Red Flag Consulting Limited – Privacy policy

Effective date: 1 June 2020

At Red Flag Consulting Limited (“Red Flag“), we take your privacy seriously. This Privacy Policy is meant to help you understand what information we may collect, why we collect it, what we do with it, and how you can update and manage your information. When we refer to Red Flag, “we”, “us”, or “our”, we mean our entire group, including all our divisions, subsidiaries, and affiliate companies.

Red Flag is registered in Ireland, with its registered office at 2-4 Ely Place, Dublin. For the purposes of this Privacy Policy the controller of personal data is Red Flag, whose contact details are set out in the contact section below.

The information you provide to us, or which we collect, via our websites and other activities we carry out (including conducting surveys on-line and in-person, and collecting information from people who want to hear more about a given issue or policy), written correspondence (including e-mail), and social media activity, or through any of our offices globally, is used for the purposes described in this Privacy Policy.

INFORMATION WE COLLECT

We collect information to provide better products, services and content to you, to tailor our communications to you, and to comply with our legal obligations.

Through your use of our websites and participation in other activities we carry out (including surveys and issues-based recruitment drives), we may collect personal and non-personal information from you, including:

• Your name, email address, telephone number, postal address, or similar information;
• Your occupation, membership of relevant professional groups, political affiliation, stated interests, and willingness to engage in certain activities (e.g. communicating with stakeholders on particular policy issues); and
• Your browser type, operating system, IP address, and device information (“Analytical Information”).

We may collect your personal information or usage data from third-parties, including:

• Your email address and other collected personal information about you may be forwarded to Red Flag by a third-party website when you request for Red Flag to contact you through a third-party website;
• Your personal information may be forwarded to Red Flag when you participate in a third-party application or feature, such as one of our social media pages or a similar application or feature on a third-party website;
• Additional personal information may be forwarded to Red Flag from third-parties to combine with the personal information we collect through your use of our websites and participation in other activities we carry out (including surveys) to enhance our ability to focus content we provide to you, and to offer you opportunities to engage in activities we believe may interest you.

We will apply the terms of our Privacy Policy to any personal information received from a third-party, unless we have disclosed to you otherwise. Red Flag is not responsible for these third-parties’ dissemination of your personal information.

If you are a resident of a country in the European Economic Area (“EEA”), the personal information we collect from you may be transferred to and stored at a destination outside the EEA. The personal information may also be processed by staff operating outside the EEA that work for us or one of our or third-party service providers. By submitting your personal information, you agree to this transfer, storing, and processing. We take all steps reasonably necessary to ensure your data is treated securely and in accordance with this Privacy Policy.

We will retain your information for as long as your information is needed to provide you with our services (including information on your confirmed areas of interest), as required to fulfill our legal obligations, or until you tell us to delete your personal information. If you wish to delete your account or request we no longer use your information to provide you services, contact us at info@thisisredflag.com.

HOW WE USE INFORMATION WE COLLECT

The information we collect will only be used in connection with your relationship with us, to provide you with information on requested topics and related marketing communications, and to comply with our legal obligations. We use your information to assist you, to provide you with the information you have requested, to improve our products and services, to market our products and services, and to note your preferences in order to provide the best user experience possible.

We use your information for these legitimate purposes:

• If you have signed up to receive information from us on particular issues or policies, we may contact you by telephone or by written communication (including via electronic communications, for example email) with relevant content and information, if you have consented to us contacting you in this way. You may unsubscribe from such issues-based lists at any time by contacting us at info@thisisredflag.com.
• We may use your contact information to respond to your questions about products, services and activities, and to communicate with you about relevant products or services.
• When you use our websites, we automatically collect and use Analytical Information, described above, for us to continually improve your experience with our websites and to target marketing communications and advertising to you.
• We may use your personal information to determine what products and services may interest you and, with your consent, provide you with marketing communications and conduct marketing research. You may unsubscribe from this list at any time by contacting us at info@thisisredflag.com.

INFORMATION WE SHARE

We share your information with our subsidiaries, divisions, and affiliates to inform you about products, services and issues that may interest you. We also provide personal information to our affiliates and trusted business partners or persons to process it for us based on our instructions and in compliance with our Privacy Policy and any other confidentiality and security measures. Such tasks include analyzing website or mobile application usage data, electronic and postal mail services, marketing services, social media services, and calculating, managing, and reporting sales tax.

Third-party service providers may receive your personal information as necessary to perform their role (these include: designated data processors, providers of IT infrastructure, telephone service providers, external auditors, offsite data storage providers, etc).

If any personal information is provided to third-parties outside the EEA or who will access the information from outside the EEA, we will ensure approved safeguards are in place, such as the approved standard contractual clauses or the EU-US Privacy Shield. Examples of where these safeguards are in place include where: we provide your information to our other subsidiaries and divisions (for our legitimate business purposes) or to our trusted third-parties who provide the following services: data processing, IT infrastructure, telephone services, external auditing, offsite data storage, etc. All our subsidiaries and divisions sign standard contractual clauses approved by the European Commission to safeguard the personal information transferred across our businesses to and from the EEA.

We will disclose your personal information if required by law, regulation, or as part of a legal process. If we receive a request from a regulatory body or law enforcement agency, and if permitted under GDPR and other laws, we may disclose certain personal information to such bodies or agencies.

If Red Flag is involved in a merger, acquisition, or sale of assets, we will continue to ensure the confidentiality of your personal information and may share or transfer your personal information to the new owners of the business or company or their advisors.

INFORMATION SECURITY

We work hard to protect Red Flag and our users from unauthorized access to or unauthorized alteration, disclosure, or destruction of information we hold. In particular:

• We review our information collection, storage, and processing practices, including physical security measures, to prevent unauthorized access to our systems.
• We restrict access to personal information to Red Flag employees, contractors, and agents who need to know that information to process it for us, and who are subject to strict contractual confidentiality obligations and may be disciplined or their contracts terminated if they fail to meet these obligations.

While no method of transmission over the Internet, or method of electronic storage, is 100% secure, we strive to protect the information submitted to us. We consider the sensitivity of the personal information we collect, process, and store and use the appropriate technology to protect your personal information. We cannot, however, guarantee its absolute security.

YOUR PRIVACY RIGHTS

Individuals in certain countries, including the EEA, have certain rights in relation to their personal data. For example, you have the right to request access to your personal information, the right to have a machine-readable copy of your data transferred to another organisation, the right to correct or update your personal information, and the right to have all your personal information deleted. You also have the right to object to our processing activities (as summarised below).

If you have any questions or wish to exercise your rights as described above, you may contact us at: info@thisisredflag.com.

COMPLIANCE AND COOPERATION WITH REGULATORS

We regularly review this Privacy Policy and make sure that we process your information in ways that comply with it.

Data transfers

We use servers around the world and your information may be processed on servers located outside of the country where you live. Regardless of where your information is processed, we apply the same protections described in this Privacy Policy.

European requirements

If GDPR applies to the processing of your information, we provide the controls described in this Privacy Policy so you can exercise your right to request access to, update, remove, and restrict the processing of your information. You may also object to the processing of your information at any time for: (1) marketing purposes; or, (2) where we rely on our legitimate interests (unless we have compelling grounds to continue processing).

We process your information for the purposes described in this policy, based on these legal grounds:

With your consent. We ask for your agreement to process your information for specific purposes and you may withdraw your consent at any time.

When pursuing legitimate interests. We process your information for our legitimate interests while applying safeguards that protect your privacy. This means we process your information for things like:

• Communicating with you, with your prior consent, on issues of concern to Red Flag and/or its clients;
• Providing, maintaining, and improving our websites to meet the needs of our users;
• Developing new features;
• Understanding how people use our websites to improve the performance of our websites;
• Marketing to inform users about our products and/or services;
• Detecting, preventing, or otherwise addressing fraud, abuse, security, or technical issues with our websites, and
• Protecting against harm to the rights, property, or safety of Red Flag, our users, or the public as required or permitted by law.

When entering into or performing a contract. We process your data to provide a product or service you have asked for under a contract or when you have asked us to sign a contract.

When complying with legal obligations. We will process your data when we have a legal obligation to do so, for example, if we are responding to legal process or an enforceable governmental request.

If you have questions about our legal basis for processing information, you may contact us at info@thisisredflag.com. You can contact your local data protection authority if you have concerns regarding your rights under local law or would like to make a complaint against us.

LINKS TO THIRD-PARTY WEBSITES

Our websites contain links to social networking and other websites and mobile applications operated and controlled by third-parties. Unless otherwise stated, any personal information you provide to any third-party website will be collected by that party and not by us and will be subject to that party’s privacy policy rather than this Privacy Policy.

COOKIES

We use “cookies” and other similar technologies to help provide you with a better, more personalized user experience. A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. We use these technologies to help us understand and improve how visitors use our websites, including which pages and products are viewed most frequently.

AGE LIMIT

We do not intend to solicit or collect personal information from anyone under the age of 18. If you are under the age of 18, do not enter information into this site or engage in our services, including completing surveys conducted on-line or in-person.

CONTACTING US

If you have questions about this Privacy Notice, please write to us by mail at Red Flag Consulting Limited, Attn: Data / Privacy Inquiries, 2-4 Ely Place, Dublin, or email us at info@thisisredflag.com.

CHANGES

We may update this Privacy Policy from time to time. Please check the “Effective Date” at the top of this page to see when this Privacy Policy was last revised. Unless otherwise noted, any changes we make to this Privacy Policy will become effective immediately once posted on this page. Your continued use of our websites following any changes to this Privacy Policy indicates your consent to the practices described in the revised Privacy Policy. Unless stated otherwise, our Privacy Policy applies to all information we have about you and your account.