fbpx

Privacy Policy

Scope of Policy

This privacy policy applies between you, the User of this Website or any user of Rialto Programmes and Services  and The Rialto Consultancy (Rialto), the owner and provider of this Website. It does not extend to any websites that can be accessed from this Website including, but not limited to, any links we may provide to social media websites.

Rialto takes the privacy of your information very seriously. This privacy policy applies to our use of any and all Data collected by us or provided by you in relation to your use of the Website and request to access any Rialto Programme or Service.

This privacy policy should be read alongside, and in addition to, our Terms and Conditions, which can be found at: https://www.rialtoconsultancy.com/terms-and-conditions/

 

What information do we collect?

The primary purpose in collecting personal information from you is to provide you with a safe, smooth, efficient, and customised experience. This allows both Rialto and any Partner to provide services and features that most likely meet your needs, and to customise the service to make your experience safer and easier. We only collect personal information about you that we consider necessary for achieving this purpose.

How we collect your personal information

These are the main ways we collect your information:

  • From your employer, if our services are procured by them on your behalf
  • From you if you contact us direct in person, via our associate network, by telephone, post, email or via our website to request information about our services and events
  • If you buy a service directly from us
  • If you reply to our direct marketing campaigns
  • From third-parties and partners working with us to deliver a service (e.g. associates, recruitment agencies etc)
  • If we acquired your personal data from other sources, for example referrals or through networking activity online or in person
  • From our website’s technological capabilities.

Example data we collect

We may collect the following information:

  • Name
  • job title
  • contact information including email address
  • employment terms, conditions and contracts
  • work history
  • other relevant personal information (e.g. date of birth)
  • other relevant information relating to your employment (e.g. policies, grievance or disciplinary issues, references, bank details)
  • CVs and psychometric or other questionnaires and evaluation comments relevant to your career history, skills and capabilities
  • your health for the purpose of making reasonable adjustments during a recruitment and selection process
  • summary of conversations and agreed actions from outplacement and / or coaching meetings
  • data collected through psychelectronic identifiers (e.g. IP addresses)
  • other information relevant to customer offers and / or surveys.

When engaging in a programme, you always have the option to not provide information by choosing not to become a User or by not using the particular feature of the Site for which the information is being collected.

We automatically track certain information about you based upon your behaviour on our Site and store it through log files. We use this information to do internal research behaviour to better understand, protect and serve you and our community. This information may include your computer browser information, and your IP address.

Technologies such as: cookies and similar technologies are used when you engage with  Rialto Online Partners, affiliates, or other service providers. These technologies are used in analysing trends, administering and securing the site, and tracking users’ movements around the site. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.

We use cookies to remember users’ settings and authenticate users. Users can control the use of cookies at the individual browser level. If you reject cookies, you may still use our site, but your ability to use most features or areas of our site may be limited.

 

How we use your information

We use personal information in the files we maintain about you, and other information we obtain from your current and past activities on the Site, to provide to you the services offered by the Site; resolve service issues; troubleshoot problems; detect and protect us against error, fraud and other criminal activity; enforce our Terms of Service; provide you with business insights or updates and/or provide system or administrative messages, and as otherwise described to you at the time of collection. We primarily communicate with Participants by use of email to guide them through our process.

If you subscribe to newsletters, learning events or wider networks your name and email address will be used to send newsletters, invitations and insights to you. Out of respect for your privacy, you will be able to unsubscribe to all email. If you wish to no longer receive newsletters or any other communications you may follow the instructions located in any email, or you may contact us at info@rialtoconsultancy.com.

 

Disclosure of information

If you are an individual in the European Union, information about you is collected and processed only where there is a legal basis for doing so under applicable EU laws. The legal basis depend on the Services you use and how you use them. This means we collect and use your information only where:

  • We need it to provide you the Services, including to operate the Services, provide customer support and personalised features and to protect the safety and security of the Services;
  • It satisfies a legitimate interest which is not overridden by your data protection interests, such as for research and development, to market and promote the Services and to protect our legal rights and interests;
  • You give us consent to do so for a specific purpose; or
  • We need to process your data to comply with a legal obligation.

Only authorised parties (employees and checked agents, associate contractors and sub-contractors), who provide a particular data processing service for us, are permitted access to your data. Authorised parties will only be allowed access to your data for the purposes identified within this Privacy Policy and processing it on our behalf or for IT security and maintenance

If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party such as your employer have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.

 

How we keep your information safe

The security of your information is very important to us. As part of our commitment to keeping your data safe, our technical experts maintain physical, electronic and managerial procedures to keep safe the information we collect.

We use technical and organisational security measures including encryption and authentication tools to protect your personal information from unauthorised access by third parties, manipulation, falsification, loss, destruction or unauthorised disclosure.

Although data transmission over the Internet or website cannot be guaranteed to be secure, we and our business partners work hard to maintain physical, electronic and procedural safeguards to protect your information in accordance with applicable data protection requirements. Our main security measures are:

  • Tightly restricted access to your data on a ‘need to know’ basis and for the communicated purpose only
  • Transferred collected data only in encrypted form
  • Access driven by role defined user profiles with password protection
  • Firewalled IT systems to prohibit unauthorised access e.g. from hackers
  • Permanently monitored access to IT systems to detect and stop misuse of personal data.

Only authorised employees and checked agents, contractors and sub-contractors, who provide a particular data processing service for us, are permitted access to your data. These people will only be allowed access to your data for the purposes identified within this Privacy Policy and processing it on our behalf or for IT security and maintenance

 

Data Retention

The time period for which we keep information varies according to what we use the information for.  Unless there is a specific legal requirement for us to keep information, we will keep your information only for as long as it is necessary, relevant and useful for the purpose for which it was collected.  We restrict access to your information to only those persons who need to use it for the relevant purpose.

Our retention periods are based on business needs and your information that is no longer needed is either anonymised or destroyed securely.

For financial records

  • We will retain your account information including financial records for seven years in line with tax and contract requirements.

To perform a contract 

  • In relation to your information used to perform any contractual obligation with you we may retain that data whilst the contract remains in force plus seven years to deal with any queries or claims thereafter.

For outplacement services

  • In the case of recipients of our outplacement services, we will hold your information for the duration that the service is provided and for up to five years post-service. For those who opt in to Rialto networks, telephone numbers and email addresses will remain on Rialto CRM database

For marketing purposes

  • We retain your personal information for as long as is necessary, but only for the relevant purpose that we collected it for.

Where claims are contemplated: 

  • In relation to any information where we reasonably believe it will be necessary to defend or prosecute or make a claim against you, us or a third party, we may retain that data for as long as that claim could be pursued.

 

Related third party products and services

From time to time, we may offer you opportunities to receive related products and services that integrate with, or complement, the services we offer via the Site. If you do choose to request such products or services, we will provide your information to the relevant third party on your behalf, as required to provide the products or services you have requested. We do not control the use, storage, retention, processing, or disclosure of your information by such third parties, and this Privacy Policy will not apply to them. Your relationship with these third parties will generally be subject to their separate terms and conditions as well as privacy policies or statements, and we recommend that you carefully review these documents before requesting their products or services.

 

Aggregated Data

As part of our business offering, we aggregate opinion responses on various dimensions including (but not limited to) demographic, topic themes, and point categories. In these situations, we do not disclose any information that could be used to identify you personally.

 

Exemptions: legal requests; business transitions; safeguarding; emergencies

In certain situations, Rialto may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. Rialto may disclose your personal information (a) to any governmental authority as part of an investigation to determine our compliance with any applicable law, rule, or regulation (including privacy laws, rules, and regulations), (b) if we believe there is an issue relating to safeguarding or national security involving you or a person(s) related or unrelated to you (c) in response to a court order, subpoena, discovery request, or other lawful judicial or administrative proceeding, (d) as otherwise required or permitted under any applicable law, rule, or regulation, and (e) in good faith, to protect or defend the rights or property of Rialto and other users and (f) if Rialto is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our Web site of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.

 

Other information collectors

Except as otherwise expressly included in this Privacy Policy, this document only addresses the use and disclosure of information we collect from you when using Rialto. To the extent that you disclose your information to other parties through the Site, whether they are Participants or Customers or otherwise, different rules may apply to their use, collection and disclosure of the personal information you disclose to them. Since we do not control the information use, collection or disclosure policies of third parties, you are subject to their privacy policies. We encourage you to ask questions before you disclose your personal information to others.

 

Correcting and updating your personal information

Upon written request Rialto will provide you with information about what personal information we have about you. To review, delete and update your personal information to ensure it is accurate, you may login into your account to make the changes, or you may contact us at info@rialtoconsultancy.com. We will respond to your request within a reasonable timeframe.

 

Children

The Sites, Services and Portal Rialto provide are not for use by children under the age of 18 years and Rialto does not knowingly collect, store, share or use the personal data of children under 18 years. If you are under the age of 18 years, please do not provide any personal data, even if prompted by the Sites to do so. If you are under the age of 18 years and you have provided personal data, please ask your parent(s) or guardian(s) to notify Rialto and Rialto will delete all such personal data.

 

Access and data subject rights

Individuals have the right to access the personal data processed about them, subject to applicable law; individuals may request to access their personal data processed by us by emailing us at info@rialtoconsultancy.com.

Subject to applicable law, you may also have some or all of the following rights available to you in respect of your personal data

  • to obtain a copy of your personal data together with information about how and on what basis that personal data is processed;
  • to rectify inaccurate personal data (including the right to have incomplete personal data completed);
  • to erase your personal data (in limited circumstances, such as where it is no longer necessary in relation to the purposes for which it was collected or processed);
  • to restrict processing of your personal data under certain circumstances
  • to port your data in machine-readable format to a third party (or to you) when we justify our processing on the basis of your consent or the performance of a contract with you;
  • to withdraw your consent to our processing of your personal data (where that processing is based on your consent); and
  • to obtain, or see a copy of the appropriate safeguards under which your personal data is transferred to a third country or international organisation. In addition to the above rights, under EU data protection law, applicable individuals have the right to object, on grounds relating to your particular situation, at any time to any processing of your personal data for which we have justified on the basis of a legitimate interest, including profiling (as opposed to your consent) or to perform a contract with you. You also have the right to object at any time to any processing of your personal data for direct marketing purposes, including profiling for marketing purposes.

You also have the right to lodge a complaint with your local supervisory authority for data protection.

In relation to all of these rights, please contact us at www.rialtoconsultancy.com. Please note that we may request proof of identity, and we reserve the right to charge a fee where permitted by law, especially if your request is manifestly unfounded or excessive. We will endeavour to respond to your request within all applicable timeframes.

If you contact us regarding Customer Data for which we are a data processor, we will attempt to refer your request to the relevant Customer, and data controller for your personal data.

 

Notification of privacy statement changes

We may update this privacy statement to reflect changes to our information practices. If we make any material changes we will notify you by email (sent to the email address specified in your account) or by means of a notice on this Site prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.

Questions?

It is our goal to make our privacy practices easy to understand. If you have questions, concerns or if you would like more detailed information, please email our privacy officer at:

Rialto Consultancy, 25 Southampton Buildings. Chancery Lane, London WC2A 1AL.

 

View our Modern Slavery Statement here.