REVISED as of 24 July 2018
Collegium Holdings, Inc. Privacy Policy
This Privacy Policy (“Policy”) describes how Collegium Holdings, Inc. and its subsidiary in the United States and in the United Kingdom (“Collegium,” “us,” or “we”) (or any holding company or subsidiary company of Collegium as defined in section 1159 of the Companies Act 2006 (“Group”)), collect, use, disclose, and protect the personal data we are holding about you, your employees, or agents, electronically or otherwise. This Policy applies to all clients of and recipients of information provided by Collegium.
As the data controller of your personal data, we control how all personal information we are holding about you is stored, processed, or transferred. We will only deal with your personal data in accordance with the terms of this Policy.
Collection and Use of Information
We collect personal data if you submit it voluntarily or we otherwise learn it through our interactions with you, which may include your name, email address, and contact details. We continuously review our records to ensure your data is as accurate as possible. We may therefore consult alternative sources in order to do so, such as newspaper articles, company websites, and other publicly available sources.
Collegium collects and uses information that it believes to be factually correct, relevant to its work, and not excessive. We are always respectful of our constituents in regards to information retained. We do not store any sensitive information such as racial/ethnic origin; political beliefs; religious/similar beliefs; trade union membership; physical/mental health condition; sexual orientation/activities; commission or alleged commission of an offense, or any proceedings such as a court sentence.
The information we collect may be used by us to communicate with you for marketing, promotional, and administration purposes in connection with our legitimate business interests. These communications may include:
- The promotion of the relationship between Collegium and our network, including existing clients, potential clients, and other individuals or entities within our core market segment;
• Advertising and promotion of Collegium events and services;
• Distribution of Collegium mailings (e.g. staff announcements, webinars, sector news, and reports); and
• Eliciting non-financial support (e.g. support with research projects, advice on recruitment, and participation in benchmarking).
Like most websites, we use cookies to give you the best browsing experience possible. In general, cookies do not contain any personal data unless you as a visitor knowingly supply the information. If you block the use of cookies, you may not be able to take full advantage of the site’s features. By using our site, you agree to the use of cookies.
Choice
Collegium generally does not collect, use, or disclose personal data to any third party or for any other purpose that is materially different from the purpose we originally collected it for or to which you consented. In the event your personal data is to be disclosed to a third party or used for a purpose that is materially different from the purpose we originally collected it for or that you consented to, we first offer you the choice to opt out of such collection, use, or disclosure. You may opt out by emailing inside@grahampelton.com.
Disclosure of Information to Third Parties
Collegium will not ordinarily disclose your data to any third parties. However, Collegium may share your data:
- With our subsidiaries and affiliates, e.g. Collegium may process or store information in the United States on behalf of its international subsidiaries and affiliates;
• If we notify you and you consent to the sharing;
• In the event of any merger, sale of company assets, consolidation or restructuring, financing, or acquisition of all or a portion of Collegium’s business by or into another company;
• To protect our interests, rights, and property in the event of a claim or dispute brought against us; or
• If we are required by applicable law, regulation, operating agreement, legal process, or in response to valid requests by law enforcement officials, governmental agencies, or other public authorities, including to meet national security requirements.
Under certain circumstances, we may be liable in cases of onward transfer of personal information to a third-party agent which processes the information in a manner inconsistent with the Privacy Shield Principles, except in cases where Collegium is not responsible for the event giving rise to the damage.
Security of Information
Collegium will do its utmost to protect your privacy. Data protection legislation obliges us to follow security procedures regarding the storage and disclosure of information in order to avoid unauthorized loss or access. We have implemented industry-standard security systems and procedures to protect personal information from unauthorized access, disclosure, alteration, misuse, or destruction.
Access or Corrections to Information
Collegium may retain your personal information if necessary for Collegium’s legitimate business interests or to comply with any legal requirement. We will make reasonable efforts to ensure that the information is accurate and complete and we will update or correct your information as needed when notified by you.
You may have the right to access the personal information we hold about you. In some cases, however, access rights may not apply, including when providing access is unreasonably burdensome or expensive under the circumstances. To request access to, correction of, amendment to, anonymization of, or erasure of your information, please contact us by email at inside@grahampelton.com or in writing at the following addresses. Within the EU: 118 Pall Mall, London SW1Y 5EU; United States: 39 Beechwood Road, Summit, NJ, USA 07901.
Privacy Shield Statement
Collegium complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Collegium has certified to the Department of Commerce that it adheres to the Privacy Shield Principles of notice, choice, accountability of onward transfer, security, data integrity and purpose limitation, access, and recourse, enforcement, and liability. If there is any conflict between the terms in this Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov.
Collegium commits to subject to the Privacy Shield Principles all personal data received by Collegium in the U.S. from EU member countries in reliance on the Privacy Shield. In compliance with the Privacy Shield Principles, Collegium commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Collegium at inside@grahampelton.com.
To the extent that the privacy complaint remains unresolved, Collegium has further committed to cooperate with EU data protection authorities (DPAs) and the UK Information Commissioner’s Office. The services of EU DPAs are provided at no cost to you. Under certain circumstances, you may have the option of invoking binding arbitration before the Privacy Shield Panel created by the U.S. Department of Commerce and the European Commission. The Federal Trade Commission has jurisdiction over Collegium’s compliance with the Privacy Shield.
Further Information
Collegium communications are by phone, email, and post. If you prefer not to receive some types or any of our communications, you can opt out by either emailing us at inside@grahampelton.com or contacting our UK office on 020 7060 2622.
If you consider our use of your personal information to be unlawful, you have the right to lodge a complaint with the UK’s supervisory authority, i.e. the Information Commissioner’s Office. Collegium (UK) Ltd. is registered with the Information Commissioner’s Office, number ZA165891.
Changes to Privacy Policy
We keep our Policy under regular review. This Policy was last updated on 24 July 2018.