„RAIT GROUP“ OÜ („RAIT“Ltd, „RAIT Custom Research Baltic“ SIA, „RAIT Faktum” OÜ, RAIT Sverige AB) is committed to protecting the privacy of our customers and respondents. This general privacy policy (“Policy”) provides a overview of the the general principles on how we collect, use, and protect the personal information that you provide to us. For more information on our privacy practices, please contact us at info@raitgroup.com.
The protection of personal data is a top priority for RAIT GROUP. Our companies are compliant with the guidance and requirements of the professional code of conduct applicable to all registered market research companies (ICC/ESOMAR International Code on Market, Opinion and Social Research) and all current existing local regulations, inlcuding the General Data Protection Regulation („GDPR“) especially as far as the protection of respondents’ data is concerned.
„RAIT GROUP“ OÜ companies use a variety of security technologies and procedures to help protect your personal information. Procedures may vary in each company, but general rules, which are mentioned below are applied in each RAIT GROUP unit.
Information We Collect
We may collect information including but not limited to about our clients, participants of our events, respondents and employees.
We may collect personal information from you when you use our services, such as your name, email address, and other contact information needed for the participation in the study or service use that you are informed of prior to the collection of data.
We may also collect publicly available information from third-party sources, such as public databases and social media platforms, to supplement the information that you provide to us or receive personal data from third parties. If there is a third party involved in the data collection, processing or storing, you will be informed in advance about the applied privacy policy.
When using our webpage, the following types of personal information may be collected, stored, and used:
Information about your computer, including your IP address, geographical location, browser type and version, and operating system.
Information about your visits to and use of this website, including the referral source, length of visit, page views, and navigation paths on the website.
Information that you provide for subscribing to our emails and/or newsletters, such as your name, workplace, and email address.
Information that you enter while using the services on our website.
Information generated when you use our website, including when, how often, and under what circumstances you use it.
Information in any form of communication that you send to us via email or our website, including its content and metadata.
Cookies
Our website uses cookies. A cookie is a file containing an identifier (a string of letters and numbers) sent by a web server to a web browser and stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server. Cookies can be either “persistent” or “session” cookies. A persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date. A session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed. Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies. We only use session cookies.
Below are the names of the cookies we use on our website and the purposes for which they are used:
We use Google Analytics on our website to recognize a computer when a user visits the website, track users as they navigate the website, analyze the use of the website, administer the website, prevent fraud, and improve the website’s security.
Use of Information
We use the information we collect to provide and improve our services, to communicate with you, and to comply with legal requirements. We may also use the information for research and analytics purposes, invitations to participate in our studies and to send you marketing and promotional materials.
Sharing of Information
We do not sell or rent your personal information to third parties. We may share your information with third-parties, who act as separate controllers and/or service providers, who act as processors, who help us provide our services, such as hosting providers, after signing data processing agreement.
Security
We take reasonable steps to protect your personal information from unauthorized access, use, or disclosure. We use a variety of appropriate security technologies and procedures which vary based on the sensitivity of the personal data we process and the current state of technology. Please note that no security measures can be 100% effective and while we strive to protect your data, we cannot guaratee that the unauthorized access, use, or disclosure will never occur.
RAIT GROUP has already taken many actions to comply with the GDPR; with some of the main actions including but not limited to the following:
Need-to-know principle.RAIT GROUP uses techniques to protect respondents’ personal data as part of its data collection operations so that access is restricted to its fieldwork teams in its operations units solely on a need to know basis.
Employee training. RAIT GROUP trains its employees on exisiting regulations, including the GDPR.
RAIT GROUP implements encryption solutions, notably on all employees’ laptops.
RAIT GROUP enforces procedures in order to select suppliers processing personal data based on their capacity to comply with our data protection requirements. This means that all suppliers, who process personal data on our behalf as processors, must sign a data processing agreement with RAIT GROUP companies.
Data Retention
We retain the personal information we collect for as long as reasonably necessary to attain the objectives of the processing or until the legal obligation stipulates taht we do so. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the processing purposes and whether we can achieve these purposes through other means, and applicable statutory obligations. Whilst retaining the personal data, we take into account the need to resolve disputes and enforce the contract between us or anonymize your personal data and retain this anonymized information indefinitely.
Changes to This Policy
We may update this Policy from time to time to reflect the changes in the way we process personal data, and we will make this Policy available on our website.
Your Rights
You have the right to request access to the personal information we collect about you, to request that we correct or delete it, object to certain processing, request that we restrict the processing, request data portability and withdraw your consents, including opt out of marketing communications. You also have the right to submit your claim to the data protection authority, in Estonia to the Estonian Data Protection Inspectorate (in Estonian: Andmekaitse Inspektsioon at info@aki.ee or www.aki.ee).
If you have any questions or concerns about this Policy or each RAIT GROUP companies‘ privacy practices, please contact us at info@raitgroup.com.