Colectivo's Privacy Policy
Introduction
​
This Privacy Policy describes how Colectivo Limited (“us”, “we”, or “our”) processes your information and the ways that you can manage how your personal data is used, including the right to object to certain types of processing (see Your Rights below for more information on your rights as a data subject).
Colectivo Limited is the controller of certain of your personal data (except Client Data, as defined below).
If one of our clients (e.g. your employer or another organisation that has engaged Colectivo’s services) provides us with your personal data they are responsible for the collection and use of any data provided to Colectivo or that we otherwise process in accordance with their instructions (“Client Data”). You should read such an organisation’s privacy policy for information on how it uses Client Data. We are not the controller of Client Data we process in accordance with our clients’ instructions.
​
-
Types of Data Collected
-
Use of Data
-
Retention of Data
-
Transfer of Data
-
Security of Data
-
Your Rights
-
Sharing of Personal Data
-
Changes to this Privacy Policy
-
Contact Us
​
Types of Data Collected
We collect the following data which you provide us or which is automatically collected:
​
​
​
​
​
​
​
​
​
​
​
​
​
​
If the provision of particular personal data is a statutory or contractual requirement, we will let you know at the relevant time and of the possible consequences of failing to provide it.
​
Use of Data
We process your personal data in the following ways:
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
Retention of Data
We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy. To determine the appropriate retention period for personal data, we consider various criteria including the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements. Where it is necessary to retain personal data to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies or otherwise establish, defend or exercise legal claims, then we will do so.
Once specific retention timelines have passed and we have no further specific reason to retain that personal data, the relevant personal data will be erased or adapted so that it no longer is personal data.
In some circumstances, you can ask us to delete your data. See Your Rights below for information on your data protection rights. You also have the right to object to our processing of personal data for direct marketing purposes (though where you do so, we will retain sufficient information to make sure we don’t send you direct marketing messages in the future).
​
Transfer Of Data
Your personal data may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. For instance, we have teams in Ireland and Spain, and also use service providers in those and other countries, and accordingly some personal data may be transferred to these countries. Countries which are outside the European Economic Area (“EEA”)may not offer the same level of data protection as in your home country. We comply with GDPR requirements with respect to any transfers of data that occur outside the EEA.
We implement measures designed to ensure that no transfer of your personal data takes place to a country outside the EEA unless there are adequate controls in place, including for the security of your personal data.
​
Security Of Data
The security of your data is important to us. We implement technical and organisational measures designed to ensure a level of security for the personal data which is appropriate to the risks to individuals that may result from the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to the personal data.
​
Your Rights
You have several rights in relation to your personal data, subject to applicable law. While some of these rights apply generally, certain rights apply only in limited cases.
-
Right of access: You have a right to request access to your personal data and to be provided with a copy of certain information, including the categories of your personal data we collect and disclose.
-
Right of rectification:You have the right to request that we rectify inaccurate personal data about you.
-
Right of erasure: You have the right, in certain cases, to request that we delete your personal data, provided there are valid grounds for doing so and subject to applicable law.
-
Right to data portability: You may have the right to receive certain of your information in a structured, commonly used and machine-readable format and to transmit such information to another controller.
-
Right to object (marketing):You have the right to object to processing for direct marketing purposes at any time.
-
Right to object (legitimate interest): Where we process your personal data based on legitimate interests, you can object to this processing in certain circumstances. Unless we have compelling legitimate grounds or where it is needed for legal reasons, we will cease processing your personal data when you object.
-
Right to restrict processing: You have the right, in certain cases, to temporarily restrict the processing of your personal data by us, provided there are valid grounds for doing so.
-
Right to withdraw your consent: Where you have given your consent for certain processing activities, you have the right to withdraw that consent at any time. Please note that the lawfulness of any processing undertaken prior to your withdrawal of consent shall not be affected by the withdrawal.
-
Right to complain: You also have the right to lodge a complaint with your local supervisory authority for data protection. Click here to find your local supervisory authority.
However, these rights may not be exercised in certain circumstances, such as when the processing of your data is necessary to comply with a legal obligation or for the exercise or defence of legal claims.
Please note that we may ask you to verify your identity before responding to such requests.
​
Sharing of Personal Data
We use third party platforms to facilitate our services (“Service Providers”). Any personal data shared with third parties is limited to what they need to perform their designated functions.
​
​
​
​
​
​
​
​
​
​
​
​
​
​
Changes To This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “effective date” at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes.
​
Contact Us
If you have any questions or comments about this Privacy Policy or the manner in which we process your personal data, or you wish to avail of any of your rights set out here, please contact us at:
Colectivo Limited
Guinness Enterprise Centre, Taylor’s Ln, The Liberties, Dublin 8, Ireland, D08 YPP9