This document has been produced and distributed for Bridgeable. No part of this document may be reproduced, published, converted, or sorted in any data retrieval system or transmitted in any form or by any means (electronic, mechanical, photocopying, or recording) without the prior written permission of Bridgeable.
What Personal Data We Collect
Personal data is acquired directly from data subjects or indirectly through authorized sources such as a recruitment firm or third-party agencies acting on our behalf. Data subjects can include employees, ex-employees, prospective employees, client point of contact, and research subjects. Consent or contractual agreements are in place to establish a lawful basis of personal data processing. While working with Bridgeable, you may be asked to provide the following:
- Contact information (such as first and last name, address, zip code, email address, telephone number)
- Demographic information (such as gender, age, etc.) and information about individual preferences
- Employment information (such as employment history, areas of expertise, job type preferences)
- Health information (such as physical or mental conditions, medications, vaccination status, and history)
- Website cookies (such as website activity, IP address, language preferences, ad preferences)
We will gather and use personal data exclusively to achieve the purposes outlined by us.
How We Use Your Personal Data
With respect to personal data, Bridgeable is a ‘data processor’ and ‘data controller’ under the EU General Data Protection Regulation (“GDPR”).
In our commitment to serving clients, we conduct surveys, interviews, and small group discussions targeting specific criteria or customer segments. Personal data is acquired through diverse channels, such as telephone conversations, email exchanges, and remote video calls. This data is instrumental in crafting high-quality strategies, experiences, and services to solve complex problems or enhance customer and brand interactions—examples include encouraging the shift from private vehicles to public transit or facilitating access to life-saving drugs for cancer patients. Employing techniques like mapping, prototyping, and various human-centered design methodologies, we strive to innovate solutions that address intricate challenges and elevate the overall end-user and brand experience.
How We Share Your Personal Data
Bridgeable may share your personal information with our affiliates, contractors, employees, and other parties who require such information to assist us with managing our relationship with you. We keep a record of any third-party transfer and disclose the details to you when receiving information (e.g., applicable law or regulatory requirements, search warrants, court orders, third-party transfers, cloud service providers, etc.).
We may share non-personally identifiable information, as aggregate information, publicly with clients and with our affiliates or third parties – including publishers, advertisers, or connected sites. As an example, we may share information publicly to show trends in the general use of our services.
Finally, we do not share any personal data with third parties for their own marketing purposes.
How We Protect Your Personal Data
Before or at the moment of gathering personal information, we will specify the intended purpose for its collection. We will acquire information through lawful and fair means, with the knowledge or consent of the data subjects. Upon receiving data from data subjects, Bridgeable operates under the assumption that it is accurate and up to date, placing reliance on the endorsement of the data subjects.
Bridgeable strives to uphold physical, technical, and procedural safeguards that align with the sensitivity of the relevant personal information. These measures are crafted to prevent the loss of your personal information and prevent unauthorized access, copying, use, modification, or disclosure.
We prioritize the security of your personal information. If there is any incident involving the loss, unauthorized access, collection, use, or disclosure of personal information under our custody or control, kindly notify our Privacy Officer promptly.
Retention and Storage of Your Personal Data
Bridgeable will retain your personal information for the duration necessary to fulfill the purpose for which it was collected or as mandated by legal obligations. Afterward, we will securely delete the personal information. In cases where technical constraints prevent the complete deletion of specific data from our systems, we will implement suitable measures to avoid any further use of such data (e.g., anonymization).
Data Subject Rights
You may contact Bridgeable to request any action or update your personal information using the contact information provided in this policy’s ‘Contact Us” section. We may require your information to confirm your identity and process the request if you make such a request.
As data subjects, you have the following rights to:
- Request access to your personal information (commonly known as a “subject access request”).
- Request correction of your personal information.
- Request the erasure of your personal information.
- Right to ask us to delete or remove your personal information where you have exercised your right to object to processing.
- Object to processing your personal information where we rely on our legitimate interests.
- Request the restriction of processing of your personal information.
- Request the transfer of your personal information to another party.
Bridgeable may discard, erase, or anonymize personal information in line with record retention practices. In that case, we cannot process your request to access the information, and we will inform you of the reasons why, subject to any legal or regulatory restrictions.
Use or Disclosure for Marketing Purposes
If you receive marketing materials, we may use your personal information to advertise and promote additional products, services, and special offers from our affiliates and/or business associates through direct marketing. You can prevent us from using or revealing your personal information for direct marketing by using unsubscribe options or contacting us.
We use tracking and analytics tools to analyze access to our websites. Collected information includes IP address, access time, and access duration.
Links to Third-Party Sites
Our services cover data subjects who are under the age of 18 (children) and explicit consent mechanisms are in place to collect and process children’s data. If you have concerns about our privacy practices, please reach out to us using the details given in the ‘Contact Us’ section.
If you remain dissatisfied, you can complain to the supervisory authority about how we process your personal information.
Client: A client in the context of corporate customer refers to a business entity or organization that engages in a professional relationship with Bridgeable.
Cookies: Cookies are small pieces of data stored on a user’s device by a web browser, often containing information about the user’s preferences or activities on a website to enhance the browsing experience.
Data controller: A data controller is an entity or individual that determines the purposes and means of processing personal data, making decisions about how and why such data is collected, stored, and processed.
Data processor: A data processor is an entity or individual that processes personal data on behalf of a data controller, carrying out specific tasks or operations as instructed by the controller while adhering to applicable data protection regulations.
Data subject: A data subject is an individual whose personal information is collected, processed, or stored by a data controller or processor, typically in the context of data protection regulations.
Personal data: Personal data refers to any information relating to an identified or identifiable natural person, such as names, addresses, contact details, or any other data that can be used to directly or indirectly identify an individual.