Respecting and protecting your privacy is important to us at Insight Track. As a market research company, a fundamental part of our business is to gather and analyse data to help deliver research insights and strategic consultancy for our clients. This sometimes involves the collection and use of personal data, and the purpose of this policy is to clarify how and why we collect and use the personal information you may provide to us, and that we may collect (or have access to, use, store, share or otherwise ‘process’).
We ensure that we use your information in accordance with all applicable laws, and professional best practice, concerning the protection of your personal information. In this regard, within different research activities, we may act as a Data Controller, a Joint Data Controller or a Data Processor.
If you have any queries about this policy or your personal information, please contact: Will Herschel-Shorland, Data Protection Officer, Insight Track Ltd., The Glasshouse, Kings Lane, Norwich, NR1 3PS. Email: firstname.lastname@example.org
Our company number is: 05327970
Our registered office is: Unit 8, Hopper Way, Diss, IP22 4GT
Our trading address: The Glasshouse, Kings Lane, Norwich NR1 3PS
- What information will we collect from you (if/as a research participant)?
We may collect information about you when you participate in a research project for us, and this will vary depending on the nature of a particular research programme. This could be via a number of means such as a survey, an interview, a focus group or other methodology. We may also collect information about you when we are talking to you about potentially being involved in a research project, prior to your involvement being confirmed. We may also collect financial information required to send an incentive payment to you. We will not ask you for more personal information than is necessary and aim to keep requests for sensitive data to a minimum. Such data might commonly include name and contact details, age, gender and location.
- How will we use the information about you (if/as a research participant)?
We use the information we collect from you in the course of analysis and consultancy to address specific research issues for external clients. We operate to the highest industry standards and your invitation to take part should contain all the information you need on the purpose of the research, the degree to which you can expect to be anonymous, how the data will be collected and any issues around confidentiality and incentive payments. Your consent should be explicitly obtained as part of this process. Note that we operate within the Market Research Society Codes of Conduct, as well as being compliant with UK Data Protection Laws (referencing GDPR) in all these respects.
- What information will we collect from you (if/as a client, partner or business contact)?
We may also collect information about clients and other business contacts in a variety of ways for the purposes of facilitating working relationships, such as:
- when you contact us to enquire about our services
- when engaging at conferences, events, meetings etc.
- using public sources such as LinkedIn or institutional webpages
Again, we do not collect more personal information than is necessary and aim to keep requests for sensitive data to a minimum; such data might commonly include name, role and organisation contact details.
- How will we use the information about you (if/as a client, partner or business contact)?
We use the information we collect from you to allow us to contact you when we’re working together, or if we’re not, to occasionally contact you to keep in touch. We will endeavour to ensure that we only make contact when we believe it will be relevant and interesting for you in doing so.
- How do we collect information about you?
There are several ways we may collect or have access to personal data, notably including:
- Directly from confirmed, or potential, research participants in the course of research
- From a client, or other third party, database we have legitimate access to
- From a panel provided by a client or other third party provider
- Data that is freely available from public domain sources
- What are the legal bases we use for processing your information?
We are diligent adherents to the legitimate processing of personal data in line with GDPR and personal data collection will relate to one of the bases listed below:
- Where you have provided your consent for us to use your personal information in a specified way
- Where necessary so that we can comply with a legal obligation to which we are subject
- Where there is a legitimate interest in us doing so if it is reasonably necessary to achieve our or others’ legitimate interests (as long as that processing is fair, balanced and does not unduly impact your rights).
- Will we ever share your information?
Insight Track does not share, sell, rent, or trade personally identifiable information with third parties for their promotional purposes.
In addition to the disclosures reasonably necessary for the purposes identified above, Insight Track may disclose your personal information to the extent that it is required to do so by law, in connection with any legal proceedings or prospective legal proceedings, and in order to establish, exercise or defend its legal rights.
- How long will we keep the information you provide?
We will only hold your personal information for as long as necessary, legal to do so, and for the minimum period practicable. As such the length of time we hold your personal information will vary depending upon the type of information and its use, including the purposes for which we are using the information, the amount and sensitivity of the information and our legal and regulatory obligations. You will be informed of the length of time data will be held at the relevant point in the context of the data capture (e.g. at the outset of a survey), and by default aim to keep personal data no longer than 6-months from the end of a given project.
- How do we protect your personal information?
It is important to us that you know your personal data is safe and we have a number of security protocols and measures in place to ensure that we protect your information at all times. We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorised access, alteration, disclosure or destruction of your personal or transactional information stored on our website and systems. Secure transfer methods are used so your personal data is safe whenever it is shared, and secure destruction methods are used when we dispose of your personal data.
- Where will your personal data be stored?
The data we collect from you is generally stored and processed within the European Economic Area (“EEA”). Where we need to transfer your information outside of the EEA we only do so to countries which have been determined by the European Commission to have an adequate level of data protection.
- How can you access your personal information?
Whatever your contact with us, you have the right to request a copy of the information that we hold about you. If you would like a copy of some or all of your personal information, please email email@example.com or write to us at the trading address given at the start of this policy. You may ask us to correct or remove information you think is inaccurate, in the same manner.
- How do you withdraw your consent to process data?
You have the right to withdraw consent for us to hold your data, and the right to object to it being processed in any particular way. If you wish to do this, please email or phone us. Please note that in accordance with the law around data protection, we aim to anonymise data as soon as possible. If we have already anonymised your responses, it may not be possible for us to give you a copy of the data you have submitted, or to correct, remove or withdraw it.
- How do you lodge a complaint?
If you would like to complain about how your data has been handled by us please contact our Data Protection Officer, Will Herschel-Shorland by email (firstname.lastname@example.org)
Under GDPR, you also have a right to lodge a complaint with the supervisory authority in your country of residence, place of work or where the alleged breach of GDPR occurred. In the UK this is the Information Commissioner’s Office (“ICO”). Contact details can be found at https://ico.org.uk/
Furthermore our industry regulatory body is the Market Research Society (MRS) and we are adherents to the MRS Code of Conduct and associated guidelines. Details can be found at www.mrs.org.uk
Cookies are files containing small amounts of information which are downloaded to your computer (web browser directory), with your agreement, when you visit a website. Cookies are then sent back to the respective website on each subsequent visit (1st party cookies) or to another website that recognises that cookie (3rd party cookies).
Cookies perform several functions, most commonly to remember your preferences and improve your online experience. Some cookies collect anonymous data about your computer and browsing history for statistical purposes to optimise website design.
Alternatively you may wish to visit the third-party website www.allaboutcookies.org which contains comprehensive information about cookies and on how to do this on a wide variety of browsers. You will also find details on how to delete cookies from your computer as well as more general information about cookies (although we cannot accept any responsibility for content found there or consequences of actions taken).
- How do we use Google Analytics?
The Insight Track website uses Google Analytics, a web analytics service provided by Google, inc., to improve the way our site works and the related user experience. Google Analytics sets a cookie that enables us to recognise and count the number of visitors and to see how visitors move around the website when they are using it.
- What about external 3rd Party websites?
- When was this policy last updated?
For further information please contact our Data Protection Officer, Will Herschel-Shorland using the address: email@example.com