(together, the “Services” and the “websites”, respectively).
You can generally visit our websites without actively entering any personal information about yourself. However, in certain areas of this site, we may ask you to contact us with questions or comments, or request more information about our services. In these cases, we will collect personal information from you directly as described below.
We may be required to collect certain personal information about you either by law or as a consequence of any contractual relationship we have with you. Failure to provide this information may prevent or delay the fulfilment of these obligations. We will inform you at the time your information is collected whether certain data is compulsory and the consequences of the failure to provide such data.
The categories of information that we collect directly from you are:
We collect information about you from your employer or organisation or our business partners.
The categories of information we collect from other sources include:
We may also collect information in the course of your on-going relationship with our Services and this website. The categories of information we collect in this context include:
We use your personal information to:
We may post customer testimonials on our websites which might contain personal information. We obtain the customer’s consent via email prior to posting the testimonial to post their name, title, and organisation name along with their testimonial. If you wish to update or delete your testimonial, you can contact us at email@example.com.
You have certain rights regarding your personal information, subject to local law. These include the following rights to:
If you would like to discuss or exercise these rights, please contact us at the details below.
We encourage you to contact us to update or correct your information if it changes or if the personal information we hold about you is inaccurate.
We will contact you if we need additional information from you in order to honour your requests.
We may share your personal information with third parties under the following circumstances:
Because we operate as part of a global business, the recipients referred to above may be located outside the jurisdiction in which you are located (or in which we provide the services). See the section on “International Data Transfer” below for more information.
We implement technical and organisational measures to ensure a level of security appropriate to the risk to the personal information we process. These measures are aimed at ensuring the ongoing integrity and confidentiality of personal information. We evaluate these measures on a regular basis to ensure the security of the processing.
We will keep your personal information for as long as we have a relationship with you. Once our relationship with you has come to an end, we will retain your personal information for a period of time that enables us to:
We will delete your personal information when it is no longer required for these purposes. If there is any information that we are unable, for technical reasons, to delete entirely from our systems, we will put in place appropriate measures to prevent any further processing or use of the data.
Your personal information may be transferred to, stored and processed in various countries, including those that are not regarded as ensuring an adequate level of protection for personal information under European Union law or by the European Commission. We have put in place appropriate safeguards (such as contractual commitments) in accordance with applicable legal requirements to ensure that your data is adequately protected. For more information on the appropriate safeguards in place, please contact us at the details below.
Diligent Corporation (“Diligent”) and BoardEffect LLC (“BoardEffect”) participate in and have certified their compliance with the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework. Diligent and BoardEffect are committed to subjecting all personal data received from European Union (EU) Member States and Switzerland, respectively, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework and to view |Diligent and BoardEffect’s certification, visit the US Department of Commerce’s Privacy Shield List: https://www.privacyshield.gov/list.
Diligent and BoardEffect are responsible for the processing of personal data they receive, under each Privacy Shield Framework, and subsequently transfer to a third party acting as an agent on their behalf. Diligent and Board Effect comply with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred under the Privacy Shield Frameworks, Diligent and BoardEffect are subject to the regulatory enforcement powers of the US Federal Trade Commission. In certain situations, Diligent and BoardEffect may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed to your satisfaction, please contact our US-based third-party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, described in more detail on the Privacy Shield website https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
Our site includes links to other websites whose privacy practices may differ from our practices. If you submit personally identifiable information to any of those sites, your information is governed by their privacy policies. We are not responsible for the privacy practices or the content of any sites to which our sites provide links. We encourage you to carefully read the privacy statement of any website you visit.
Social Media Widgets
Our websites include Social Media Features, such as the Facebook Like button, and Widgets, such as the Share this button or interactive mini-programs that run on our websites (the “Features”). These Features may collect your Internet protocol address, which page you are visiting on our website, and may set a cookie to enable the Feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our website. Your interactions with these Features are governed by the privacy statement of the company providing it.
eShare and, with respect to individual service specific inquiries or relationships, the relevant group companies (available here), are the controllers responsible for the personal information we collect and process. You can contact eShare by emailing: firstname.lastname@example.org or by writing to us at eShare, 1 Oxford Road, Newbury, Berkshire, RG14 1PD.
Our Data Protection Officer can be contacted at email@example.com.
If you have questions or concerns regarding the way in which your personal information has been used, please contact firstname.lastname@example.org. If you have inquiries related a data subject access requests, please email email@example.com.
We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If, however, you believe that we have not been able to assist with your complaint or concern, you have the right to make a complaint to the data protection authority.
Last Updated: The 25th Day of May, 2018