IWSR Data Processing Policies

Privacy Policy & Data Processing Policy

Contents

IWSR Privacy Policy

When does IWSR collect information?

What information does IWSR collect?

How does IWSR use the information?

Pursuant To What Legal Bases Do We Process Your Information?

Cookies

Transfer Of Data

What You Can Do And Your Rights

Additional Information That May Be Of Interest

IWSR Data Processing Policy

Definitions and Interpretation

Agreed Terms

Customer Data

Changes

 

IWSR Privacy Policy

This privacy policy governs IWSR’s collection of your personal data via the website.

 

Introduction

IWSR respects your privacy. The type of information and ways we collect and use the information you provide while on our website (“Website”), Global Database (“Global Database”) and both collectively (the “Site”), or when registering as a client for other IWSR product and services (“Research”), and during certain other interactions are listed below:

 

When does IWSR collect information?

IWSR may collect certain information when an individual:

  • Registers for use of the Site or uses the Site
  • The above includes use of complimentary materials on the Website such as sample downloads, mailer registration and input forms to request demos or call backs
  • Registers for use of IWSR online tools
  • Purchases certain products or services from us
  • Registers for one of our events or webinars
  • Seeks employment opportunities with IWSR
  • Wishes to obtain more information about our products and services

 

What information does IWSR collect?

  • Personal contact information you may choose to provide while visiting or registering on our Site, including registrations to attend IWSR events. This information may include your: name, address, company name, job title, telephone or mobile number, email address, country and the name and email of third parties you may provide to us
  • Behavioural information about how you use the Site and your IP address
  • If you are applying for a job at IWSR, we may also collect your resume, work history, and education if you choose to provide these

 

How does IWSR use the information?

  • To fulfil our obligations. IWSR uses personal contact information you share with us to fulfil contractual obligations that may include providing products or services that you or your employer purchased, answer your contract administration related inquiries or communicate with you about your account or transactions with us, and send you information about features on the Site, or changes to our policies or events for which you registered. The provision of personal data is a requirement in order for us to fulfil contractual agreements; failure to provide this personal data may result in IWSR being unable to fulfil a contractual agreement
  • To improve research, services, the Site and measure effectiveness
    • IWSR regularly analyses data pertaining to visitor trends, research consumption, and research grading to improve our research, plan site enhancements, and measure overall site effectiveness
    • IWSR may further process personal data for a purpose other than that for which the personal data was collected in order to improve our services, such as requesting response to surveys on client services
    • IWSR may use automated processing and profiling of personal data via CRM software in order to: provide improved services to you in line with legitimate interest such as tailoring communications in line with your specified or supposed interests; or fulfil an obligation as requested by you, such as the completion of a call-back request or sample download forms on the Site
  • To answer job search inquiries. We use your submitted information to respond to inquiries you make regarding job postings
  • To maintain a secure Site. IP addresses are collected in order to maintain our Site security and ensure access to restricted portions of the Site is limited to authorised users
  • To improve our performance by using third party vendors. We may also disclose certain data to third party contractors or vendors in connection with their performance of services to us. Contractual agreements between us and such third parties provide that your information will be kept confidential and secure
  • To conduct IWSR Events. When registering for an event you may choose to have your name, title, company and/or country be available to event attendees during the event. IWSR transfers certain information of event registrants and attendees to its event sponsors. For details please see below:
    • Pre-Event Lists. Sponsors of an IWSR event are provided a “Pre-Event List” for event staffing purposes. The list contains the Company name and title of individuals that have registered for the event
    • Post-Event Lists. When registering for an event you may choose to have your contact details (name, title, company, and/or country) added to a “Post-Event List” that is transferred to sponsors of the event for marketing purposes
  • To send you marketing emails subject to your opt-in. If you opt into such communications, IWSR may use your email address to send periodic promotional emails, enews and special offers

 

Pursuant To What Legal Bases Do We Process Your Information?

We rely on a number of legal bases to use your information in the ways indicated above. These legal bases include where:

  • necessary to perform the contractual obligations in our agreement with you or your employer and provide services to you;
  • you have consented to the processing, which you can revoke at any time;
  • necessary to comply with a legal obligation, a court order, or to exercise or defend legal claims;
  • necessary for the purposes of our legitimate interests; and
  • you have expressly made the information public

Note that we principally rely on consent (i) to send marketing messages, and (ii) for sharing data of event attendees with sponsors post event.

Where we process your information on the basis of legitimate interests, we do so as it is necessary to pursue our legitimate interests of providing and improving IWSR services for our customers.

IWSR has a legitimate interest in understanding how our services are being used. We also pursue our legitimate interests of improving our services, efficiency, and determining the level of interest in services for customers by obtaining insights into usage patterns of the services.

IWSR has a legitimate interest in customising your on-site experience to help you discover relevant research and topics. IWSR also engages third-party companies and individuals (such as research companies, and analytics providers) to help us operate, provide, and market the services. These third parties have only limited access to your information, may use your information only to perform these tasks on our behalf, and are obligated not to disclose or use your information for other purposes. IWSR may also use your information to maintain a secure Site, including sharing of your information for such purposes, because it is necessary to pursue our legitimate interests in ensuring the security of our services, including enhancing protection of our Site, intellectual property infringement and security risks of all kind. IWSR has a legitimate interest in working with service providers to make our services better even if some service providers we use are not strictly necessary for us to provide the Services.

IWSR may also process and share your personal information with a third party in response to lawful requests by public authorities, including to meet legitimate national security or law enforcement requirements; defend against legal claims, to comply with a subpoena, court order, legal process, or other legal requirement; or when we believe in good faith that such disclosure is reasonably necessary to comply with the law.

 

Cookies

What is a cookie?

  • A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (such as login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another

 

What type of cookies does the IWSR use?

  • Necessary: cookies required for access to the Site and core functionality
  • Behaviour and analytics: cookies used to gather behavioural information through the Site; provide customised content and recommendations; and analytics
  • Marketing: cookies that are used to deliver relevant advertising
  • Behavioural information collected by our web analytics vendor is used to analyse data pertaining to visitor trends, research consumption, and research grading in order to improve our research, plan Site enhancements, and measure overall Site effectiveness. We may also use cookies or web beacons to help us offer you products, programs, or services that may be of interest to you and to deliver relevant advertising. We may use third-party advertising companies to help tailor Site content to users or to serve ads on our behalf. These companies may also employ cookies and web beacons to measure advertising effectiveness
  • Aggregated (non-personally identifiable) user behaviour collected through cookies or web beacons may be shared with our other third-party service providers to either analyse or execute marketing programs
  • Please note that IWSR or other IWSR vendors or third-party advertisers may also use cookies that are independent of those placed by our analytics contractor (for example, to remember your password or tailor Site content)
  • Cookies and web beacons do not contain personally identifiable information; however, if you are a registered user, we may store this information with your registration information to enable us to better serve you. Use of cookies may also allow IWSR to automate your access to password-protected portions of the Site making it unnecessary for you to have to re-enter your password each time you visit our Site.

 

What can you do about cookies?

  • You may choose to control and/or delete all cookies from your hard drive. If you delete a cookie, however, please be advised that some features of our Site may not be accessible to you. Another option available to you is to change the preferences or settings in your web browser to control cookies. In some cases, you can choose to accept cookies from a primary Site, block them from third parties, or clear out all cookies

 

Transfer Of Data

We operate globally and may transfer your personal information to our affiliate companies or third parties in locations around the world for the purposes described in this privacy policy. Wherever your personal information is transferred, stored, or processed by us, we will take reasonable steps to safeguard the privacy of your personal information. Additionally, when using or disclosing personal information transferred from the European Union, we use standard contract clauses approved by the European Commission, adopt other means under European Union law for ensuring adequate safeguards, or obtain your consent.

 

What You Can Do And Your Rights

We operate globally and may transfer your personal information to our affiliate companies or third parties in locations around the world for the purposes described in this privacy policy. Wherever your personal information is transferred, stored, or processed by us, we will take reasonable steps to safeguard the privacy of your personal information. Additionally, when using or disclosing personal information transferred from the European Union, we use standard contract clauses approved by the European Commission, adopt other means under European Union law for ensuring adequate safeguards, or obtain your consent

  • You can unsubscribe from promotional emails you receive at any time by clicking the link at the bottom of the email and may disable notifications on your mobile device. You may not be able to opt-out of important service announcements and administrative messages
  • You can choose to control and/or delete cookies from your hard drive. See the Cookie section above for more details
  • You have the following rights¹. Please note IWSR may have lawful reasons to deny requests related to the rights below:
    • The right to be informed: You have the right to be informed of IWSR’s purposes for processing your personal data, IWSR’s retention periods for that personal data, and who it will be shared with
    • The right of access: You have the right to access your personal data and supplementary information to allow you to be aware of and verify the lawfulness of the processing
    • The right to rectification: You have the right to have inaccurate personal data rectified or completed if it is incomplete
    • The right to erasure: You have the right to have your personal data erased from our systems
    • The right to restrict processing: You have the right to request the restriction or suppression of your personal data
    • The right to data portability: You have the right to obtain and reuse your personal data for your own purposes across different services
    • The right to object: You have the right to object to processing based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling); direct marketing (including profiling); and processing for purposes of scientific/historical research and statistics
    • Rights in relation to automated decision making and profiling: You have rights related to automated decision making any profiling
  • If you want to exercise any of your rights or need to contact IWSR’s Data Protection Officer, please email dataprotection@theiwsr.com. You can always contact IWSR at +44 (0)20 7689 6841 should you have any questions or concerns
  • You can go to IWSR’s subscription centre and select or change your contact preferences at any time
  • You have the right to lodge a complaint with a supervisory authority

 

Additional Information That May Be Of Interest

  • IWSR account managers and IT staff can place research documents into a client’s Report page on the Global Database in line with their subscription package or additional purchases. IT and account management employees can review the contents in this area
  • We have implemented technical, administrative, and physical security measures that are designed to protect your information from unauthorised access, disclosure, use, and modification. Please be aware though that, despite our best efforts, no security measures are perfect or impenetrable
  • Our website contains links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. We are not responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should look at the privacy statement applicable to the website in question
  • IWSR does not knowingly collect any personal information from children and does not market or offer services to children

 

IWSR Data Processing Policy

This Data Processing Policy is a legal document and may be incorporated by reference in any agreement (“Agreement”) you as a customer (“Customer”) have with IWSR Drinks Market Analysis Limited (“IWSR or Licensor”).

 

Introduction

This Policy supplements any current terms and conditions or other agreement between IWSR and Customer and shall continue until the Agreement terminates. To the extent any provisions of this Data Processing Policy conflict with any term of the Agreement, the relevant provision of this Data Processing Policy shall prevail.

 

Definitions and Interpretation

Agreed Purpose” means the performance by Licensor of its obligations under the Agreement including the promotion of the IWSR Products by IWSR.

Data Protection Law” means, where applicable, the General Data Protection Regulation ((EU) 2016/679) (GDPR), the European Privacy and Electronic Communications Directive (Directive 2002/58/EC), as amended or replaced from time to time and all other national, international, regional, federal or other laws related to data protection and privacy that are applicable to any territory where Licensor processes personal data or is established and the terms “personal data”, “personal data breach”, “controller”, “processor”, “processing”, “data subject” and “supervisory authority” shall have the meanings ascribed to them under Data Protection Law as applicable; and “Third Party Recipient” means any contractor, subcontractor or other party engaged by IWSR in relation to its performance of the Agreement who is or will be processing Customer Data, whether as a controller or processor and who may be located outside of the European Economic Area.

All capitalised terms used but not otherwise defined in this Data Protection Policy shall have the meaning given to them in the Agreement.

 

Agreed Terms

  • For the purposes of this Policy, the Customer and Licensor agree that Licensor acts as a processor and Customer acts as a controller in respect of the Customer Data and that the nature/purpose of the processing is to enable Licensor to provide the license for the duration of the Agreement
  • Customer shall comply with its obligations under Data Protection Law and shall in particular:
    • ensure that it is entitled to transfer the relevant Customer Data to Licensor so that Licensor may lawfully use, process and transfer the Customer Data in accordance with the Agreement on the Customer’s behalf; and
    • the relevant data subjects have been informed of, and have given their consent to, such use, processing, and transfer as required by all applicable Data Protection Laws
  • Licensor shall comply with its obligations under Data Protection Law and shall in particular:
    • only process the Customer Data for: (i) the Agreed Purpose; (ii) as instructed by the Customer; and (iii) as necessary to comply with Licensor’s requirements under any applicable law. If Licensor is aware that the Customer’s processing instructions infringe applicable laws, Licensor shall notify the Customer immediately (unless prevented from doing so by applicable laws) and not carry out the relevant processing;
    • maintain all appropriate technical and organisational measures to ensure security of the Customer Data including protection against unauthorised or unlawful processing (including, without limitation, unauthorised or unlawful disclosure of, access to and/or alteration of the Customer Data) taking into account the state of the art, the costs of implementation, the nature, scope, context and purposes of processing and the likelihood and severity of risk in relation to the rights and freedoms of the data subjects;
    • ensure that all persons authorised by it to process the Customer Data are subject to either contractual or statutory obligations of confidentiality;
    • be authorised to transfer and/or disclose Customer Data to Third Party Recipients who provide certain services on behalf of Licensor, including those based outside of the European Union, subject to: (i) Licensor entering into a written agreement with such Third Party Recipients containing obligations which comply with Data Protection Law; and (ii) Licensor remaining liable for any breach of this Data Protection Policy that is caused by its Third Party Recipients;
    • provide reasonable assistance to Customer to demonstrate its compliance with the Data Protection Laws, including but not limited to: (i) ensuring compliance with its security, breach notification, impact assessment and prior consultation obligations; and (ii) responding to (a) any request from a data subject to exercise its rights under Data Protection Law (without responding to that request unless authorised to do so by the Customer); and (b) any other correspondence or enquiry received in connection with the processing of the Customer Data;
    • notify the Customer without undue delay as soon as it becomes aware of any personal data breach in connection with the Customer Data;
    • maintain appropriate records and information in compliance with Data Protection Laws and on request by the Customer, make available such records information necessary to demonstrate Licensor’s compliance with this Data Processing Policy and otherwise permit, and contribute to, audits carried out by the Customer (or its authorised representative); and
    • on termination or expiry of the Agreement, destroy or return (as the Customer directs) all Customer Data in its power, possession or control and delete all existing copies of such data except to the extent Licensor is required to retain a copy the personal data by law
  • Subject to the limitation of liability provisions in the Agreement, to the extent that Customer has an entitlement under Data Protection Law to claim from Licensor compensation paid by the Customer to a data subject as a result of a breach of Data Protection Law to which Licensor contributed, Licensor shall be liable only for such amount as it directly relates to its responsibility for any damage caused to the relevant data subject

 

Customer Data

The following types of Personal Data relating to Customer or its personnel may be shared with Licensor in connection with its provision of the IWSR Product(s) or other services:

  • Name
  • Gender
  • Address
  • Date of Birth
  • Email address
  • Financial information

 

Changes

Changes to this policy may be posted from time to time. All versions will reflect a posting date. We encourage you to visit this page periodically for changes.

Last updated: January 2019

 

¹ Data pertaining to closed contracts or contractual relationships which are not renewed will be retained for a maximum of two years post termination.

Stay in the front

Get report updates, latest news and industry insights straight into your inbox