant must contact Aalto University’s data protection officer if they have questions or demands related to the processing of personal data.
Data Protection Officer of Aalto University, dpo@aalto.fi, and Phone number: +350-9-47001

If the research participant sees that their data has been processed in violation of the General Data Protection Regulation or data protection legislation, the participant has the right to lodge a complaint with the supervisory authority, the Data Protection Ombudsman (see more: www.tietosuoja.fi).