Co-Lab Global Privacy and Security Policy

Co-Lab Global takes the protection of personal data very seriously. We are committed to protecting the confidentiality, and availability of any personal data we hold. This policy explains our approach to any personal data that we might collect from you from the Co-Lab Global website, other personal data we may collect/process in situations or interactions, and the purposes for which we process your personal data.

This policy will explain:

  • What information we may collect about you,
  • How we use the information we collect about you,
  • Whether we will share this information with anyone else,
  • Your choices and how you can instruct us if you prefer to limit the use of your information, and
  • Measures we have in place to safeguard your privacy.

 

About us

Co-Lab Global is the data controller responsible for protecting personal information that you provide to us. We are registered in England and Wales under company number 12244041; our registered office address is 1a Knowland Drive, Milford on Sea, Lymington, England, SO41 0RH.


What is personal data?

When we talk about personal data we are referring to any information which relates to an identified or identifiable living individual. Individuals might be identified by reference to a name, an identification number, location data, an online identifier (such as an IP address) or to other factors that are specific to them, such as their physical appearance. Categories of personal data we may collect and process about you include:

  • contact information (e.g. name, home address, telephone number, email address);
  • your date of birth;
  • information about your employment or education history;
  • information about your interests or affiliations or publicly stated positions on political matters;
  • information about articles (or similar) that you may have published;
  • information for hiring talent and human resources (e.g. work eligibility status, financial account information, government-issued identification information or dietary requirements);
  • your image;
  • your online identifier (e.g. cookie ID); or
  • any additional data that may identify you which you submit to us.

 

Information we collect

We use a variety of methods to collect data from you and about you, including the following:

  • Direct interactions: you may give us your personal data directly. For example, if you apply via our company webpage, contact us with enquiries, provide a service to us or through other interactions with us directly
  • Third parties or publicly available sources: From time to time, we may receive personal data about you from third parties. For example, we may receive your CV from a recruitment agent or contact details from an industry contact.
  • Automated technologies or interactions. For example, browser information or the URL that referred you
  • Publicly available personal data. From time to time we may collect personal data about you from publicly available sources. For example, through speaking at events or publishing articles or posting on social media platforms.

 

How we use your personal data

We will only ever use your personal data within the boundaries of local legislation. Our primary goal in collecting personal data from you are to:

  • verify your identity,
  • provide our services to clients,
  • help us improve our Site, products and services and develop and market new products and services,
  • carry out requests made by you to us,
  • investigate or settle inquiries or disputes,
  • comply with any applicable law, court order, other judicial process, or the requirements of a regulator,
  • enforce our agreements with you,
  • protect the rights, property or safety of us or third parties, including out other clients and users of the website,
  • provide support for the provision of our services,
  • carry out recruitment activities, and
  • use as otherwise required or permitted by law.

 

Purposes for which we will use your personal data

Where we use personal data in connection with recruitment and talent management, it will be in our legitimate interest to use personal data in such a way to ensure that we can make the best recruitment and talent management decisions for Co-Lab Global. It is our legal obligation to use such personal data to comply with any legal obligations imposed upon us. We will not process any special data, except where we are able to do so under applicable legislation or with the individual’s explicit consent.

Below is a list of examples of situations and purposes of when we may need to process your personal data. Please note this is not an exhaustive list and there may be situations which are not listed below.

  • Applications for career opportunities
  • Assessing suitability and right to work
  • References and background checks
  • Contracts and payment for freelancers, employees, and clients

 

Disclosure of information

Any information you give to us is held with due care and security. We may share your personal information and usage information:

  • With third-party service providers that perform services on our behalf
  • To comply with applicable law, a judicial proceeding, court order or other legal process, such as requirements of emergency services and/or law enforcement agencies
  • To enforce our agreement with you
  • To investigate, prevent, or take action regarding actual or suspected illegal activities.

 

Confidentiality and Security of your personal data

We are committed to keeping the personal data you provide to us secure, and we will take reasonable precautions to protect your personal data from loss, misuse, or alteration.

To safeguard against unauthorized access to personal data by third parties outside our organization, all electronic personal data held by us is maintained on systems that are protected by up-to-date secure network architectures.


Your Data Protection Rights

You have the following rights in relation to the personal data we hold about you, under certain circumstances:

  • To obtain confirmation that we process personal data about you, to access and obtain copies of the information, as well as information relating to the processing we carry out,
  • To request your personal data be corrected, where appropriate,
  • To request your personal data be deleted, where appropriate,
  • To request that we restrict the processing of your personal data in some circumstances, such as where you contest the accuracy of the personal data, while we investigate your concern,
  • Where processing is based on your consent, to receive your personal data in a commonly used electronic format, or ask that we move your personal data in that format to another provider, where your request relates to the personal data that you gave us directly and where technically possible,
  • To object to your personal data being processed where we are relying on ours or a third party’s legitimate interest to do so or for the purpose of direct marketing, and/or
  • To withdraw your consent at any time.


Data subjects may exercise these rights verbally or in writing. We will endeavor to promptly respond to your requests. Where you ask us to provide a copy of your personal data, we are legally obliged to respond within one month of such requests.

 

Modifications of this policy

We reserve the right to modify this policy as needed to comply with changes in laws, regulations, or requirements. We will post any changes to this page.


Contacting us

For questions or concerns about this policy, or to ask questions or express concerns about our collection, management, and processing of personal data, or to exercise your access rights please contact People Operations at peopleops@colabglo.com.

GDPR Positioning Statement

Co-Lab Global takes data protection very seriously. We are committed to protecting the confidentiality, integrity, and availability of personal data. We will explain how we use and process personal data that is shared with us and the measures we have in place to safeguard the privacy of data subjects.


What is GDPR?

The General Data Protection Regulation (GDPR) is a framework for handling and protecting the personal data of individuals within the European Unition (EU); it also addresses the export of personal data outside the EU. The primary goal of the regulation is to give EU citizens and residents control over their personal data and to simplify the regulatory environment for international business.

What is personal data?

When we talk about personal data, we are referring to any information which related to an identified or identifiable living individual. Individuals might be identified by reference to a name, an identification number, location data, an online identifier (such as an IP address) or to other factors that are specific to them, such as their physical appearance.

We strive to meet our GDPR obligations by protecting and managing personal information in a secure and consistent manner. To accomplish this, we implement a comprehensive information security process. 

To ensure that Co-Lab Global and all our employees meet GDPR, we have implemented comprehensive governance across our offices; helping to minimize any risk of breaches and to ensure up most protection to personal data. This includes:

  • the types of personal information that we collect,
  • how we use personal information,
  • with whom we share personal information,
  • rights in relation to our use of personal information,
  • security measures that we implement to protect the security of personal information, and
  • how to contact us about our privacy practices.
 

Our service provider contracts have been reviewed to ensure that processing carried out by our third-party processors meets the GDPR requirements. 

Co-Lab Global continually assess the security that we have in place to protect against disclosure, loss, misuse, unauthorized access, or alteration of personal information. These measures include:

  • using encryption to help to protect the transmission of personal information,
  • protecting the security of sensitive data, and
  • ensuring that our employees, contractors, and agents comply with our IT security policies.


Our IT services are outsourced to RnD Systems Integration. We have several measures in place to protect systems and data. In addition to firewalls and backups, technologies such as anti-virus, anti-malware, encryption, and automated patching are deployed. Our systems are scanned for vulnerabilities daily and compliance audits are performed regularly.