Merit Data and Technology Limited Privacy Policy

1.0  Introduction

Merit Data and Technology Limited is a technology enabled business that

  • gathers, organises and enriches the data that informs some of the world’s leading b2b intelligence brands
  • researches prospect and customer data to make it rich, compliant, and relevant for defined target audiences
  • provides cost efficient technology solutions and resources for clients

Merit Data and Technology Limited is a direct subsidiary of Merit Group Plc.

For more information on our products and services, please see here.

We are committed to protecting the privacy and security of your personal information. This policy sets out the basis on which any personal data may be

(i) collected from you;

(ii) provided to us via our websites, see here (“Websites”) or other media;

(iii) received from third parties; or

(iv)and how we use that personal information.

If you have any questions on this privacy policy or how we collect or use your personal information, please contact us.

2.0  Information about us

We are Merit Data and Technology Limited (“Merit Data and Technology Limited”, “we”, “us” or “our”). Merit Data and Technology Limited also includes our wholly owned Indian-located subsidiary Merit Data and Technology Private Limited.  The registered office for Merit Data and Technology Limited is located at 11th Floor, The Shard, 32 London Bridge Street, London SE1 9SG and our Company Number is 04842380. We are registered with the Information Commissioner’s Office with registration number Z1396929. We collect or receive your data under this Privacy Policy as a data controller.

3.0  What information we collect from you or third parties and how and why we process it

3.1  We collect and process the following types of information about you:

Method of CollectionType of InformationLawful Basis for Processing

Website registration

Personal information, for example, your name,-username, job title, work address, company name, phone number, payment details, and email addressLegitimate interest or consent
Website usage including for monitoring and improving our websites

Information transmitted by your computer, including your IP address, browser data, traffic and location data, and information we receive from cookies or from our use of website analytics services.

Legitimate interest

Contacting us through the website (emailing us or commenting through website)

Record of your email/comment, name, and email address

Legitimate interest
SurveysInformation included in survey answers and your name, email address, company name and job title and any other information that you provide.Consent
Whitepapers, research, and webinarsYour name, job title, phone number, company name and any other information that you provide.Consent or fulfilment of a contract
Newsletters and bulletins or updates on our products and services

Your name, job title, phone number, company name, and any other information that you provide.

Consent or legitimate interest
PhoneRecording and details of your call, name, email address, phone number, address, company name, job title and any other information you provide.Consent or fulfilment of a contract or legitimate interest
Email or social media correspondenceRecords of all information you provide in email or social media contact, including your name, email address, phone number, address, company name, job title, and any other information you provide/requested in the events registration form.Consent or fulfilment of a contract or legitimate interest
Information provided by you at eventsName, email address, phone number, Company name and job title, or any additional information you provide.Consent or legitimate interest

3.2 We may receive information about you from third party sources including customers, business partners, sub-contractors in technical services, advertising networks, marketing list brokers and information available online in the public domain. We use reasonable endeavours to ensure that the third party has a lawful basis for the processing of such information in accordance with the terms of this Privacy Policy.

3.3 We collect publicly available information including names, job title, company name, telephone, social media, and business email address contact details to allow us or third parties to send you information about our goods and services. We may also use our legitimate interest to provide this information to third parties. You can request to stop receiving such communications at any moment pursuant to relevant Data Protection Legislation by using the unsubscribe links in the footer of the email or by contacting us directly at [email protected] .

3.4 Merit Data & Technology Limited (UK) and Merit Data & Technology Private Limited (India), may process personal data on behalf of its clients for data collection, data validation and automated marketing services. In each case Merit Data & Technology Limited (UK) and Merit Data & Technology Private Limited (India) will carry out such services as a data processor.

3.5 We may process personal data on behalf of certain events partners or clients. In such cases this should be made apparent to you in the event’s Privacy Notice by the event partner who is the data controller.

4.0  How we may use your information

4.1 Unless you object to such processing, or request us not to, the below table describes (i) the information shared with our parent company and subsidiary; and (ii) the type of commercial communications you may receive from our parent company and subsidiary.

Company NameCommercial CommunicationCompanies information shared with
Merit Data and Technology Private LimitedEmail sales and marketing, Telephone sales and marketing, PPC advertising, Print advertising, Display advertising, Direct marketing (e.g., printed invitations), and Social media.Merit Group Plc and Merit Data and Technology Limited

Merit Data and Technology Limited

Email sales and marketing, Telephone sales and marketing, PPC advertising, Print advertising, Display advertising, Direct marketing (e.g., printed invitations), and Social media.Merit Group Plc and Merit Data and Technology Private Limited

4.2 We may use, process and/or share your personal data:

4.2.1 where obtained from the public domain on the internet for our legitimate interests, including but not limited commercial, marketing or IT security. We will only use this legal basis to process your data in ways that you would reasonably expect and have a minimal privacy impact.

4.2.2 where we have your consent where necessary for:

4.2.2.1 performance of any contract to which the data subject is party (and taking steps at the data subject’s request with a view to entering a contract);

4.2.2.2 compliance with any legal obligation;

4.2.2.3 administration of justice or performance of a task carried out in the public interest or in the exercise of our official authority; and/or

4.2.2.4 our legitimate interests, including but not limited commercial, marketing, intracompany transfers, or IT security. We will only use this legal basis to process

4.2.3 in respect of special categories of personal data:

4.2.3.1 where we have your consent;

4.2.3.2 where necessary for protection of vital interest (where consent cannot be given or where it is not reasonable to expect consent to be obtained or where consent is unreasonable withheld);

4.2.3.3 where necessary for, or in connection with, legal proceedings, obtaining legal advice or establishing, exercising or defending legal rights; and/or

4.2.3.4 where the data has been manifestly made public as result of steps deliberately taken by the applicable individual.

5.0  Who we share your information with

5.1 We may disclose your personal information to third parties in the following circumstances:

5.1.1 in accordance with sections 3.3 and 4.2 above;

5.1.2 to service providers who manage aspects of our operations (e.g. technical services for our Websites, or those that assist us in providing services to you);

5.1.3 in order to investigate or respond to problems or inquiries or defend our interests, to our auditors, brokers, legal advisors, professional indemnity insurers, and other professional advisors;

5.1.4 in the event of a sale, merger, acquisition, partnership or joint venture;

5.1.5 in order to comply with any legal obligation, or where it is required by order of a court or other judicial, regulatory or law enforcement body or in order to enforce or apply the Websites’ terms of use and/or other agreements between you and us; or

5.1.6 to protect our or a third party’s rights, property or safety.

5.2 We may also pass aggregated information on the use of the Websites to our group companies or third parties but this will not include information which could be used to identify you.

5.3 If you (i) register to attend an event we organise; and/or (ii) sign up for a webinar, whitepaper, or bulletin, we may provide the contact information you provide to sponsors, event partners, exhibitors and/or a venue for an event who may contact you from time to time for their marketing purposes. A list of event sponsors will be available on each event website. Further details of how we hold and use personal data for our events are provided in a Privacy Notice, which is available on each events registration page.

6.0  Direct marketing communication

6.1 We may use our legitimate interests to contact relevant business addresses (e.g. [email protected]) for marketing purposes without prior agreement, provided we believe the messages will be of interest and relevance to you.

6.2 You have the right at any time to ask us not to use your personal data for marketing purposes (including the disclosure of personal data to third parties for marketing purposes). If you do not wish to receive such communications or wish to object to such transfer to third parties for marketing purposes or to our direct marketing, please contact us

7.0  International transfers of data

Merit Data and Technology Limited is a global business which means personal information may be accessed by our parent company or by subsidiary company located outside of European Economic Area (EEA). To ensure your information is given similar protection as are provided in the EEA we use safeguards approved by the European Commission and have in place international data transfer agreements between our companies when data is transferred outside the EEA.

8.0  IP addresses and cookies

Cookies record the pages visited and the actions performed on our Websites, but do not contain any personal information. From time to time, we may use cookies to administer the Website; track activity on the Website; gather broad demographic information for aggregate use to improve the Website, and to improve the user experience of the Website. For detailed information on the cookies, we use and the purposes for which we use them see our Cookie Policy.

9.0  Storage and security of your information

9.1 Once we have received your information, we will use, and keep up to date, strict and appropriate measures, procedures and security features (technical or otherwise) to ensure the security of personal information and to try to prevent access by unauthorised persons and any unlawful processing, accidental loss, destruction or damage, including the implementation of an appropriate system security policy.

9.2 We retain the information you provide us for marketing purposes for three years from last contact. For all other personal information provided, we retain it for the length necessary for the purposes for which the information was provided and as permitted by applicable laws. The length of retention will depend on the purposes for which it is retained, though we will endeavour to delete or securely destroy your personal information where we no longer require it.

9.3 Although we take reasonable measures to protect your personal information, we cannot guarantee the security of your data transmitted to the Websites because this transmission is not under our control.

10.0  Links to other websites

The Websites may contain links to other websites owned and operated by third parties. These third party websites will have their own privacy and cookie policies that will govern the use of information you submit whilst visiting them. We do not accept any responsibility or liability for these policies or the privacy practices of such third party websites. Please check the policies before submitting any personal information to these websites. Your use of third-party websites is at your own risk.

11.0  Access to information

11.1 We aim to keep any personal information we hold up to date, accurate and error free. Please help us to keep your information accurate and up to date by notifying us of any relevant changes in the personal data we hold about you. You can also ask us to correct any personal data we hold about you.

11.2 You have certain rights to request information we hold about you (known as subject access requests). Any excessive request for such information may be subject to a fee specified by law. Any such request must be made in writing sent to Data Protection Officer, 11th Floor, The Shard, 32 London Bridge Street, London SE1 9SG or [email protected]

12.0  Children

12.1 We do not and will not knowingly collect information from any unsupervised person under the age of 16. If you are under the age of 16, you must not use the Websites or submit any personal data to us unless you have the consent of, and are supervised by, a parent or guardian.

13.0  Job applicants

We will collect and hold data for any job applications made to any company within our group, including any information you provide to us in your application via email or through our online platform, or provided to us by recruitment agencies, as well as information you provide in interviews, on any professional social media profiles (e.g. LinkedIn) or which any referees you specify might provide. Our basis for doing so is legitimate interests in evaluating candidates, recording our recruitment activities and as necessary to exercise and perform our employment law obligations and rights.

14.0  Changes to our privacy policy

14.1 This Privacy Policy was last updated in September 2021. We keep this Privacy Policy under review and may occasionally make changes to it (including if necessary, as a result of development of the Websites, changes to technologies, legal or regulatory changes etc).

14.2 If we change this Privacy Policy, we will post the changes on this page so that you will be aware of them. Your continued use of the Websites after any such changes will constitute your acceptance of the updated Privacy Policy. You should regularly check this page to determine if the Privacy Policy has been updated and to review those changes before deciding whether or not to access (or continue to access) the Websites.

15.0  Your rights

15.1 You are entitled to ask:

15.1.1 for a copy of the personal information we hold about you, and details about how we are processing your personal information;

15.1.2 to have any inaccuracies in your personal information corrected;

15.1.3 if we are processing your personal information by automated means and on the basis of your consent (see “How do we use it?”, above), for us to provide your personal information to you in a structured, commonly-used and machine-readable format. You can also ask us to provide your personal information directly to a third party in this format, and, if technically feasible, we will do so; and

15.1.4 to have your personal information erased, or for our use of it to be restricted (for example, if your preferences change, or if you don’t want us to send you the information you have requested).

15.2 Please note that you have the right to object to the processing of your personal data if we process your data using Legitimate Interests and/or you have the right to withdraw consent at any time if the processing of your personal data is based on consent.

15.3 If you wish to exercise your right to object to all processing for the purposes of direct marketing, please contact us at the address below.

15.4 Please contact us using the details set out below if you would like to exercise any of these rights. You also have the right to make a complaint to the supervisory if you’re not happy with how we’ve handled your personal information. In the UK, the supervisory authority is the Information Commissioner’s Office (https://www.ico.org.uk).

16.0  Contact

Questions, comments and requests regarding this Privacy Policy or Merit Data and Technology Limited and its subsidiary relating to use of your personal information are very welcome and should be addressed to [email protected] or by contacting us at the following address:

Merit Data and Technology Limited
11th Floor
The Shard
32 London Bridge Street
London SE1 9SG

For further information about Merit Data and Technology Private Limited’s practices, please contact their Data Protection Officer at [email protected] or at the following address:

Merit Data and Technology Private Limited
SP 52 3rd Street
Ambattur Industrial Estate
Chennai 600058
India

This privacy policy was last updated in September 2021.