Lokcom is GDPR compliant
PURPOSE OF THIS POLICY
This Policy explains our approach to any personal information that we might collect from you using this website (the “Site”) and in other situations, and the purposes for which we process your personal information. This Policy also sets out your rights in respect of our processing of your personal information.
This Policy informs you of the nature of the personal information about you that is processed by us and how you can request that we delete, update, transfer and/or provide you with access to it. This Policy is intended to assist you in making informed decisions when using the Site.
This Policy complies with the standards set by Regulation (EU) 2016/79 on the protection of natural persons with regards to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
For purposes of this Policy, the term “Consumer” should be understood to mean any individual providing personal information to us via the Site or otherwise, but excluding all Lokcom employees.
Please note that by using or accessing the Site, you signify your agreement to be bound by and to this Policy. If you do not agree to this Policy, you may not access or otherwise use the Site.
TYPE OF INFORMATION WE COLLECT
Personal information is information that identifies you as an individual. Categories of personal information we collect through this Site includes:
- contact information (eg. name, physical address, telephone number, email address),
- information for hiring and human resources (eg. employment and education history, work eligibility status, date of birth, financial account information, government-issued identification information), and
- any additional information you submit to us.
This Site does not collect personal information unless you voluntarily submit that information to us or participate in the interactive features on the Site.
WAYS OF OBTAINING PERSONAL DATA
We do not obtain any personal information about a Consumer unless the Consumer has provided that information to us in a way providing for its clear and unequivocal consent to do so, including but not limited to visiting our website, by completion of a consent form or survey, or completion of an on-line or hard copy form. Consumers may choose to submit personal or private information by regular mail, e-mail, facsimile, electronic transmission over the Site, interoffice mail, or personal delivery, as each of these methods may be deemed applicable each time.
How We Use Personal Information
Our primary goal in collecting personal information from you is to:
- verify your identity,
- help us improve our products and services and develop and market new products and services,
- carry out requests made by you to us,
- investigate or settle inquiries or disputes,
- comply with any applicable law, court order, other judicial process, or the requirements of a regulator,
- enforce our agreements with you,
- protect the rights, property or safety of us or third parties, including our other clients and users of the Site,
- provide support for the provision of our Services, and
- use as otherwise required or permitted by law.
Uses of Personal Information Collected Through This Site
The following describes how we use personal information that we collect through this Site:
Information we collect with respect to our clients and potential clients is used to enable us to respond to client requests, to administer client accounts with us, to conduct credit checks, and to verify and carry out financial transactions for payments made to us.
Media and informational enquiries.
We may collect information for interviews requests, for media questions, or requests for information about our company. We may also provide you with the opportunity to sign up for newsletters or to receive copies of blogs and other information that we make available. Contact information may be requested in each case, together with details of other personal information that is relevant to these inquiries. This information is used in order to enable us to respond to your requests or media requests.
Potential employees and service providers may provide us with information to find out about and apply for career opportunities, including by providing resumes and other related information. This information is used to enable us to review applications, respond to these requests, and to make hiring decisions.
The information you provide to us may be archived or stored periodically by us according to our standard backup processes and our document retention policy.
Other Uses of Personal Information
We may also collect information in other contexts other than this Site based on our business relationship with you. That information may be used in the manner described above and in other ways, such as:
Surveys and voting.
We may collect personal information from you via surveys or voting polls. Participation is voluntary and you have the opportunity to decide whether or not to disclose information. At times, you may have to register to vote or to take part in a survey. We would use that information to report the results of the survey or vote.
We may conduct promotions, contests or giveaways, which may require that you register to enter. We collect personal information from you in order to conduct the promotion, contest or giveaway and to deliver prizes or notices. Participation in these events and providing us with your information is voluntary.
We maintain information about journalists, talent, social media influencers, social media users and other professionals in the public relations, news or media industry. This information may be information that is voluntarily supplied to us by those individuals through our Site or in other situations, or information that is public or available in third party databases. We use this information to conduct our business on our own behalf or on behalf of our clients. We make efforts to minimise the use of this information to that which is necessary for our legitimate business interests
We may provide interactive areas, such as message boards, chat rooms or other forums. Participation in these areas by users is voluntary. We discourage you from submitting any information that may identify you personally when participating in these areas. Use of these public areas is not secure and we cannot ensure that your information will be protected.
We may carry out marketing activities using your personal information. We may send marketing information to you by mail or email. We may also provide you with information about media and public relations events. It may be necessary to mention the purpose of other marketing communications at the point that we collect that information. We send this information and materials to you where you have consented to receive such information or materials, where we have another lawful basis to do so to the extent required by law.
We only use your personal information when the law allows us to. Most commonly, we use your personal information in the following circumstances:
- Where we need to perform the contract, we are about to enter into or have entered into with you,
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests,
- Where you have consented to a certain use of your personal information, or
- Where we need to comply with a legal or regulatory obligation.
To the extent permitted under applicable laws, we also process, transfer, disclose, and preserve personal information when we have a good faith belief that doing so is necessary.
In circumstances where we rely on consent, we ask for your consent at the point of collection. Where we intend to further process your personal information, we may contact you to seek your consent for new purposes.
Where your personal information is completely anonymised, we do not require a legal basis to use it as the personal information no longer constitutes personal information that is regulated under data protection laws. However, our collection and use of such anonymised personal information may be subject to other laws where your consent is required.
Please see the next section for information relating to our legal basis for using personal information for marketing purposes.
USE OF DATA FOR MARKETING PURPOSES
We may use your personal information to form a view on what we think you may want or need, or what may be of interest to you. We may provide you with marketing information about our products and services we feel may interest you:
- if you have given your consent to receiving marketing material from us at the point, we collected your information, where required by law, or
- otherwise in our legitimate interests provided these interests do not override your right to object to such communications. In those cases, we believe that we have a legitimate interest in sending you marketing communications to provide you with the very best service we can and to optimise the benefits you receive from our business transactions with you.
We strive to provide you with choices regarding certain personal information uses, particularly around marketing and advertising. To see how you can opt out of marketing communications, please see the section entitled Opt-Out and Unwanted Communications.
We will get your express opt-in consent before we share your personal information with any company outside of Lokcom and its related businesses for its marketing purposes.
COLLECTION FROM THIRD PARTIES
We also collect personal information about you from various third parties and public sources. We reserve the right to supplement your personal information with information we gather from other sources which may include information we gather from online and offline sources.
PERSONAL INFORMATION OF CHILDREN
We do not intend to or knowingly collect personal information from children.
SHARING OF INFORMATION
We do not sell your personal information to other companies and we do not share it with other companies for them to use without your consent, except in connection with the sale or merger of Lokcom or the division or office responsible for the services.
We may share your personal information to any of our group affiliates, or to our agents, partners or contractors who assist us in processing transactions, fulfilling requests for information, receiving and sending communications, updating marketing lists, analysing data, providing IT and other support services or in other tasks, from time to time. Our agents, partners and contractors will only use your information to the extent necessary to perform their functions.
We may collect and use aggregated and non-personal information. We may share this aggregate information and non-personal information with unaffiliated third parties, such as business partners, manufacturers, distributors and retailers, in a form in which the shared information will not contain nor be linked to any personal information.
We may transmit personal information outside the EEA or to other locations globally. Moreover, personal information might be sent to the following third parties in or outside the EEA:
Selected Third Parties: We do not disclose or share any personal information with any external entity or third party, except to travel professionals, to clients to illustrate experience and qualifications for business purposes or promotion, and to third party agents, partners or contractors who assist us as described above under SHARING YOUR INFORMATION.
Other Third Parties: We may be required to disclose certain personal information to other third parties: (1) as a matter of law (e.g. to tax and social security authorities); (2) to protect our legal rights; (3) in an emergency where the health or security of an employee is endangered (e.g. a fire); (4) to law enforcement authorities in accordance with the relevant legislation in the different EEA Member States including but not limited to legislation transposing EU/2016/1148 concerning measures for a high common level of security of network and information systems across the EU (the “Network Information Security Directive”).
Some countries outside of the EEA benefit from a decision issued by the European Commission that they have an adequate level of data protection. To the extent that data is transferred outside the EEA to countries that do not benefit from such a decision, we have implemented appropriate safeguards to maintain an adequate level of data protection, including with regards to data subjects’ rights.
Therefore, we may transfer your personal information outside the EEA:
- In order to store it.
- In order to enable us to provide goods or services to you and fulfil our contract with you. This includes order fulfilment, processing of payment details, and the provision of support services.
- Where we are legally required to do so.
- In order to facilitate the operation of our group of businesses, where it is in our legitimate interests and we have concluded these are not overridden by your rights.
CONFIDENTIALTY AND SECURITY OF YOUR PERSONAL INFORMATION
We are committed to keeping the personal information you provide to us secure and we take reasonable precautions to protect your personal information from loss, misuse or alteration.
To safeguard against unauthorised access to personal information by third parties outside our organisation, all electronic personal information held by us is maintained on systems that are protected by up-to-date secure network architectures that contain firewalls and intrusion detection devices. The data saved in servers is “backed up” (i.e. the data are recorded on separate media) to avoid the consequences of any inadvertent erasure, destruction or loss otherwise. The servers are stored in facilities with high security, access protected from unauthorised personnel, fire detection and response systems. The location of these servers is known to a limited number of our employees.
We have implemented information security policies, rules and technical measures to protect the personal information that we have under our control from:
- unauthorised access;
- improper use or disclosure;
- unauthorised modification; and
- unlawful destruction or accidental loss.
All our employees and data processors (i.e. those who process your personal information on our behalf, for the purposes listed above), who have access to, and are associated with the processing of personal information, are obliged to respect the confidentiality of the personal information of all users of our services.
Information regarding job applications is encrypted and transmitted in a secure way. You can verify this by looking for a closed lock icon at the bottom of your web browser or looking for “https” at the beginning of the URL. Only employees or third parties who need the information to process a specific request are granted access to personally identifiable information.
ACCESSING YOUR DATA
You have the right under certain circumstances:
- To see the personal information we hold about you,
- Request your data be corrected or erased where appropriate,
- To restrict the processing of your personal information while we investigate your concern,
- Where processing is based on your consent, to receive your personal information in a commonly used electronic format, or ask that we move your personal information in that format to another provider, where your request relates to the data that you gave us directly and where technically possible, and
- To withdraw your consent at any time when processing relies upon consent.
Consumers have the right to be provided with information as to the nature of the personal information we store or process about them, and to request deletion or amendments. These requests can be made verbally or in writing at our contact information provided in the section below entitled ENFORCEMENT RIGHTS AND MECHANISMS. We typically respond within one month to such requests.
If access is denied, Consumers have the right to be informed about the reasons for denial. Consumers may use the dispute resolution described in the section entitled ENFORCEMENT RIGHTS AND MECHANISMS, as well as dispute resolution available through a competent regulatory body or authority. We handle, in a transparent and timely manner, any internal dispute resolution procedure relating to the collection and processing of personal information.
If any information is inaccurate or incomplete, a Consumer may request that data be amended. It is every person’s responsibility to provide us with accurate personal information and to inform us of any changes (e.g. new home address or change of name).
If a Consumer demonstrates that the purpose for which the data is being processed is no longer legal or appropriate, the data will be deleted, unless applicable law requires otherwise. Consumers can also object to direct marketing, or in certain other cases, object to processing more generally.
To exercise these rights, please contact us using the information provided in the following section of this Policy.
ENFORCEMENT RIGHTS AND MECHANISMS
If you have any complaints regarding our privacy practices, you have the right to make a complaint at any time to your local supervisory authority. We would, however, appreciate the chance to deal with your concerns before you approach your supervisory authority so please contact us in the first instance.
We ensure this Policy is observed and duly implemented. All persons who have access to personal information must comply with this Policy. Violations of the applicable data protection legislation in the EEA may lead to penalties and/or claims for damages.
If at any time you believe that your personal information has been processed in violation of this Policy, or if you have any inquires or complaints about the use or limitation of use of your personal information, you may contact:
Chairman and Co-founder
48 Gracechurch Street
London EC4V 0EJ
We are committed to cooperate with the different national EEA Data Protection Authorities (“DPAs”) and to comply with their dispute resolution procedures in cases of complaints. We are also committed to complying with any regulations or guidelines that DPAs may issue from time to time in accordance with EEA and Member State data protection legislation. We undertake to register and/or keep our registration updated as a data controller and/or processor in all jurisdictions where we maintain entities in the EEA.
Please note that for you to assert these rights, we may need to verify your identity to confirm your right to access your personal information. This is a security measure to ensure that personal information is not disclosed to any person who has no right to receive it. In order to verify your identity, we may need to gather more personal information from you than we currently have.
Where our use of your personal information requires your consent, you can provide such consent:
- at the time we collect your personal information following the instructions provided; or
- by informing us by e-mail, post or phone using the contact details set out in this Policy.
Please note that if you specifically consent to additional uses of your personal information, we may use your personal information in a manner consistent with that consent.
THIRD PARTY LINKS AND SERVICES
This Site contains links to third party websites and services. Please remember that when you use a link to go from our Site to another website or you request a service from a third party, this Policy no longer applies.
Your browsing and interaction on any other websites, or your dealings with any other third-party service provider, is subject to that website’s or third-party service provider’s own rules and policies. We do not monitor, control, or endorse the privacy practices of any third parties.
This Site may integrate with social networking services. You understand that we do not control such services and are not liable for the manner in which they operate. While we may provide you with the ability to use such services in connection with our Site, we are doing so merely as an accommodation and, like you, are relying upon those third-party services to operate properly and fairly.
This Policy does not apply to these third-party websites and third-party service providers.
We use analytical cookies to recognise and count users of our Site, measure the effectiveness of our content, and understand how visitors use our Site. We currently use Google Analytics for this purpose.
We may place, or allow a third party to place, functional cookies to make a website easier to use, such as cookies that maintain a user’s session.
You can review your Internet browser settings to exercise choices you have for certain cookies. If you disable or delete certain cookies in your Internet browser settings, you might not be able to access or use important functions or features of this Site, and you may be required to re-enter your log-in details.
For purposes of EU data protection law, the data controller of the personal information that we control is described in this Policy which processes the personal information.
We respond diligently and appropriately to requests from DPAs about this Policy or compliance with applicable data protection privacy laws and regulations. Our employees who receive such requests should contact their human resources manager or business legal counsel. Upon request, we provide DPAs with names and contact details of relevant persons. With regard to transfers of personal information between our entities, the importing and exporting entities (1) cooperate with enquiries from the DPA responsible for the entity exporting the data and (2) respect its decisions, consistent with applicable law and due process rights. With regard to transfers of data to third parties, we comply with DPAs’ decisions relating to it and cooperate with all DPAs in accordance with applicable legislation.
OPT OUT AND UNWANTED COMMUNICATIONS
To opt-out of any future promotional or marketing communications or any other communications from us, you should send a request to us at the contact information listed in the section entitled ENFORCEMENT RIGHTS AND MECHANISMS. We process your request within a reasonable time after receipt. Please note that if you opt out in this manner, certain aspects of this Site may no longer be available to you.
How Long Do We Keep Your Personal Information?
We retain personal information only for as long as is necessary for the purposes described in this policy, after which it is deleted from our systems.
MODIFICATIONS TO THE POLICY
We reserve the right to modify this Policy as needed, for example, to comply with changes in laws, regulations or requirements introduced by DPAs. Changes must be approved by our privacy points of contact, the office of the corporate legal department, or their designees who seek input as they reasonably deem appropriate from corporate executives for the amended Policy to enter into force. If we make changes to the Policy, this amended Policy will be submitted for renewed approval according to the relevant applicable provisions of the law. We will inform Consumers of any material changes in the Policy and post all changes to the Policy on relevant internal and external websites.
Effective with the implementation of this Policy, all existing and applicable EU company privacy guidelines relating to the collection and/or processing of personal information will, where in conflict, be superseded by the terms of this Policy. No other internal policy that conflicts with this Policy shall be applicable with respect to the protection of personal information handled by us in the EU. We encourage you to review this Policy periodically to be informed of how we use your personal information.
© 2019 Lokcom