Privacy Policy
PromoVeritas Ltd (“we/us/our”) is a company incorporated in England and Wales. Our registered office is at Monument House, 215 Marsh Road, London, HA5 5NE, United Kingdom and our registered number is 04437132. We also own and operate promoveritas.com and other related sites (our ‘websites’).
We hold personal data about individuals, our employees, our clients, and our suppliers for a variety of business purposes. At times we are the data controller meaning that we determine the purpose and way your personal data is used, for example when we are the employer or if we run a promotion of our own. At other times we are a data processor, operating under the instructions of a data controller. The most obvious case of this is where we are contracted to administer promotions or aspects of promotions being run by our clients. If you have entered a promotion belonging to one of our clients, their privacy policy, as the Promoter, will apply to the use of your personal data.
We are committed to respecting your privacy and to complying with applicable data protection and privacy laws in relation to how we collect, use, and protect your personal data. This means that we will not process personal data without a lawful basis, for example the individual whose details we are processing has consented to this happening, or we have a contractual right to do so.
This Privacy Policy (“Policy”), sets out the following:
- How you interact with us from a personal data perspective
- The types of personal data that we collect and how we use it
- In what circumstances we will share your personal information within our organisation and with other organisations where relevant; and
- The rights and choices you have when it comes to your personal data.
If you have any questions or wish to exercise your rights and choices, please contact us as set out in the “How to Contact Us” section.
Effective date
This Policy is effective from 03 November 2020, updated in June 2024 and should be read with our Terms of Service and our Website Terms of Use.
What personal data do we collect?
We usually only collect personal information such as
- name
- email address
- phone number
However, the exact types of personal data we gather will depend on whether where you are a supplier, a business contact, an employee, or prospective employee. What we collect might include:
- contact details
- educational background
- financial and payment details
- details of certificates and diplomas, education and skills, and CV
- marital status
- nationality
- job title
- date of birth
- proof of identification
- details of internet and electronic network activity information, such as device and usage information.
Special Category Data
This is personal data about an individual’s racial or ethnic origin, political opinions, religious or similar beliefs, trade union membership, physical or mental health or criminal offences. We very rarely collect this type of data. However, for employees, we might collect limited information about your health to meet our legal obligations and for duty of care purposes. This will only be done if we have your explicit consent to do this, unless there are exceptional circumstances i.e., where we are required to do this by law or under contract or to ensure health and safety at work.
Accuracy and relevance
We will seek to ensure that personal data we process is accurate, adequate, relevant, and not excessive, given the purpose for which it was obtained. We will not process your personal data obtained for one purpose for any other unconnected purpose unless you have agreed to this or it would be reasonable to expect you to consent.
How do we collect your personal data?
Personal data is provided to us when you
- Obtain services from us or enter a promotion we may be running, such as our Christmas Promotion.
- Visit and view our websites, we gather information to understand how you interact with us. This includes using cookies and device IDs on our websites, emails, and even ads. We collect details about your browsing activity and how you use our apps via cookies we may use, and you enable.
- Participate in a promotional site, either ours or via the Promoter direct and we are administering that promotion.
- Communicate with us by telephone, email or via social media.
- Fill in forms, surveys, or questionnaires.
- Seek or obtain employment with us or contract with us in some way.
- Sign up for our webinars, newsletters, and other notifications.
How we use your personal data
We will only use your personal data for the purpose we received it. We use the information we collect, in our role as data controller, to meet our legal obligations, provide services to you and to understand your needs. This could be personal data from business prospects or contacts, and employees so that we can:
- Comply with any legal and regulatory obligations.
- Provide you with our services or fulfil our contract with you.
- Provide you with access to our website and services.
- Maintain, analyze, customize, and improve your experience on our Website.
- Communicate with you, telephonically, by email or via social media.
- Marketing our business to you with your consent.
- Develop and improve our services through knowledge of what is used by you and how you use it.
- Administer promotions we may be running.
- Protect the security and integrity of our website and other sites or apps and our business.
Additionally, we may also use your information and if required, share it, when:
- Investigating complaints.
- Complying with our legal, regulatory, and corporate governance obligations.
- Ensuring business policies are adhered to such as policies covering email and internet use, to help protect you , our sites and apps, our company, our supplier, our customers and consumers.
- Detecting and preventing fraud and other prohibited, illicit or illegal activity, and to protect the rights and vital interests of you, others, and ourselves.
- Checking references, credit or other financial checks on you, ensuring safe working practices, monitoring, and managing staff access to systems and facilities and staff absences, return to work procedures, administration, and assessments.
However, we also receive personal data in our role as a data processor, for a client, the Promoter, or their agency in relation to promotions they are running. These functions will be part of our services to the Promoter, and their Privacy Policy would apply to your personal data.
We administer client promotions and may perform statistical reporting on how the promotion or marketing activity performed. Depending on the services we are providing we may:
- Gather and process entry data
- Select winners and reserve winners
- Communicate with entrants or winners about a promotion and their prize
- Fulfil any prizes that may be won
- Analyse how the promotion performed and report on it.
Will your personal data be shared?
We do not sell any personal data to third parties nor do we share your personal data with third parties except with our carefully selected service providers so that they can carry out specific functions on our behalf or deliver services to you. For example, we might share it with the company that helps us with our IT system and website, or a fulfilment house or courier company that is arranging the delivery of your prize. We will always ensure that we only provide personal data that is necessary for the service being provided and they are prohibited from using any of this personal data for any other purpose.
Social Media & Other Integrations
Our services may include content and links to websites, locations, platforms, and services managed by third parties. Additionally, we integrate third-party technologies into parts of our service. For instance, our services may contain links to external websites, social media platforms, and other services not under our control. These third parties might use tracking technologies to gather information about you independently and may request information from you. If you use one of their features, both we and the relevant third party might access and use information related to your use of that feature.
If you publicly reference us on social media by using an associated hashtag in a post, we might use your reference in connection with our service.
Your Payment Information
We do not store any payment information unless it is a requirement of a promotion we are administering, or where we will be paying you for services or your employment.
How do we store your personal data?
We are committed to protecting the privacy and confidentiality of your personal data. We use physical, electronic, and procedural safeguards to keep personal data secure against loss or misuse, including
- encryption
- third party audits
- secure back-ups
- access controls and compliant confidential waste disposal
- security passwords, and two factor authentications
- firewalls and security software
- security testing.
Whilst we take appropriate technical and organisational measures to safeguard your personal data, it is important that if applicable you keep personal login details safe, and your devices protected from unauthorised access.
How long we store your personal data for
We will not keep your personal data for longer than we need it for the purpose for which it was collected or as required by law.
Where we are administering a promotion for a client, they are the data controller and their privacy policy and thus their data storage period, will apply. In other cases, it will be no longer than necessary, usually one year from the date of last use. However, what is necessary will depend on the circumstances of each case, considering the reasons that your personal data was obtained, our legal obligations and if we are still providing goods or services to you. In limited circumstances we may retain your information after your formal relationship with us has ended.
Application of Policy
This Policy covers all PromoVeritas entities and all employees who may process information on our behalf. We will ensure that they are familiar with this Policy, comply with its terms, receive adequate privacy training based on the Data Protection Act of 2018.
Marketing to you
As a business prospect or contact, we may send you marketing information about our products or services, but we will only do so when we have your consent or where we have a legitimate interest in doing so and where this is reasonable and proportionate. Our business marketing is done in the commercial interest of our respective businesses and our marketing strategy includes surveys, newsletters, emails as well as invitations to webinars and training events. You have the right at any time to stop us from contacting you for marketing purposes by contacting us or using the ‘unsubscribe’ link in our emails or newsletters.
We do not conduct any form of marketing of our services to those whose personal data was obtained via entry into a client promotion.
What are your data rights?
You may be able to exercise certain privacy rights. The rights depend on our reason for processing your personal information and the requirements of applicable law (i.e., your rights will vary depending on whether you are located in the United Kingdom, or Europe). Specifically you have the following rights, but these may only be available under certain conditions:
The right to access – you can ask us for copies of your personal data
The right to rectification – you can request that we correct any information you believe is inaccurate. You also have the right to ask us to complete information you believe is incomplete
The right to erasure– you can request that we erase your personal data
The right to restrict processing– you can request that we restrict the processing of personal data.
The right to revoke consent – Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time with future effect. Depending on where you are located, you may also have the right to request deletion of personal data that was processed based on your consent, or the right to know the consequences of revoking your consent.
The right to object to processing– you can object to us processing of personal data
The right to data portability – you can request that we transfer the personal data we have collected to other organisations, or directly to you.
Right to Opt Out of Sales and Sharing of Personal Information – We do not sell any personal information to third parties. In the event that we disclose your personal information to third parties for their marketing purposes, you may have the right to opt out of that disclosure. You may also have the right to request further information about the disclosure of your personal information for those third parties’ marketing purposes, such as the contact information of those parties, once per calendar year.
If you make a request, we will have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email address or call us on the details below.
Transferring Data Internationally
As our clients operate globally and run international promotions, it may be necessary to transfer an individual’s personal data internationally to deliver our services. The Privacy Policy of the Promoter who is the data controller will apply in this case. We might, for example, use Mail Chimp in the future and we’d only do so if we are satisfied that our legal obligations are met. If we transfer your data outside of the United Kingdom we will take steps to ensure that your data and rights are protected through methods approved within the relevant Data Protection laws. Please contact us if you would like further information about how we protect your transferred information.
What are Cookies?
We use cookies and similar technologies, (“Cookies”) to personalise and improve your customer experience as you use our website. Cookies are small text files containing a unique identifier, which are stored on your computer or mobile device so that your device can be recognised when you are using a particular website or mobile app. They can be used only for the duration of your visit or they can be used to measure how you interact with services and content over time. Cookies help to provide important features and functionality on our website, and to improve your customer experience. Cookies can also be used help us determine visiting patterns and to detect fraudulent activity or to prevent security breaches and so we may record information about your device within the cookie. We make use of compliant cookie banners to be transparent and allow you to make choices about the cookies we use.
If we are using non-essential cookies on our website, we will always gain your consent before these cookies are enabled. Our Cookie Policy and Cookie Banner have more information on this.
If you disable or refuse non-essential Cookies, you will be able to use the website, but you cannot disable the essential cookies we need to make the website operate correctly. You can also set your browser to refuse all or some browser cookies, or to alert you when websites set or access Cookies.
Our Cookies Policy
Our Cookies Policy can be found on our website.
Third-Party privacy policies and other websites
Clicking on links on our website may take you to a third-party website. At the point you enter the third-party website, the privacy and cookie policy of the third party will apply to all information that you provide. It is important at that point to read that third party’s privacy and cookie policy as we do not accept any responsibility or liability for websites of other organisations.
Children
Our website and services are not directed at children and we will not knowingly request any information from children without the consent of their parents or guardians. If we discover that a child has provided us with personal information, we will endeavour to delete such information from our systems.
Changes to our Privacy Policy
We may update this Privacy Policy from time to time in order to provide clarification or notice of changes to our practices. If we make changes, we will revise the Effective Date at the top of this Privacy Policy. Changes to this Privacy Policy will be effective once they are posted on our website unless otherwise indicated. We may choose to notify you by email to the email address in our records.
How to contact us
Please contact us at:
Post: PromoVeritas, Information Security Manager, Monument House, 215 Marsh Road, London, HA5 5NE
Email: Infosec@promoveritas.com
Telephone: +44 20 3325 6000
How to contact the appropriate authority
We’d like the chance to resolve any complaints you have; however you also have the right to complain to the UK data protection regulator (the “ICO”) about how we have used your personal data. Their website is here.