Our view is do unto others as you would have them do unto you. So with regards to privacy we take it as seriously as we take our own. This isn't a website that looks to acquire huge amounts of data on its visitors. It's a window into our business and our brains. That said, privacy is important regardless of how modest your intentions, so if you want to know more beyond this policy or require clarification please send us an email about it and we’ll get back in touch as quick as we can. You can reach us at: email@example.com
Who are we?
How does Bridge protect your personal data?
Bridge protect your personal data in accordance with applicable laws and our data privacy policies. In addition, Bridge maintain appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing and/or against accidental loss, alteration, disclosure or access, or accidental or unlawful destruction of or damage thereto.
Which categories of personal data do we collect and how do we process such personal data?
We collect personal data of our employees, potential employees, clients, suppliers, business contacts, investors and website users. If the data we collect are not listed in this privacy statement, we will give individuals (when required by law) appropriate notice of which other data will be collected and how they will be used. Except for certain information that is required by law, your decision to provide any personal data to us is voluntary. You will therefore not be subject to adverse consequences if you do not wish to provide us with your personal data. However, please note that if you do not provide certain information, we may not be able to accomplish some or all of the purposes outlined in this privacy statement, and you may not be able to use certain tools and systems which require the use of such personal data. If you provide us with personal data of another person (for instance, a potential employee/referral), you are responsible for ensuring that such person is made aware of the information contained in this privacy statement and that the person has given you his/her consent for sharing the information with Bridge. The above-mentioned categories of personal data have been obtained either directly from you (for example, when you provide information to sign up to receive our content) or indirectly from certain third parties (for example, through our website’s content management system). Such third parties include our affiliates, public authorities, public websites and social media, suppliers and technology vendors.
For what purposes and on which legal basis do we use your personal data?
Bridge uses your personal data only where required for specific purposes. These are to: USAGE: Managing our contractual and/or employment relationship with you. LEGAL BASIS: Necessary for the performance of a contract to which you are a party. USAGE: Recruitment. LEGAL BASIS: Justified on the basis of our legitimate interests for ensuring that we recruit the appropriate employees. USAGE: Facilitating communication with you (including in case of emergencies, and to provide you with requested information). LEGAL BASIS: Justified on the basis of our legitimate interests for ensuring proper communication and emergency handling within the company. USAGE: Operating and managing our business operations. LEGAL BASIS: Justified on the basis of our legitimate interests for ensuring the proper functioning of our business operations. USAGE: Complying with legal requirements. LEGAL BASIS: Necessary for the compliance with a legal obligation to which we are subject. USAGE: Monitoring your use of our systems (including monitoring the use of our website and any apps and tools you use). LEGAL BASIS: Justified on the basis of our legitimate interests of avoiding non-compliance and protecting our reputation. USAGE: Improving the security and functioning of our website, networks and information. LEGAL BASIS: Justified on the basis of our legitimate interests for ensuring that you receive an excellent user experience and our networks and information are secure. USAGE: Undertaking data analytics, i.e. applying analytics to business operations and data to describe, predict and improve business performance within Bridge and/or to provide a better user experience. LEGAL BASIS: Justified on the basis of our legitimate interests for ensuring the proper functioning of our business operations. USAGE: Marketing our products and services to you (unless you objected against this usage) LEGAL BASIS: Justified on the basis of our legitimate interests for ensuring that we can conduct and increase our business. Where the above table states that we rely on our legitimate interests for a given purpose, we are of the opinion that our legitimate interests are not overridden by your interests, rights or freedoms, given (i) the transparency we provide on the processing activity, (ii) our privacy by design approach, (iii) our regular privacy reviews and (iv) the rights you have in relation to the processing activity. Please contact the Data Officer (firstname.lastname@example.org) if you wish to obtain further information on our approach. We will process your personal data for the purposes mentioned above based on your prior consent, to the extent such consent is mandatory under applicable laws. We will not use your personal data for purposes that are incompatible with the usages of which you have been informed, unless it is required or authorized by law, or it is in your own vital interest (e.g. in case of a medical emergency) to do so.
Will we share your personal data with third parties?
We may transfer personal data to our service providers, professional advisors, public and governmental authorities or third parties in connection with an actual or potential corporate or commercial transaction. Such third parties may be located in other countries. Before we do so, we shall take the necessary steps to ensure that your personal data will be given adequate protection as required by relevant data privacy laws. Unless you are otherwise notified, any transfers of your personal data from within the European Economic Area (EEA) to third parties outside the EEA will be based on an adequacy decision or are governed by the standard contractual clauses (a copy of which can be obtained through the contact information included below). Any other non-EEA related transfers of your personal data, will take place in accordance with the appropriate international data transfer mechanisms and standards.
What about sensitive data?
We do not generally seek to collect sensitive data through this site or otherwise. In the limited cases where we do seek to collect such data, we will do this in accordance with data privacy law requirements and/or ask for your consent. The term “sensitive data” refers to the various categories of personal data identified by data privacy laws as requiring special treatment, including in some circumstances the need to obtain explicit consent from you. These categories include racial or ethnic origin, political opinions, religious, philosophical or other similar beliefs, membership of a trade union, physical or mental health, biometric or genetic data, sexual life or orientation, or criminal convictions and offences (including information about suspected criminal activities).
What about data security?
We maintain organizational, physical and technical security arrangements for all the personal data we hold. We have protocols, controls and relevant policies, procedures and guidance to maintain these arrangements taking into account the risks associated with the categories of personal data and the processing we undertake. Regarding your use of our websites, you should understand that the open nature of the internet is such that information and personal data flows over networks connecting you to our systems without security measures and may be accessed and used by people other than those for whom the data are intended
Where will your personal data be processed?
As it stands, at the time of writing, Bridge operates exclusively in the UK, as a result any data is processed within this geographical region. Any such actions take place in accordance with the applicable data privacy laws that bind the United Kingdom. Our processes conform and reflect the standards contained in European data privacy laws (including the General Data Protection Regulation).
How long will your personal data be retained?
We will retain your personal data only for as long as is necessary. We maintain specific records management and retention policies and procedures, so that personal data are deleted after a reasonable time according to the following retention criteria: We retain your data as long as we have an ongoing relationship with you (in particular, if you are an active client or employee) We will only keep the data while our relationship is active or for as long as needed to provide services to you or you are employed We retain your data for as long as needed in order to comply with our legal and contractual obligations.
Which rights do you have with respect to the processing of your personal data?
You are entitled (in the circumstances and under the conditions, and subject to the exceptions, set out in applicable law) to: Request access to the personal data we process about you: this right entitles you to know whether we hold personal data about you and, if we do, to obtain information on and a copy of that personal data. Request a rectification of your personal data: this right entitles you to have your personal data be corrected if it is inaccurate or incomplete. Object to the processing of your personal data: this right entitles you to request that Bridge no longer processes your personal data. Request the erasure of your personal data: this right entitles you to request the erasure of your personal data, including where such personal data would no longer be necessary to achieve the purposes. Request the restriction of the processing of your personal data: this right entitles you to request that Bridge only processes your personal data in limited circumstances, including with your consent. Request portability of your personal data: this right entitles you to receive a copy (in a structured, commonly used and machine-readable format) of personal data that you have provided to Bridge, or request Bridge to transmit such personal data to another data controller. To the extent that the processing of your personal data is based on your consent, you have the right to withdraw such consent at any time by contacting Bridge's data protection officer at email@example.com Please note that this will not affect Bridge's right to process personal data obtained prior to the withdrawal of your consent, or its right to continue parts of the processing based on other legal bases than your consent. If, despite our commitment and efforts to protect your personal data, you believe that your data privacy rights have been violated, we encourage and welcome individuals to come to Bridge first to seek resolution of any complaint. You have the right at all times to register a complaint directly with the relevant supervisory authority or to make a claim against Bridge with a competent court (either in the country where you live, the country where you work or the country where you deem that data privacy law has been infringed).
Specifically, how do we use personal data when you visit Bridge websites?
In addition to the information set out above, the following sections specifically describe how we use personal data when you visit the Bridge website:
Which personal data do we gather?
Bridge collects personal data at its websites in two ways: (1) directly (for example, when you provide personal data to sign up to receive content); and (2) indirectly (for example, through our website’s technology).
We may collect and process the following personal data:
Personal data that you provide by filling in forms on our website. This includes registering to use the website, subscribing to services, newsletters and alerts, registering for an event or requesting a document or further information. Pages that collect this type of personal data may provide further information as to why your personal data are needed and how it will be used. It is completely your decision as to whether you wish to disclose this information and personal data.
If you contact us, we may keep a record of that correspondence.
Any postings, comments or other content that you upload or post to a Bridge website Our website collects personal data about your computer, including (where available) your IP address, operating system and browser type, for system administration, to filter traffic, to look up user domains and to report on statistics. Details of your visits to our website, the pages you view and resources you access or download, including but not limited to, traffic data, location data, weblogs and other communication data. Please see the Cookies section below for more specific information.
Do we include links to websites and/or programs of third parties?
How do we use personal data for marketing purposes?
In addition to the information set out above, the following sections describe how we use personal data for marketing purposes:
What are the sources of marketing data?
Do we send targeted e-mails? Do we maintain Customer Relationship Management(CRM) databases? Do we combine and analyze personal data? Do we share personal data with third parties? What are your rights regarding marketing communications
Where do we get our marketing data?
The bulk of the personal data we collect and use for marketing purposes relates to individual employees of our clients and other companies with which we have an existing business relationship. We may also obtain contact information from public sources, including content made public through social media websites, to make an initial contact with a relevant individual at a client or other company.
Do we send targeted e-mails?
We send commercial e-mail to individuals at our client or other companies with whom we want to develop or maintain a business relationship in accordance with applicable marketing laws. Our targeted e-mail messages typically include web beacons, cookies, and similar technologies that allow us to know whether you open, read, or delete the message, and links you may click. When you click a link in a marketing e-mail you receive from Bridge, we will also use a cookie to log what pages you view and what content you download from our websites, even if you are not registered at or signed into our site. Targeted e-mails from Bridge may include additional data privacy information, as required by applicable laws.
Do we maintain Customer Relationship Management (CRM) databases?
Like many companies, Bridge uses customer relationship management (CRM) database technologies to manage and maintain our marketing and business development efforts. Our CRM databases include personal data belonging to individuals at our client and other companies with whom we already have a business relationship or want to develop one. The personal data used for these purposes includes relevant business information, such as: contact data, publicly available information, your responses to e-mail campaigns (including preceeding website activity and user behaviour), website activity of users of our website, and other business information included by Bridge professionals based on their personal interactions with you. If you wish to be excluded from our CRM databases, please contact us.
Do we combine, augment and analyse personal data?
Do we share personal data with third parties?
In addition to the third parties mentioned in the section “Will we share your personal data with third parties?” above, we may share your personal data with marketing agencies
What are your rights regarding marketing communications?
You can exercise your right to prevent marketing communications to you by utilising opt-out mechanisms in e-mails we send to you. You can also exercise the right to discontinue marketing communications to you, or to have your personal data removed from our customer relationship management (CRM) databases at any time by contacting us. In such cases, we will retain minimum personal data to note that you opted out in order to avoid contacting you again.