1. Collection of Your Personal Data
While You (“You” or the “User”) are visiting the Website, we collect and process all or some of the following personal data (“Personal Data”):
- Information You provide to us: personal information that You provide to us such as when You complete a form on the Website, including but not limited to, Your first and last names, email address, phone number, company, title. We may also require information on Your education and work experience in connection with a job opening at LYNCEUS for which You wish to be considered.
- Our correspondence: if You contact us or if You want to schedule a demo with us or register for an event, we will typically keep a record of our correspondence.
- Survey information: we may also ask You to complete surveys that we use for research and improvement purposes. In such circumstances we shall collect the information provided in the completed survey.
- Website and communication usage: details of Your visits to the Website and information collected through cookies and other tracking technologies including, but not limited to : Your IP address and domain name, Your browser version and operating system, browser language, access time, traffic data, location data, web logs, movements on the Website, referring web site addresses and other communication data. We may also collect information about the pages You view on the Website and other actions You take while visiting us. In addition, we may also use such technologies to determine whether you’ve opened an e-mail or clicked on a link contained in an e-mail.
2. Processing purposes and legal basis
Your Personal Data shall be collected and processed for the following purposes:
To communicate effectively with You and conduct our business, including to respond to Your contact or demo requests, registration request to events organized by LYNCEUS, partnership request if You were interested in doing business with us, Your job application, to otherwise communicate with You, or to carry out our obligations arising from any agreements entered into between You and us.
- Legal basis: contract performance, legitimate interest (to enable us to perform our obligations and provide our services to You).
To obtain Your consent for sending commercial communications, updates, alerts, offers, and advertising related to the services offered by LYNCEUS, invitations to events and other LYNCEUS’ initiatives which may be of interest to You.
- Legal basis: consent, legitimate interest (to provide You with updated news in relation to our products and services).
To study and improve the effective functioning, navigation and security of the Website (see Cookies policy).
- Legal basis: consent, legitimate interest (to improve the Website users’ experience)
To notify you about changes to our services, or about changes to this policy.
- Legal basis: legitimate interests (to allow us to notify you about changes to our service)
To reorganise or make changes to our business, in the event that we: (i) are subject to negotiations for the sale of our business or part thereof to a third party; (ii) are sold to a third party; or (iii) undergo a re-organisation, we may need to transfer some or all of Your Personal Data to the relevant third party (or its advisors) as part of any due diligence process for the purpose of analysing any proposed sale or re-organisation.
- Legal basis: legitimate interests (in order to allow us to make changes in our business)
In connection with legal or regulatory obligations: we may process Your Personal Data to comply with our regulatory requirements or dialogue with regulators as applicable which may include disclosing Your Personal Data to third parties, the court service and/or regulators or law enforcement agencies in connection with enquiries, proceedings or investigations by such parties anywhere in the world or where compelled to do so. Where permitted, we will direct any such request to You or notify You before responding unless to do so would prejudice the prevention or detection of a crime.
- Legal basis: legal obligations, legal claims, legitimate interests (to cooperate with law enforcement and regulatory authorities)
3. Personal data retention
Our retention periods for personal data are based on business needs and legal requirements. We retain Personal Data for as long as is necessary for the processing purpose(s) for which the information was collected, and any other permissible and related purpose.
When the Personal Data is no longer needed, we either irreversibly anonymise the data (and we may further retain and use the anonymised information) or securely destroy the data.
4. Data recipients
Within LYNCEUS : To fulfill Your requests and carry out our activities, we or You may need to share Your Personal Data internally within LYNCEUS, such as to the Sales, Communication, or Information technology teams. Everyone at LYNCEUS is trained on privacy and data security topics, and subject to appropriate confidentiality obligations.
Service providers : We may share Your Personal Data with our service providers who perform services on our behalf, for the purposes described in Section 2. These are our hosting providers, backend infrastructure providers, infrastructure monitoring providers, managing contacts and sending messages service providers, support and contact request management service providers, user database management service provider.
We contractually require these service providers to (i) keep Your Personal Data confidential and secured, (ii) process it in compliance with obligations consistent with this policy and (iii) not use it for any purpose(s) other than those necessary for the performance of our agreement with them.
Third-party recipients : we may also need to transfer your personal information to a new re-organised entity or third party after the sale or reorganisation of LYNCEUS for them to use Your Personal Data for the same purposes as set out in this policy (see Section 2, “To reorganise or make changes to our business”), and to regulators or law enforcement agencies (see Section 2, “In connection with legal or regulatory obligations”).
5. International transfers
Where we transfer personal information from inside the European Economic Area (the EEA) to outside the EEA, we may be required to take specific additional measures to safeguard the relevant personal information. Certain countries outside the EEA have been approved by the European Commission as providing essentially equivalent protections to EEA data protection laws and therefore no additional safeguards are required to export personal information to these jurisdictions. In countries which have not had these approvals (see the full list here http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm), we will establish legal grounds justifying such transfer, such as EU Commission-approved standard contractual clauses, or other legal grounds permitted by applicable legal requirements.
Please contact us as set out in the “Contacting Us” section below if you would like to see a copy of the specific safeguards applied to the export of your personal information.
No data transmission over the Internet or the Website can be guaranteed to be secure from intrusion. However, we maintain commercially reasonable physical, electronic and procedural safeguards to protect Your Personal Data in accordance with data protection legislative requirements.
All information You provide to us is stored on our or our subcontractors’ secure servers and accessed and used subject to our security policies and standards.
7. Users’ rights
Users have the right to exercise at any time, under the terms provided by current legislation, the rights of access, rectification, or deletion of data, as well as to request the limitation of data processing, their opposition or portability of the same and not to be subject to automated decisions, including profiling. Likewise, Users may revoke the consent given at any time.
The aforementioned rights may be exercised by sending an e-mail to the address [*email@example.com*] specifying the following details: name and surname(s), address for the purpose of notifications, copy of ID card or passport, or from time to time through an “opt-out” link provided in the communications we send You.
If You are not satisfied with our use of Your Personal Data or our response to any exercise of these rights, You have the right to complain to the Supervisory Authority of Your usual place of residence or place where the alleged breach to the law occurred. Please click here to see the list and contact information of the EU Supervisory Authorities: http://ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm
Please be aware that certain exceptions apply to the exercise of these rights and so You will not be able to exercise them in all situations. In addition, these will vary slightly between EU Member States. For instance, in France, in addition to the rights listed above, You also have the right to define directives as to how you wish Your personal data to be used after Your death. If you wish to exercise any of these rights, we will check your entitlement and respond within applicable timescale.
9. Contact us
If You have any questions in relation to this policy, please contact us : firstname.lastname@example.org.