PromoVeritas Ltd (“we/us/our”) is a company incorporated in England and Wales whose registered office is at Monument House, 215 Marsh Road, London, HA5 5NE with registered number 04437132 .We also own and operate promoveritas.com and other related sites (our ‘websites’).
- How you interact with us from a personal data perspective
- The types of personal data that we collect and how we use it
- In what circumstances we will share your personal information within our organisation and with other organisations where relevant; and
- The rights and choices you have when it comes to your personal data.
What personal data do we collect?
We usually only collect personal identification information such as
- email address
- phone number
However, the exact types of personal data we gather will depend on whether where you are a supplier, a business contact, an employee, or prospective employee. What we collect might include:
- contact details
- educational background
- financial and payment details
- details of certificates and diplomas, education and skills, and CV
- marital status
- job title
Special Category Data
This is defined as personal data about an individual’s racial or ethnic origin, political opinions, religious or similar beliefs, trade union membership, physical or mental health or criminal offences. We very rarely collect this type of data. However, for employees, we might collect limited information about your health to meet our obligations imposed by law and for duty of care purposes. This will only be done if we have your explicit consent to do this, unless there are exceptional circumstances where we are required to do this by law or under contract or to ensure health and safety at work.
Accuracy and relevance
We will seek to ensure that personal data we process is accurate, adequate, relevant, and not excessive, given the purpose for which it was obtained. We will not process your personal data obtained for one purpose for any other unconnected purpose unless you have agreed to this or it would be reasonable to expect you to consent.
How do we collect your personal data?
Personal data is provided to us when you
- Obtain services from us
- visit and view our websites, via cookies we may use
- Participate in a promotional site, either ours or via the Promoter direct
- Speak to us by telephone
- Correspond with us by email
- Communicate with us via social media
- Fill in forms, surveys, or questionnaires
- Seek or obtain employment or contract with us in some way.
How we use your personal data
We use the information we collect, in our role as data controller, to meet our legal obligations, provide services to you and to understand your needs. This could be personal data from business prospects or contacts, and employees so that we can
- Communicate with you, telephonically, by email or via social media
- Marketing our business to you as an individual with your consent
- Improve our services through knowledge of what is used by you and how you use it
Additionally, we may also use your information and if required, share it, when
- Investigating complaints
- Complying with our legal, regulatory, and corporate governance obligations
- Ensuring business policies are adhered to, such as policies covering email and internet use
- Checking references, ensuring safe working practices, monitoring, and managing staff access to systems and facilities and staff absences, return to work procedures, administration, and assessments.
- Communicating with entrants or winners about that promotion
- Fulfilling any prizes that may be won
We will only use your personal date for the purpose we received it and to administer the promotion.
Will your personal data be shared?
We do not sell any of personal data to third parties nor do we share your personal data with third parties except with our carefully selected service providers so that they can carry out specific functions on our behalf. For example, the company that helps us with our IT system, or a fulfilment house that is arranging the delivery of your prize. We will always ensure that we only provide personal data that is necessary for the service being provided and they are prohibited from use using any of this personal data for any other purpose.
Your Payment Information
We do not store any payment information unless it is a requirement of a promotion we are administering, or we will be paying you for services or your employment.
How do we store your personal data?
We are committed to protecting the privacy and confidentiality of your personal data. We use physical, electronic, and procedural safeguards to keep personal data secure against loss or misuse, including
- third party audits
- secure back-ups
- access controls and compliant confidential waste disposal
- security passwords, and two factor authentications
- firewalls and security software
- security testing.
Whilst we take appropriate technical and organisational measures to safeguard your personal data, it is important that if applicable you keep personal login details safe and your devices protected from unauthorised access.
How long we store your personal data for
Application of Policy
This Policy covers all PromoVeritas entities and all employees who may process information on our behalf. We will ensure that they are familiar with this Policy, comply with its terms, receive adequate privacy and GDPR training.
Marketing to you
As a business prospect or contact, we may send you marketing information about our products or services but we will only do so when we have your consent or where we have a legitimate interest in doing so and where this is reasonable and proportionate. Our business marketing is done in the commercial interest of our respective businesses and our marketing strategy includes surveys, newsletters, emails as well as invitations to webinars and training events. You have the right at any time to stop us from contacting you for marketing purposes.
We do not conduct any form of marketing of our services to those whose personal data was obtained via entry into a promotion.
What are your data rights?
You have the following rights, but these may only be available under certain conditions:
The right to access – you can ask us for copies of your personal data
The right to rectification – you can request that we correct any information you believe is inaccurate. You also have the right to ask us to complete information you believe is incomplete
The right to erasure – you can request that we erase your personal data
The right to restrict processing – you can request that we restrict the processing of personal data
The right to object to processing – you can object to us processing of personal data
The right to data portability – you can request that we transfer the personal data we have collected to other organisations, or directly to you.
If you make a request, we will have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email address or call us on the details below.
Transferring Data Internationally
Current Data Protection Legislation requires that during the transfer period when the UK leaves the EU until an Adequacy Decision has been reached, personal data will not be transferred outside of the European Economic Area (EEA) unless such transfer is to a country or jurisdiction where a) the EU Commission has approved it as having an adequate level of protection or b) appropriate contractual safeguards are in place. We will uphold our commitment to the stringent level of data protection required of us during the transfer period when the UK leaves the European Union (EU) and beyond, whether or not an “Adequacy Decision” with the EU authorities occurs.
What are Cookies?
We make use of compliant cookie banners to be transparent and allow you to make choices about the cookies we use. If you disable or refuse non-essential Cookies, you will be able to use the website, but you cannot disable the essential cookies we need to make the website operate correctly. You can also set your browser to refuse all or some browser cookies, or to alert you when websites set or access Cookies.
Our Cookies Policy
Third-Party privacy policies and other websites
We may supplement or amend this Policy from time to time. Any new or modified Policy will be circulated to staff before being adopted or appearing on our website.
How to contact us
Please contact us at:
Post: PromoVeritas, Information Security Manager, Monument House, 215 Marsh Road, London, HA5 5NE
Telephone: +44 20 3325 6000
How to contact the appropriate authority
We’d like the chance to resolve any complaints you have; however you also have the right to complain to the UK data protection regulator (the “ICO”) about how we have used your personal data. Their website is https://ico.org.uk/your-data-matters/raising-concerns/.