DataGavel collects Personal Data through the information you provide us via data transmission, website input, mobile application input, email, telephone, and/or face to face meeting. DataGavel also collects Personal Data indirectly (e.g., through research) and from third-party sources (e.g., vendors). In addition, we collect Personal Data via cookies in accordance with our cookie policy and the preferences and settings in your browser.

DataGavel uses Personal Data for legitimate business purposes, including:

• To provide services to our clients, subject to contractual obligations;
• For data analysis;
• For data anonymization, pseudonymization and aggregation;
• To maintain business relationships;
• To market events, webinars, reports, services, and industry updates;
• To develop new products, services and offerings, or to enhance, improve or modify our products, services and offerings;
• To record your usage of our website and mobile applications; and
• As required by law or regulation.

We may anonymize or pseudonymize Personal Data and aggregate it with other de-identified data. This makes it impossible or impractical to identify the data subject.

DataGavel will only use Personal Data for the purposes for which it was collected, unless we reasonably believe it should be used for another purpose compatible with an original purpose. If we need to use Personal Data for an unrelated purpose, we will notify you and, if appropriate, seek your consent; however, we may process Personal Data without your knowledge or consent when required or permitted by law.

DataGavel will not sell or rent Personal Data but we may share it with:

• Companies affiliated with DataGavel and/or service providers under contract with us who provide IT, HR, system administration services, and/or product development services;
• Professional advisers under contract with us;
• Regulatory and law enforcement authorities in certain circumstances; or
• Third parties to whom we may choose to sell, or transfer, or merge parts of our business or assets. If a change happens to DataGavel’s business, the new owners may use Personal Data in the same way as set out in this policy.

DataGavel requires that all third parties respect the security of Personal Data and treat it in accordance with applicable law. Third parties may not use Personal Data for their own business purposes; it must be used for the specific purposes identified by DataGavel.

If DataGavel transfers Personal Data to countries outside of the country in which the information was originally collected, we will only transfer Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the United States Federal Trade Commission or the European Commission.

We use industry standard controls to protect Personal Data by:

• Not collecting or retaining excessive amounts of Personal Data;
• Protecting Personal Data from loss, misuse, unauthorized access and disclosure. Any employees, agents, contractors and third parties who are authorized to access Personal Data act on our instructions and are subject to a duty of confidentiality;
• Keeping Personal Data up to date
• Storing and destroying it securely;
• Ensuring that appropriate administrative, technical and physical safeguards are in place to protect Personal Data. This includes measures to deal with any suspected data breach;
• Regularly reviewing DataGavel’s information collection, storage and processing practices, including physical security measures.

While DataGavel operates to the highest standards, we are aware that the transmission of information via the internet is not completely secure. We cannot guarantee the security of data transmitted to our website and/or mobile applications and any such transmission is at your own risk. Where we have given you (or you have chosen) a password which enables you to access our website and/or mobile applications, you are responsible for keeping this password confidential. Do not share your password with anyone.

DataGavel’s website and mobile applications may include links to third-party websites, plug-ins and/or applications. Clicking on these links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites, plug-ins and applications, and we are not responsible for their content or privacy statements. When you leave our website or mobile applications, you should read the privacy statement posted by every website, plug-in or application you visit.

DataGavel uses “cookies” on its website and mobile applications. A cookie is a piece of data stored on your system or device that helps DataGavel improve your access to our website and/or mobile applications. Cookies also help us track and target your interests in order to enhance your experience on our website and mobile applications. Cookies are not linked to any personally identifiable information unless you or your employer are a DataGavel client and/or you have elected to identify yourself in order to receive information from us.

You can disable or remove any cookies stored on your system or device, but this may stop DataGavel’s website or mobile applications from functioning properly.

If and when DataGavel collects Personal Data, the length of time for which DataGavel retains it depends on the type of data, the purpose for which it was collected, and our contractual, legal and regulatory retention requirements.

If we anonymize or pseudonymize your data (so that it is impossible or impractical to identify the data subject), we may use this data indefinitely and without further notice to you.