We will only share your Personal Data with others when we are legally permitted to do so and where it’s necessary to fulfil the purposes related to those described above. When we disclose Personal Data to others, we put contractual arrangements and security mechanisms in place to protect the Personal Data and to comply with our own data protection, confidentiality and security standards.
Personal Data we hold could be transferred:
- to our clients
By carrying out our Market Research Activities on behalf of our clients we obtain and process information of you as a participant. If you participate in online surveys, polls or discussions or post material in the community, your screen name and the information you post will only be visible to us, the other participants in the community and to our clients. Any posts you make to a survey, poll or discussion in the community will in principle only be associated with your screen name. If you post any personally identifiable information yourself, we may at our discretion remove this for your own security. We recommend that you choose a screen name which does not resemble your real name.
We process this information on behalf of our clients and sharing this information with our clients is necessary for delivering our products and services to our clients. In this context it is possible that we share photos, image recordings, sound recordings or full datasets (e.g. answers to survey questions to help inform them about specific elements of their offer) we hold of you. However, we will only do so when we have obtained your explicit consent to such transfer.
Our Client may combine data collected from the Market Research Activity carried out by us on behalf of our clients with other data that they may hold about you. This Statement does not describe our client’s specific uses of your personal data, which information will be provided to you separately if this would deviate from the Market Research Purposes as set out above, but if you are not happy with your responses being used in this way, you should notify us prior to agreeing to participating to one of the Market Research Activities for which you are invited and for which you need to accept this Statement and any relevant terms and conditions of use. We can then determine with the client whether the use of your data can be limited and in that case whether it is possible to take part in the specific Market Research Activity.
We will not share Personal Data obtained in connection with providing our products and services to one client, with another client. We will also not sell, rent or lease this information to other third parties nor will we enrich our own database with such information or allow a third party to do so.
- within the InSites Group
We may share your Personal Data within our global network of corporations when this is necessary for carrying out our Market Research Activities and/or Business Activities and for the purpose for which your Personal Data was collected as set out above. For details of our subsidiaries and affiliates, please see contact details below or click here.
- to our Service Providers
Where necessary we use third parties to support us in providing our services and to help provide, run and manage our internal IT systems or (internal) business processes and ask them to perform certain tasks on behalf of us. We use services of providers of information technology, cloud based software as a service provider, Website hosting and management, data analysis, recruiting software, data back-up, security and storage services. Please find a list of our sub-processors via this link: https://info.insites-consulting.com/sub-processors/
We will only disclose or make accessible such Personal Data to these service providers to the extent required for the respective purpose. This data may not be used by them for any other purposes, in particular not for their own or third party purposes. In addition, our service providers are contractually bound to respect the confidentiality of your personal data through a so called “Data Protection Agreement”.
When you participate to our incentive system, we may have to share your Personal Data (e.g. name, e-mail address, …) with third parties that help us take care of our incentive handling.
- law enforcement or other government and regulatory agencies or to other third parties as required by, and in accordance with, applicable law or regulation:
We reserve the right to disclose any and all pertinent information to law enforcement or other third parties with the authority to acquire Personal Data, such as to check that we are complying with applicable law and regulation, to investigate an alleged crime, to establish, exercise or defend legal rights. We will only fulfil requests for Personal Data where this is necessary and appropriate and where we are permitted to do so in accordance with applicable law or regulation.
- inside and outside the European Economic Area (“EEA”)
We are a global network of corporations with entities established inside and outside the EEA and we can make use of third party service provides based outside the EEA to help us run our business. As a result, your Personal Data may be transferred outside the EEA. Under certain conditions the GDPR allows InSites Consulting to transfer Personal Data to such third countries.
In the context of international research projects InSites Consulting may also invite you to take part in research projects of both national and international business clients or partners, again including possible transfers outside the EEA .
In any case, we have taken steps to ensure all Personal Data is processed respecting adequate levels of security and that all transfers of the Personal Data outside the EEA take place in accordance with applicable data protection legislation and that there will be an appropriate level of protection. We will implement legal safeguards governing such transfer, such as standard contractual clauses, individuals’ consent, or other legal grounds permitted by applicable legal requirements. We evaluate each transfer and if necessary we conclude a SCC with the third party. Within the group we have concluded an intragroup agreement.