Unless we notify you otherwise, Ascential Group Limited is the controller of your personal data as it is the entity who alone or jointly determines how or why your personal data is being processed. Our affiliates may be the controller of your personal data in certain circumstances depending on our relationship, and the services we are providing to you. A list of our group of affiliates can be found here.
We use different methods to collect personal data from and about you, including: -
Most of the personal data we process about you comes directly from you. You may give us your name and contact details when filling in forms or corresponding with us by email, phone, mail, in person or otherwise including when you: -
Depending on the products and/or services we provide to you, you may also have the option to upload a photograph of yourself as part of your registration for such products and/or services. This is optional and your photograph can be updated at any time.
We automatically collect technical information when you use our websites, for example: - IP address, log-in data, browser type, time zone setting and location and plug-in types when you interact with our websites. We also collect data through cookies. Please see our cookies policy for further details.
We may collect information about you from third parties and public sources (such as public databases and social media websites). This is to ensure we have accurate, up to date or necessary information for us to communicate with you or to provide the best possible service. The types of information we may collect includes personal details (including name, age, gender and other demographic data) and contact information (including postal address and telephone numbers).
We have set out below a description of all the ways we plan to use your personal data and which legal basis we rely on to do so. We have also identified what our legitimate interests are, where appropriate.
|Necessary for the compliance with a legal obligation to which we are subject.||Complying with legal requirements.|
|Necessary for the performance of a contract to which you are a party.||Managing our contractual relationship with you.|
|Justified on the basis of our legitimate interest in ensuring the proper functioning of our business operations.||Operating and managing our business operations and/or improving our products, service and event experience.|
|Justified on the basis of our legitimate interest in ensuring that we can conduct and increase our business.||Marketing or communicating information to you related to our products and services, unless you have objected to such processing, as further described in the section 4 “How do we use personal data for direct marketing purposes?” We may also share personal data with our affiliates for this purpose, as further described at section 7 below.|
|Justified on the basis of our legitimate interest in ensuring we can conduct and increase our business and those of our business partners.||Sharing personal data with selected partners (including sponsors), as further described in section 7 below.|
|Justified on the basis of our legitimate interest in ensuring network and information security.||Monitoring your use of our systems (including using technical tools to automatically monitor the use of our website and any apps and tools you use).|
|Justified on the basis of our legitimate interest in ensuring that you receive an excellent user experience.||Improving the security and functioning of our website, networks and information.|
|Justified on the basis of our legitimate interest for the management of directories for relevant products and/or services.||To enable individuals who are part of the relevant product and/or service directory to identify other users within the directory and to facilitate contact amongst those individuals (for example, by ensuring an individual is contacting the correct person).|
We may send you marketing communications to keep you up to date with our products and services, including those we think may be of interest to you.
We send targeted electronic direct marketing to business contacts at our clients or other companies with whom we want to develop or maintain a business relationship in accordance with applicable marketing laws. Our electronic direct marketing typically includes web beacons, cookies, and similar technologies that allow us to know whether you open, read, or delete the message, and links you may click. When you click a link in an electronic direct marketing message, we will also use a cookie to log what pages you view and what content you download from our websites, even if you are not registered at or signed into our site. Please see our cookies policy for further details.
Like most companies, Ascential uses customer relationship management (CRM) database technology to manage and track our marketing efforts. Our CRM databases include personal data belonging to business contacts at our clients and other companies with whom we already have a business relationship or want to develop one. The personal data used for these purposes includes relevant business information such as: contact data, publicly available information (e.g. board membership, published articles, press releases, your public posts on social media sites if relevant for business purpose), your responses to targeted electronic direct marketing (including web activity following links from our e-mails), website activity of registered users of our website and other business information included by Ascential professionals based on their personal interactions with you.
You can elect to not receive marketing communications from us by, or by utilising opt-out mechanisms in e-mails we send to you. You can also object to receiving marketing communications or request that your personal data be removed from our CRM databases by contacting us at www.ascential.com/data.
We do not generally seek to collect sensitive data (also known as special categories of personal data) from individuals and we request that you please do not submit sensitive data to us. In the limited cases where we do seek to collect such data, we will do this in accordance with data privacy law requirements and/or ask for your consent.
The term "sensitive data" refers to the various categories of personal data including racial or ethnic origin, political opinions, religious, philosophical or other similar beliefs, membership of a trade union, physical or mental health, biometric or genetic data, sexual life or orientation, or criminal convictions and offences (including information about suspected criminal activities).
We are concerned to protect the privacy of children. We do not knowingly contact or collect information from persons under the age of 18. The website is not intended to solicit information of any kind from persons under the age of 18.
If you believe that we have received information pertaining to or from persons under the age of 18 please contact us at contacting us at www.ascential.com/data ; or email@example.com. If we become aware that a person under the age of 18 has provided us with personal information, we will take steps to delete such information.
We may share personal data with the following categories of recipients:
We may also share your personal data with public and governmental authorities if we are required to do so, or with third parties in connection with potential corporate or commercial transaction.
Before we share your personal data with any third parties, we take the necessary steps to ensure that your personal data will be given adequate protection in accordance with relevant data privacy laws and Ascential’s internal policies.
We retain your information for no longer than necessary for the purpose for which it was collected. We maintain specific records management and retention policies and procedures, so that in determining how long your information will be stored, we will consider:
As we are a global organisation with a presence in a number of jurisdictions and countries, we may transfer your personal data to our affiliates internationally. If you are located in the EEA, this may involve transferring your data outside the EEA. To ensure that such transfers are in accordance with applicable law and carefully managed to protect your privacy rights, any inter-company transfers of personal data are covered by agreement(s) which contractually oblige(s) us to ensure adequate and consistent levels of protection wherever personal data is transferred within our group of companies.
We may also share your personal data with third parties (see section 7), some of which are based outside the EEA. Whenever we transfer your personal data outside the EEA, we ensure a similar degree of protection is afforded it by ensuring appropriate safeguards are implemented, for example we may use specific contracts approved by the European Commission.
Please contact us (see our details at section 12 below) if you would like further information on the mechanism used by us when transferring your personal data outside the EEA.
We maintain organizational, physical and technical security arrangements for all the personal data we hold. We have protocols, controls and relevant policies, procedures and guidance to maintain these arrangements taking into account the risks associated with the categories of personal data and the processing we undertake, including as appropriate: -
If you are based within the EEA, you may be entitled under certain circumstances to: -
If you are based in CALIFORNIA you have many of the rights set out at section 11 and you are entitled under certain circumstances to:-
Request access to certain information about the personal data we have shared with third parties for direct marketing purposes.
Please contact us at www.ascential.com/data to exercise any of these rights. We will process any request in line with any local laws and our policies and procedures. We may ask you for additional information to confirm your identity and for security purposes, before disclosing information requested to you.
Any questions regarding this notice and our privacy practices should be sent using www.ascential.com/data or by writing to Director of Compliance and DPO, Ascential Group Limited, 33 Kingsway, London, WC2B 6UF, or by email at firstname.lastname@example.org.
If you wish to make a complaint about how we use your information, please contact us using www.ascential.com/data and we will do our best to help. If you are located in the EEA, you have the right to lodge a complaint with the appropriate data protection supervisory authority in your country. We would, however, appreciate the chance to deal with your concerns before you approach your local supervisory authority so please contact us in the first instance.