Constellation-I Ltd - Privacy Policy

Introduction:

Constellation-I Ltd., is as a Professional Insight & Marketing Research organisation (referred to as ‘we’, ‘our’ or ‘us’ in this Privacy Policy) registered in England & Wales, Company Number: 11263520.

Our ‘Core Activity’ is providing marketing research services to people, organisations and brands.

We are a ‘Data Controller’ as we determine the purposes and means of processing personal information, and we are registered as a ‘Data Controller’ with the Information Commissioner’s Office (ICO Registration No.: ZA329867).

This Privacy Policy only applies to us and explains how we use any personal information that we collect and process to fully comply with the requirements of the General Data Protection Regulation (GDPR) in force from May 25th 2018.

How to contact us:

If you have any questions about our Privacy Policy or personal information we hold about you, please contact us:

  • By post: Eustace Cottage, High Street, Kingston Blount, Oxfordshire. OX39 4SJ.

What is our legal basis for collecting and processing your personal information?

We collect and process personal information about you when you voluntarily participate in a market research survey, and when a third party provides personal information about you, in order that you might take part in a market research survey.

A third party might include an organisation that you have interacted with in the past, e.g. bought products, services or requested personal information from, provided feedback or personal information to, as well as personal information available from publically accessible sources, obtained from a list broker or credit rating agency.

We use Cookies and collect IP addresses during web-based surveys and/ or if you visit a website related to us.

This personal information is held on the legal basis of consent and legitimate interests.

How will we use the personal information about you?

We collect personal information about you for market research purposes only in accordance with the Market Research Society’s Code of Conduct and the ICC/ESOMAR International Code on Market and Social Research.

This means that all data will be anonymised and will not be attributed to you without your explicit consent.

How can you access this personal information, provide corrections or ask for it to be erased?

You have the right to request a copy of the personal information that we hold about you, to ask us to correct or erase it, to restrict us from using it, and to ask us to move your personal information to a new provider.

Should you wish to use any of these rights, please contact us (see ‘How to contact us’ for our contact details).

To defray administration costs, we will make a small charge for this service, and for reasons of confidentiality, we will require you to fully authenticate your identity. We will aim to respond within one calendar month of your request.

How long is our retention period of your personal information?

Your personal information will be securely erased from our systems within 12 months of the date of your survey.

With whom may we share your personal information?

We may share your personal information with other organisations for market research survey purposes only, e.g. an organisation providing products or services to us to facilitate our core activity, and if required to do so by law.

We will not share your personal information with any third parties for marketing purposes, but we will share your personal information with a third party if you have provided explicit consent for us to do so, e.g. to correct, remove or restrict information.

If we share your information, we will only do so with a third party that fully complies with the requirements of GDPR.

Where is your personal information held?

Your information may be transferred outside of the European Economic Area (EEA), e.g. by a hosting, survey or email provider, but we will only do so with a third party that fully complies with the requirements of GDPR.

What are Cookies?

Cookies are text files placed on your digital device when you visit a website to collect standard internet log and visitor behaviour information. This information is used to track website visitor use and to compile statistical reports on website activity, but you can set your browser to not to accept cookies.

Do we have a Data Protection Officer?

We are not required to appoint a Data Protection Officer (DPO) to fully comply with the requirements of GDPR – this is because we are not a public authority or body, and our core activities do not require large scale, regular and systematic monitoring of individuals (e.g. online behaviour tracking) nor do our core activities require large scale processing of special categories of data or data relating to criminal convictions and offences.

Changes to our Privacy Policy:

We regularly review and, where necessary, update our Privacy Policy.

This Privacy Policy was last updated on May 25th 2018.

How do I lodge a complaint with a Supervisory Authority:

If you have any concerns about any organisation's information rights practices, you can report it to the Information Commissioner’s Office (ICO).