rb-logo-inline

Privacy Policy

graphic

This Privacy Policy details our processing of personal data in connection with our business dealings. Please read this privacy policy carefully as it contains important information on who we are and how and why we collect, store, use and share your personal data. It also explains your rights in relation to your personal data and how to contact us or supervisory authorities in the event you have a complaint.

  • Reference to “you” is to the data subjects in respect of which we process their personal data.
  • We are Rathbone Results Limited and we are registered with the ICO – registration number - ZA702414.

We are a “B2B” Consultancy that works with our clients and our role focusses on our Clients’ (Clients) internal processes. Our consultancy is a holistic offering which considers how the Client delivers its services to its clients and how that can be enhanced. Our work is likely to involve coaching and mentoring our Clients’ workforce – employees, and others who the client may engage the services of from time to time (Personnel). This mentoring may be a stand alone exercise or part of the wider consultancy project. Although our operational consultancy largely involves the processing of commercial data, our work by definition also involves processing the personal data of Personnel that is disclosed to us as we learn about the businesses’ operations in detail and how the Personnel are involved. We also offer a Management Development training programme.

Please note:

  1. If you would like this notice in another format (for example audio, large print, braille) please contact us;
  2. We do not unlawfully transfer personal data outside the EEA and UK;
  3. We may change this privacy policy from time to time. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice by sending you an email notification;
  4. You can contact us by post, email or telephone if you have any questions about this privacy policy or the information we hold about you, to exercise a right under data protection law or to make a complaint;
  5. If you are still dissatisfied then you will need to approach the ICO Information Commissioner's Office (ICO)
  6. We take reasonable steps to ensure your personal data remains accurate and up to date. To help us with this, please let us know if any of the personal data you have provided to us has changed.

Personal data we collect about you

We will typically collect and use the following personal data relating to Personnel:

  • your name and contact information, including email address and telephone number;
  • your position with the Client;
  • data about you we collect from the public domain;
  • the profile of you we assemble as we work with you and understand your role and responsibilities. This will include your personal or professional interests as well as any details we retain regarding your personal and professional development. We may review your professional and personal online presence, e.g. LinkedIn and your social media footprint such as Facebook;
  • data pertaining to the progress of the coaching and mentoring;
  • information regarding you that the Client (your employer) shares with us;
  • Information that you share with us.

We market our services to prospective, current and former Clients. Accordingly, the personal data we collect will include:

  • Your contact details and role with the Client;
  • Any responses to marketing communication and attendance at events;
  • Information we may learn from your use of our website. This includes the use of cookies (for more information on our use of cookies, please see our cookie policy and data you share if you register).

Certain, limited, personal data we collect is treated as “special category” to which additional protections apply under data protection law. The processing of special category data will be incidental and will only be relevant if you share that information with us. This will typically relate to how your circumstances affect your performance at work or are relevant to you attending an event we organise. An example would be any disability, or particular access or dietary requirements.

Our Use of your Data

Device and Connection Information: We collect information about your computer, phone, tablet, or other devices you use to work with us. We also collect information through your device about your operating system, browser type, IP address, device identifiers, and crash data.

To provide services: We use information about you to provide services to the Client, including authenticating you when you log in, provide customer support, and operate and maintain the services. For example, email or name is used as your unique identifier. We use your information to resolve technical issues you encounter, to respond to your requests for assistance.

For safety and security: We use information about you to verify accounts and activity, to monitor suspicious activity.

Marketing: We will use your personal data to send you updates (by email, text message, telephone or post) about our business and the services it offers. We have a legitimate interest in using your personal data for marketing purposes. This means we do not usually need your consent to send you marketing information. If we change our marketing approach in the future so that consent is needed, we will ask for this separately and clearly.

You do, however, have the right to opt out of receiving marketing communications at any time by:

  • contacting us
  • using the ‘unsubscribe’ link in emails

We may ask you to confirm or update your marketing preferences if you ask us to provide further services in the future, or if there are changes in the law, regulation, or the structure of our business.

We will always treat your personal data with the utmost respect and never sell OR share it with other organisations for marketing purposes.

Sharing Data

We may occasionally also share personal data with:

  • our professional advisors, in which case the recipient of the information will be bound by confidentiality obligations;
  • law enforcement agencies, courts, tribunals and regulatory bodies to comply with our legal and regulatory obligations;
  • other parties that have or may acquire control or ownership of our business (and our or their professional advisers) in connection with a significant corporate transaction or restructuring, including a merger, acquisition, asset sale, initial public offering or in the event of our insolvency—usually, information will be anonymised but this may not always be possible. The recipient of any of your personal data will be bound by confidentiality obligations.

The Lawful Basis of Processing

The lawful basis for processing the personal data is legitimate interest. The legitimate interest assessment for this processing can be summarised as follows.

We restrict the processing of personal data on the operations side of our business to clients, prospective clients, business contacts and those who voluntarily register. The processing is limited to our business dealings with those entities and we do not process any personal data beyond those business related dealings. We process the personal data to further those business relationships. We never sell or transfer the data to third parties. Every communication gives opt out rights.

This policy does not extend to how we process the personal data of employees which is documented internally.

Retention

  1. Managed accounts: If the services are made available to you through a Client, we retain your information if required by the administrator of your account. We have separate retention policies for data we are responsible for. These are available on request.
  2. Marketing information: If you have elected to receive marketing emails from us, we retain information about your marketing preferences for 24 months from the date you last expressed interest in our services.

How we share information we collect

Sharing with third parties: We do not share any personal information we collect about you with third parties without consent.

We work with third-party service providers to provide website and application development, hosting, maintenance, backup, storage, testing, virtual infrastructure, analysis and other services for us, which may require them to access or use information about you. If a service provider needs to access information about you to perform services on our behalf, they do so under close instruction from us, including policies and procedures designed to protect your information.

We share information about you with third parties when you give us consent to do so. For example, we often display personal testimonials on our public websites. With your consent, we may post your name alongside the testimonial.

How we store and secure information we collect

Information storage and security: The data is either held by the Client who is responsible for its processing, retention and security. Where we retain and process the data we use data hosting service providers to host the information we collect, and we use technical measures to secure your data.

While we implement safeguards designed to protect your information, no security system is impenetrable.

How to access and control your information

You have certain choices available to you when it comes to your information. Below is a summary of those choices, how to exercise them and any limitations.

Under certain circumstances, you have rights under data protection laws in relation to your personal data:

  • Request access to your personal data.
  • Request correction of your personal data.
  • Request erasure of your personal data.
  • Object to processing of your personal data.
  • Request restriction of processing your personal data.
  • Request transfer of your personal data.
  • Right to withdraw consent.

If you wish to exercise any of the rights set out above, please contact info@rathboneresults.com.

No fee usually required

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.

What we may need from you

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

Time limit to respond

We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.