Last updated: May 17th 2021
2. Lawful Collection and Use of Data
We may collect your personal data through our Blog. We may add other ways and activities moving forward but we will always operate in compliance with this policy.
We have set out below, more detailed information about how we use your personal data. We are also required by law to explain the legal basis for processing your personal data. These legal bases are listed below and could be different for each use case:
- we have your consent for the use of your personal data;
- we need to use your personal data in order to perform a contract with you;
- we need to process your data to comply with a legal obligation;
- we need to process your data in order to protect your vital interests or someone else;
- the processing is necessary to perform a task in the public interest; or
- the use of your personal data is necessary for our (or our clients’) legitimate interests (in which case we will explain what those interests are).
We will never misrepresent ourselves or what we are doing. If you receive an email that concerns you, purporting to be from us, please let us know as shown below in “How to Contact Us”.
To have Blog visitors and users engaging with Blog content by reading and commenting – a nickname would be asked should you decide to comment on a Blog content
Nickname (only to comment on Blog content)
We obtain this data from you directly
3. Third Parties (Clients and Suppliers):
We may share your personal data with our third-party vendors and processors to perform Blog management related activities in order to deliver our Blog activities to you. This could include vendors managing or assisting us in managing the Blog hosting and security. Aside the nickname you would enter on the Blog (should you wish to comment on a Blog content), no other personal data will be collected consciencely from us. However, your personal data may be collected on the Blog, should you add personal data in your comment(s) to Blog content. In any case, your personal data is not sold to third parties.
Our third-party vendors and processors are all contractually bound to keep any information they collect and disclose to us, or that we collect and disclose to them, confidential and must protect it with security standards and practices that are equivalent to our own.
4. Confidentiality, Security and Industry Requirements and Where We Store Your Personal Data
We take appropriate technological and organisational measures to protect your personal data, both during transmission and once we receive it. Our security procedures are consistent with generally accepted standards used to protect personal data.
The data that we collect from you may be transferred to and/or stored outside your territory. It may also be processed by staff operating outside your territory who work for us or for one of our suppliers. If your personal data is transferred to, stored at or otherwise processed outside your country or territory, and that country or territory has not been recognized as providing an adequate level of data protection, we will put in place additional safeguards to protect your personal data, as required by applicable law. For example, if you are in the EEA, standard contractual clauses would be used if we process your data outside the EEA.
We remind you that we don’t consciencely collect personal data on the Blog, aside your nickname. However, any personal data which you may include in your comments to Blog content would be made public to Blog visitors and users. It will be stored as Blog content.
5. Industry Standards
We adhere to various standards and industry codes depending on your location, including:
- European Society for Opinion and Market Research (ESOMAR)
- European Pharmaceutical Market Research Association (EphMRA)
- Advertising Research Foundation (ARF)
- Director General Ordinance Factories (DGOF)
- Market Research Society (MRS UK)
- Australian Market and Social Research Society (AMSRS)
- British Healthcare British Intelligence Association (BHBIA)
- Korea Research Association (Kora)
- Dutch Market Research Association (MOA)
- Intellus Worldwide
- Perhimpunan Riset Pemsaran Indonesia (PERPI)
- Market Research Society of India (MRSI)
- Marketing Opinion And Research Society Philippines (MORES)
- China Marketing Research Association (CMRA)
- Japan Marketing Research Association (JMRA)
- Market Research Society Hong Kong (MRSHK)
- Australian Market and Social Research Organisations (AMSRO)
- Canadian Marketing Association (CMA)
- Advertising Research Foundation (ARF)
6. Cookie Disclosure
Cookies are small text files stored on your computer or mobile device by a website that assigns a numerical user ID and stores certain information about your online browsing. They are used to help users navigate websites efficiently and perform certain functions. The website sends information to the browser, which then creates a text file on the user’s computer or mobile device. Every time the user goes back to the same website, the browser retrieves and sends this file to the website's server.
We currently don’t use any cookie on the Blog. We reserve the right to use required and security-specific cookies. Please ensure you read this policy regularly.
We take reasonable steps to keep personal data in our possession or control accurate, complete and current, based on the most recent information made available to us by you.
8. Children’s Data
Lightspeed recognizes the need to provide further privacy protections with respect to personal data collected from children. We never knowingly invite to the Blog children under the legal age set by the authorities in the country in which you reside to participate in research studies without parental permission.
9. Sensitive Data
From time to time, Lightspeed may collect personal data that is classified as “special categories” of personal data. This includes racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation. You can always choose whether to provide this data to us.
10. Rights of Individuals
To request access to personal data that we hold about you, you should submit your request in writing to the e-mail address or postal address shown below in the ”How to Contact Us” section. When you make a request you should provide any relevant identifiers. We may also request you provide a copy of a valid government issued or official identification (such as drivers licence or passport) if we need to verify your request.
You have the following rights in relation to your personal data:
- Right to change your mind and to withdraw your consent;
- Right to access your personal data;
- Right to rectify your personal data;
- Right to erase your personal data from our systems, unless we have legitimate interest reasons for continuing to process the information;
- Right to port your personal data (portability right);
- Right to restrict processing of your personal data;
- Right to object to the processing of your personal data;
- Right to opt out of the sale of your personal data (if we sell your data) and
- Right to not be discriminated against for exercising any of the rights available to you under applicable data protection laws.
If necessary, we shall also notify third parties to whom we have transferred your personal data of any changes that we make on your request. Note that while Lightspeed communicates to these third parties, Lightspeed is not responsible for the actions taken by these third parties to answer your request. You may be able to access your personal data held by these third parties and correct, amend or delete it where it is inaccurate.
11. Data Storage and Retention
Personal data shall be retained only for such period as is appropriate for its intended and lawful use.
As part of the Company Business Continuity Plan and as required by ISO 27001, ISO 9001, ISO 20252 and in certain instances the law, our electronic systems are backed up and archived. These archives are retained for a defined period of time in a strictly controlled environment. Once expired, the data is deleted and destroyed to ensure the data is erased completely.
13. How to Contact Us
If you have any questions or concerns relating to your privacy or to Lightspeed privacy practices, Data Protection Officer is available at:
- by email at firstname.lastname@example.org
- by post to: Lightspeed, Privacy Office, 4 Millbank, Westminster, London SW1P 3JA, United Kingdom
- Calling the 1800 toll free number listed on Kantar.com (only if you are in the USA).
14. Complaints & Country Specific Disclosure
If you consider that our processing of your personal data infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state or jurisdiction of your habitual residence, your place of work or the place of the alleged infringement. To find the contact details of your country supervisory authority, please consult this page: https://edpb.europa.eu/about-edpb/board/members_en.