This notice sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read it carefully to understand how we will treat your personal data.
For the purpose of the General Data Protection Regulation (the “GDPR”), Science Based Targets initiative (SBTi) is the data controller. We are committed to protecting and respecting your privacy.
2. PERSONAL DATA WE MAY COLLECT FROM YOU
We may collect and process the following personal data about you:
(a) your name, job title and professional contact details (phone number, email and office address);
(b) information that you provide by filling in forms on our website. This includes information provided at the time of using our services, subscribing to our newsletter or requesting further services. We may also ask you for information when you report a problem with our site;
(c) if you contact us, we may keep a record of that correspondence; and
(d) details of your visits to our site and the pages you access.
3. PERSONAL DATA WE MAY COLLECT FROM OTHER SOURCES
We may collect and process personal data from external sources including:
(a) publicly available sources such as Google; and
(b) partner companies within the SBTi.
4. HOW WE STORE YOUR PERSONAL DATA
We take appropriate measures to ensure that your personal data is kept secure, including preventing it from being accidentally lost or used or accessed in an unauthorised way. We limit access to your personal data to those who have a legitimate business need to view it.
Those processing your personal data will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted through any online means.
5. WHERE WE STORE YOUR PERSONAL DATA
We predominantly store personal data on Google’s network of data centers. Google maintains a number of geographically distributed data centers. (Find out more about Google’s compliance.) In this way we make your personal data accessible to staff working for any partner company within the SBTi, and to select third-party service providers for the uses described in this notice. Countries outside the EEA may have different data protection laws to the United Kingdom.
For email marketing purposes we store your data on a Mailchimp server. Neither we nor Mailchimp will ever sell your email address or share it with any other party, unless we are legally compelled to do so. You are always free to unsubscribe from our newsletter, but as long as you are registered with the SBTi we may use Mailchimp to send you information about your account.
6. USES MADE OF YOUR PERSONAL DATA
We rely on our legitimate interests (or those of a third party) as the lawful basis for collecting and using your personal data. Our legitimate interests relate to our mission as an international not-for-profit-organisation in focusing companies on taking urgent action to build a truly sustainable economy.
We use information held about you in the following ways:
(a) to ensure that content from our site is presented in the most effective manner for you and for your computer;
(b) to provide you with information, products or services that you request from us or which we feel may interest you, unless you have requested that you are not contacted for such purposes;
(c) to carry out our obligations arising from any contracts entered into between you and us;
(d) to allow you to participate in interactive features of our service, when you choose to do so; and
(e) to notify you about changes to our service.
7. DISCLOSURE OF YOUR PERSONAL DATA
We may disclose your personal data to:
(a) any member of the SBTi and its four partner organisations;
(b) third parties, including our partners, and other organisations that are aligned with our mission; and
8. HOW LONG WE KEEP YOUR PERSONAL DATA
We will hold your personal data for as long as necessary to fulfil the purposes we collected it for. To determine the appropriate retention period we consider the amount, the nature and sensitivity of the personal data, the potential risks of harm from unauthorised use or disclosure, the purposes and whether we can achieve those purposes by other means. We will delete it if we identify it as no longer being needed or if you send us a written request to do so.
9. YOUR RIGHTS
Under the GDPR you have several important rights. In summary, these include rights to:
(a) access your personal data;
(b) require us to correct any mistakes in your information which we hold;
(c) request the erasure of personal data concerning you in certain situations;
(d) request the data to be transferred to a third party in certain situations;
(e) object at any time to processing of personal data concerning you for direct marketing;
(f) object in certain other situations to our continued processing of your personal data;
(g) otherwise restrict our processing of your personal data in certain circumstances; and
(h) claim compensation for damages caused by our breach of any data protection laws.
For further information on these rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individual rights under the GDPR.
If you would like to exercise any of the above rights, please contact us using our contact details below, providing enough information to identify you including proof of your identity and address and letting us know the information to which your request relates.
10. HOW TO COMPLAIN
We hope that we can resolve any query or concern you raise about our use of your personal data.
The GDPR also gives you right to lodge a complaint with a supervisory authority, in particular in the European Union (or EEA) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at http://ico.org.uk/concerns/ or telephone: 0303 123 1113.
11. CHANGES TO OUR PRIVACY NOTICE
Any changes we may make to our privacy notice in the future will be posted on this page and, where appropriate, notified to you by e-mail.
Questions and requests regarding this privacy notice should be addressed to [email protected]
What are Cookies
Cookies are small text files that are designed to store information on your computer. A cookie file is created when you use our website and is processed by the software of your computer. The resulting text file is placed on your computer and it is accessed by your web browser when you visit the website that originally created the cookie.
For your reference, we set out below the wording we use in our cookie banner:
Types of Cookies
The cookies described below are used to improve our website and do not contain any personal information that would allow us to identify you (such as your name or other contact details).
These are the cookies that may be used during your visit to the website:
Session cookies: these are stored temporarily during a browsing session and are deleted from your device when the browser is closed . They are used to ensure your visit to our website is as smooth as possible and allow us to identify your computer as you use the website.
Persistent cookies: these are saved on your computer for a fixed period (usually one year or more ) and are not deleted when the browser is closed. These help us remember you as a visitor each time you use the same computer to visit the website.
Analytics cookies: these allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to continuously improve the way our website works, for example, by ensuring that users can find what they are looking for easily.
Targeting cookies: these record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our advertisement more relevant to your interests. We may share this information with third parties (like Twitter and LinkedIn) for this purpose.
You can find more information about individual cookies we use and the purposes for which we use them in the table below:
|Name||Type and Purpose||Expiry|
|mailmunch_second_pageview||persistent; plugin to create forms to capture information you submit to us. This integrates with our marketing platform||1 years|
|__cfduid||persistent; used to identify individual clients behind a shared IP address and apply security settings on a per-client basis||5 years|
|_ga||analytics; Google Analytics (GA) cookie. Used to distinguish users||2 years|
|_gid||analytics; GA cookie. Used to distinguish users.||24 hours|
|_gat||analytics; GA cookie. Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_.||1 minute|
|AMP_TOKEN||analytics; GA cookie. Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.||30 seconds to 1 year|
Please note that third parties (including, for example, providers of external services like web traffic analysis services) may also have access to these cookies, over which we have no control. These cookies are likely to be analytical cookies.
How to disable cookies
You can block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site. Information on how to remove cookies can be found at: http://www.allaboutcookies.org/manage-cookies.