Last updated: 19/12/2017
Best Companies is committed to protecting your privacy. This Privacy Notice applies to those who visit the Websites owned and operated by Best Companies as well as users of our Service(s). Please note that in this Privacy Notice, “we” or “us” refers to Best Companies Limited. This Privacy Notice describes how we collect, use, share and secure the personal information you provide. It also describes your choices regarding use, access and correction of your personal information. The capitalised terms used in this Policy but not defined herein shall have the same meaning as defined in our Terms of Service which are available upon request.
We will never sell your information to anyone.
Best Companies never sells PERSONAL DATA and carries out all processing operations in strict compliance with European privacy laws. CLIENT data is not transferred or stored outside of the EU/ EEA.
How do we collect, use and share your personal information and other information?
Like most websites, each time you visit our site(s) we automatically collect certain data relating to your browsing behaviour on the site including, but not limited to, the webpage from which you came from and your IP address. Best Companies uses third party software for analytics. All metrics information collected from your usage of the Service(s) shall be transmitted to the analytics provider. The analysis tools measure and observe your behaviour (what you do) while the feedback tools allow us to hear what you have to say. This information is then used to evaluate how users use Best Companies websites, and to compile statistical reports on activity for us. We will use this information so our websites can be improved, by making them more user-friendly, more valuable and simpler to use. Third party analytics software will not share your PERSONAL DATA or associate your PERSONAL DATA with any other data held by them.
Links to third party sites
Our Websites may contain links to other websites that are not owned or controlled by Best Companies. Please be aware that we are not responsible for the privacy practices of such other websites or third parties. We encourage you to be aware when you leave our Websites and to read the privacy policies of each and every website that collects personal information.
Website registration and web forms
When you register to the site, you may be asked to submit personal information about yourself in order to register and/or download content. This information may include, but is not limited to, your name, the company you work for, email address and telephone number. We will only collect information that is necessary for us to provide you with any services or assistance connected with that content. If you would like more information on our services, do get in touch by completing our online enquiry form https://www.b.co.uk/contact/.
Have you been invited to complete a SURVEY?
We collect employee names and e-mail addresses from employers so that we can send out an EMPLOYEE SURVEY. If you have received a SURVEY, this is how we obtained your contact details. Email surveys are sent from firstname.lastname@example.org. As part of this process other details will be submitted which may include, but not limited to, gender, job grade, years of service and other employment information. If you’ve received a login code by post and you’re ready to start your SURVEY, please go to https://www.b.co.uk/survey and enter your code for our b-Heard survey. All pre-populated demographics we have received from your employer will be hidden. Any demographics that we are missing will be displayed for you complete. The main purpose for our SURVEYs are for employers to measure the engagement of their workforce.
The employer benefits of which are:
The PERSONAL DATA provided to us by your employer is the minimum necessary for Best Companies too accurately process the contractual services agreement between your Employer and Best Companies. The legal basis for sharing is in the legitimate interest of your Employer, this does not affect your individual rights and freedoms, you may object to this processing at any time. The GDPR acknowledges that companies may have a legitimate interest in processing data as long as the processing does not have a disproportionate impact on the individual. On balance, the legal basis of legitimate interest against the individual impact: our services are reasonable, the company’s interests in our services appear compelling, with there being little impact on the individual.
It is reasonable to expect that the reporting data that we provide to your employer based on the collective individual responses should benefit not only your employer but also every employee in the company. To raise an objection, to the processing, you may raise the request through your Employer or by contacting Best Companies directly using the contact details at the end of this Privacy Notice.
How will we use any personal information we collect?
Where we collect personal information, we will use it for administration and to tailor our service and/or products to match your needs. For example, to create your account and provide the services you request, to respond to any feedback you send us and to use your email address to communicate with you.
For the purposes of the service(s) we provide our CLIENTs, information collected via our SURVEYs will be aggregated and anonymised before being provided to the employer, and before being served as benchmark data or used in any publically available sources.
We retain ownership on all IN-PUT MATERIAL and for the purposes of the Data Protection Act and General Data Protection Regulation we are the Data Controller. As a duty of care to every respondent, responses provided to us remain confidential, as the data owner we are not obliged to provide an employer with this information if requested. This in turn gives the responder full confidence to provide an honest response without the fear of a reprisal. As Data Controller, we use the data in the creation of benchmark results, where we take groups of organisations data, creating list, sector and ACCREDITATION star benchmarks, to allow organisations to compare. We also process the data for future improvement of our service(s), historical and statistical purposes. The privacy of respondents will always be upheld by Best Companies.
How do we store and protect your personal information
Best Companies has implemented various measures to ensure that all information held by us is adequately protected against unauthorised access, use, disclosure and destruction. We take the security of the site and the information you provide very seriously. We use all appropriate technical measures utilising recognised security procedures and tools in accordance with good industry practice to protect your personal information. Please keep in mind that risk can never be eliminated but can be significantly mitigated and reduced. All measures which we have taken significantly reduce the risk. Best Companies shall not be held liable by any Third Party, including you, in any event of unauthorised access, use and/or disclosure of information provided that such is not due to Gross Negligence, wilful misconduct, fraud or bad faith by Best Companies.
Contact by Marketing and Publishing Partners
As per our contractual terms of service, we will share your Companies Organisational Lead contact detail, to our Publishing Partners and our internal Sales and Marketing teams. This will only extend to the detail necessary to contact you, Your Name, Company Name, Phone Number, Email Address and if required Company Address. They will contact you where our contractual obligations with you require them to and when additional information is required for creation of company profiles and case studies. Our Publishing Partners may also contact you for additional information regarding the Awards, Awards evening and opportunities for advertising in their publications. Best Companies may also contact you regarding items we believe would be of interest to you including future invitations to participate in our surveys and the option to participate in additional services that we supply.
We have taken a number of security measures to protect the data we hold, including but not limited to:
No CLIENT, PERSONAL DATA will be transferred or stored outside of the EU/ EEA.
Transferring data to and from Best Companies:
At times it may be necessary for our CLIENT or Best Companies to transfer large files or PERSONAL DATA. Sensitive and confidential documents are sent securely using Data Send UK. All files are stored on Data Send UK secure, private, dedicated, servers with transfers using SSL encryption. The files are automatically deleted from Data Send UK servers after 7 days. This provides a much higher level of security than standard email for transferring files and in most cases FTP. For more information on Datasend please visit their website. https://www.datasend.co.uk/about.html
For further information on our systems, please contact email@example.com or speak to your account manager.
Three years after the termination of the CLIENT, all personal data such as the employee name, email address, and any data that could potentially identify a specific individual, is removed from our system, by anonymisation. Anonymisation means you replace the PERSONAL DATA with replaced by a random unique identifier. This is in line with the Information Commissioners Office (ICO) Anonymisation code of practice. The employee responses which are attached to employee demographical data would not be removed as this would result in the inability to perform any future engagement reporting. It would also similarly affect benchmark data and where organisations are being assessed for ACCREDITATION or a place on the LISTS. The Data Protection Act and General Data Protection Regulation (GDPR) does not apply to data rendered anonymous in such a way that the data subject is no longer identifiable. (This is as referred to in our Terms of Service – Clause 25. Anonymity, d).
Having a three year retention period allows CLIENTs to receive annual or bi-annual analysis reporting subject to their service contract.
Should you want to act upon any of these rights we would encourage you to communicate your request through your employer. You may contact us directly via our contact details below.
Best Companies uses a third-party service provider for managing credit card processing. The service provider does not store, retain, or use Billing Information except for the purpose of credit card processing on the Company’s behalf.
Best Companies reserves the right to use or disclose information provided if required by law or if the Company reasonably believes that use or disclosure is necessary to protect the Company’s rights and/or to comply with a judicial proceeding, court order, or legal process.
If you have a question regarding our Privacy Notice, or should you want to contact us regarding your individual rights, you can write or email your request marked for the attention of the Data Protection Specialist as below.
Address for posting your requests:
The Data Protection Specialist
Best Companies Ltd
Email: firstname.lastname@example.org Please allow up to 72 hours for a response.