Effective date: July 7, 2023
LifeScore Ltd. (together with its affiliates, “we”, “our”, “us”) is committed to protecting and respecting your privacy. We are a company established in England and Wales with a registered office at Crown Chambers, Bridge Street, Salisbury, Wiltshire, United Kingdom, SP1 2LZ and registered company number 10402385. Our appointed representative in the European Economic Area is MyEDPO Ltd, with registered office at Unit 3d North Point House, North Point Business Park, New Mallow Road, Cork, Ireland.
For the purpose of the EU General Data Protection Regulation and the UK General Data Protection Regulation as defined by section 3 of the Data Protection Act 2018 (together the “GDPR”), as well as other applicable data protection laws, we are the data controller in relation to the personal data of the business representatives of our customers and prospective customers, partners and vendors, employees, employment prospects and website visitors (these and any others with respect to whom we collect personal data as a controller, shall collectively be referred to as “you” or “Data Subjects”).
Our Website and Services are not intended for children, and we do not knowingly collect data relating to children. Children must not use the Website and Services, except where their parent or guardian has provided consent, if this option is available in your location.
2. The information we collect
Information you give to us
You may provide us personal data when showing interest in our Services, including by contacting us via our Website, or by telephone, text/SMS, email, social media, instant chat, signing up for our newsletters, in the course of preparing a contract, or when otherwise engaging with us as service providers, contractors, distributors or business partners, or when you contact us for any other reason. Such personal data includes some or all of the following: name, email address, phone number, job title, the company with which you are associated, address, the content of your inquiry, payment and bank details and any other data you choose to provide us.
This information is required to enable us to fulfil our contract with you, to take steps prior to entering into a contract with you, or to process and respond to your inquiry. If you do not provide this information, we will not be able to provide you with our Services, respond to your inquiry, or establish a business relationship with you.
When you apply to a position at our company, you provide us with personal data such your name, contact information, any personal data contained in your resume (c.v.), your responses to any assessment, background check results (in accordance with applicable law), and any other Personal Data that you decide to provide us with. Please note that, in most cases, we receive the information directly from you, or record data in interview records, but we may also receive information from recruitment companies, references or background check companies. This information is necessary for our recruitment and hiring purposes. If you do not provide us with this data, we will not be able to assess you as a candidate and advance your recruitment process.
Information we collect automatically
When you visit our Website, we automatically collect the information sent to us by your computer, mobile phone or other device. This information includes: (i) your IP address; (ii) device information including, but not limited to, name and type of operating system; (iii) mobile network information; (iv) standard web information such as your browser type and the pages you access on our Website; (v) transaction information (but not payment card or account details), including device information, transaction details, and IP address; (vi) security information including a list of certain installed software, device and internet connection information, and available space on the device.
Information we collect from third parties
We also collect role-based personal data regarding potential customers, business partners, contractors and service providers from third-parties such as business affiliates or publicly available sources (e.g. LinkedIn). This data may include your full name, email address, job title, company, phone number and other public business-related information.
3. How we use your information
We process your personal data in order to perform our contract with you or to take steps prior to entering a contract with you, such as to:
- carry out our obligations arising from any contracts entered into between us and to provide you with the information, support and services that you request from from us;
- send you contract-related communications;
- verify and carry out financial transactions;
- provide you with Website functionality.
When required under applicable laws, we obtain your consent to process your personal data for the following reasons:
- sign you up for our newsletters or other promotional communications related to our Services, promotions, events and other content we think may be of interest to you (you can unsubscribe from these communications at any point);
- In order to use non-functional cookies or other tracking technologies on our Website, to promote our Website usage analytics and marketing efforts (for more information, see under ‘Cookies’ below.
In order to be responsive to you, to provide effective services to you, and to maintain our business relationship, as a matter of our legitimate interests, we will use your personal data to:
- establish a business relationship with you, contact you about our Services and otherwise promoting our marketing efforts;
- answer queries sent by you and contacting you upon your request;
- contact you to give you promotional information which may be of interest to you (as described above, in certain circumstances such communications may be subject to your prior consent under applicable laws). You can unsubscribe from these communications at any point;
- assess employment candidates;
- administer the Website and Services, and for internal operations, in order to conduct troubleshooting, data analysis, testing, research, statistical and survey analysis;
- maintain the safety and security of our users, the Website, our Services, and business;
- send you announcements in relation to security, privacy or administrative related communications (these communications are not marketing orientated, and we do not rely on consent, so you may not opt out).
In addition, we will use some or all of the above information to comply with any applicable legal obligations, to enforce any applicable terms and conditions and/ or terms of service, and to protect or defend the Services, our rights, the rights of our users, or others.
For more information, please refer to our Cookies Policy [insert link].
5. How we share your information
- With service providers and vendors for business purposes in our legitimate interests, or to perform a contract with you. Such third parties include: document management and sharing services; customer ticketing and support; CRM software service providers; data analytics vendors; data security, backup, and access control vendors; website hosting and analytics vendors; and, other standard business software and vendors. These service providers assist us with many different functions and tasks, such as providing data storage and disaster recovery services and communicating with you.
- When you request us to share certain information with third parties, with consent or to perform a contract with you. With your permission or upon your discretion, we will disclose your personal data to relevant third parties.
- With professional advisors, in our legitimate interests or as required by law. As necessary, we will share your personal data with professional advisors functioning as service providers such as auditors, law firms, or accounting firms.
- For legal and security reasons and to protect our services and business, in our legitimate interests or as required by law. We will share your personal data with regulators, law enforcement agencies, public authorities, or any other relevant organisations: (i) in response to a legal obligation; (ii) if we have determined that it is necessary to share your personal data to comply with applicable law or any obligations thereunder, including cooperation with law enforcement, judicial orders, and regulatory inquiries; (iii) to protect the interests of, and ensure the safety and security, of us, our users, a third party or the public; (iv) to exercise or defend legal claims; and (v) to enforce our terms and conditions, other applicable terms of service, or other agreements.
- With our affiliates, in our legitimate interests. We may share your personal data with companies within our corporate family.
- In connection with an asset sale or purchase, a share sale, purchase or merger, bankruptcy, or other business transaction or re-organisation, in our legitimate interests. We will share your personal data with a prospective buyer, seller, new owner, or other relevant third party as necessary while negotiating or in relation to a change of corporate control such as a restructuring, merger, or sale of our assets.
6. Where we store your information
For any transfers of data outside the EEA or the UK, the data transfer will be under the European Commission’s model contracts for the transfer of personal data to third countries (i.e., the standard contractual clauses) (the “Model Clauses”), or any equivalent contracts issued by the relevant competent authority of the UK, as relevant, unless the data transfer is to a country that has been determined by the European Commission or the relevant UK authorities, as applicable, to provide an adequate level of protection for individuals’ rights and freedoms for their personal data. Please contact us at firstname.lastname@example.org should you wish to examine a copy of the Model Clauses.
7. How long do we store your personal data?
We will retain and use your personal data to the extent necessary to provide the Services, comply with our legal obligations, resolve disputes and enforce our terms and conditions, other applicable terms of service, and our policies. We will also retain personal data to meet any audit, compliance and business best-practices.
Data that is no longer retained will be anonymized or deleted. Likewise, some metadata and statistical information concerning the use of our website and Services are not subject to the deletion procedures in this policy and may be retained by us and used indefinitely without further notice to you. We will not be able to identify you from this data.
We take great care in implementing, enforcing and maintaining the security of the personal data we process. We implement, enforce and maintain security measures, technologies and policies to prevent the unauthorized or accidental access to or destruction, loss, modification, use or disclosure of personal data. We likewise take steps to monitor compliance of such policies on an ongoing basis. Where we deem it necessary in light of the nature of the data in question and the risks to data subjects, we encrypt data. Likewise, we take industry standard steps to ensure our website and Services are safe and to prevent unauthorized access to our data bases.
Note however, that no data security measures are perfect or impenetrable, and we cannot guarantee that unauthorized access, leaks, viruses and other data security breaches will never occur. In addition, we cannot guarantee the security of your information transmitted through the Website or over email, text/SMS, or instant chat; any transmission is at your own risk.
We act in accordance with our policies and with applicable law to promptly notify the relevant authorities and data subjects in the event that any personal data processed by us is lost, stolen, or where there has been any unauthorized access to it, all in accordance with applicable law and on the instructions of qualified authority. We will promptly take reasonable remedial measures.
9. YOUR RIGHTS
If you are located in the EEA, the UK or other applicable jurisdictions, You have certain rights in relation to your personal data:
- Access: You have the right to access personal data we hold about you, how we use it, and who we share it with.
- Portability: You have the right to receive a copy of the personal data we hold about you and to request that we transfer it to a third party, in certain circumstances and with certain exceptions.
- Correction: You have the right to correct any of your personal data we hold that is inaccurate.
- Erasure: In certain circumstances, you have the right to delete the personal data we hold about you.
- Restriction of processing to storage only: You have the right to require us to stop processing the personal data we hold about you, other than for storage purposes, in certain circumstances.
- Objection: You have the right to object to our processing of your personal data.
- Objection to marketing: You can object to marketing at any time by opting-out using the unsubscribe/ opt-out function displayed in our communications to you.
- Withdrawal of consent: Where we rely on consent to process your personal data, you have the right to withdraw this consent at any time by emailing us at email@example.com.
Please note that a number of these rights only apply in certain circumstances, and all of these rights may be limited by law. For example, where fulfilling your request would adversely affect other individuals or our trade secrets or intellectual property, where there are overriding public interests or where we are required by law to retain your personal data.
To exercise any of these rights, you can contact firstname.lastname@example.org. We will respond to requests to exercise these rights without undue delay as required by applicable laws.
10. THIRD PARTY LINKS
11. CALIFORNIA ONLINE PRIVACY PROTECTION ACT NOTICE
Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers to inform websites that they do not want to be tracked. We do not respond to or honour DNT signals.
Our company does not meet the threshold of the California Privacy Rights Act of 2020 (“CPRA”), and therefore our data processing activities as a business are not governed by the CPRA.
We do not knowingly collect or solicit information or data from or about children under the age of 16 without parental consent. If you are under 16, do not register or attempt to use our Website, register for any of our Services or send any information about yourself to us. If we learn that we have collected or have been sent Personal Data from a child under the age of 16 without appropriate permissions, we will delete that Personal Data as soon as reasonably practicable without any liability to us. If you believe that we might have collected or been sent information from a minor under the age of 16, please contact us at: email@example.com as soon as possible.
If you have complaints about how we process your personal data, please contact us at firstname.lastname@example.org and we will respond to your request as soon as possible.
If you think we have infringed data protection laws, you can file a claim with the data protection supervisory authority in the EEA country in which you live or work or where you think we have infringed data protection laws, or with the UK Information Commissioner’s Office, as applicable to you. If the supervisory authority fails to deal with a complaint, you may have the right to an effective judicial remedy.