Privacy Policy
1.INTRODUCTION
1.1. We at Indielab are committed to safeguarding your privacy. This privacy policy (Privacy Policy) sets out the ways in which we, Indielab Ltd (we, us, our) collect and use your personal data (your personal information) in connection with our business activities. It also explains what rights you have to access or change your personal information.
2. ABOUT US
2.1. This website and the Indielab business is owned and operated by Indielab Ltd.
2.2. We are registered in England and Wales under company number 09577300, and our registered office is 7 Savoy Court, London, WC2R 0EX.
2.3. If you have any queries or requests about this Privacy Policy or how we handle your information more generally you can contact us as follows:
2.3.1. FAO: Data Protection Department
2.3.2. Address: Exchange At Somerset House, Strand, London, England, WC2R 1LA .
2.3.3. Email: hello@weareindielab.co.uk
2.3.4. Telephone: 020 8050 1076
3. INFORMATION WE MAY COLLECT ABOUT YOU
3.1. Information that you provide to us
3.1.1. We will collect any information that you provide to us, for example when you:
(a) apply to an Indielab programme via our website, email, post or over the phone;
(b) participate in our accelerator programmes or events;
(c) subscribe to our mailing lists;
(d) engage with us via social media channels;
(e) apply for a job with us;
(f) register for or attend one of our events;
(g) agree to participate in our diversity monitoring;
(h) agree to participate in our marketing activities and/or marketing collateral; and/or
(i) communicate with us via email.
3.1.2. The information you provide to us will depend on the reason you are providing it to us. It may include your name; address; email address; phone number; opinions about our programme; if you are submitting an application to the programme, details about your history with your company and details about the company itself; if you are submitting a job application you may also provide additional information about your academic and work history, references and any other such similar information as may be supplied; quotes; photos and other details for the purposes of bios; any information that you include within our diversity monitoring forms; if you are registering to attend one of our events, details about your job, company, access requirements.
3.1.3. From time to time we might ask if you would be willing to participate in our surveys; if you decide to participate, we will also collect any information that you provide to us as part of the survey.
3.2. Information we collect about you
3.2.1. We will collect any information contained in any correspondence between us. For example, if you contact us by email, telephone or through our social media channels, we will keep a record of our correspondence.
3.2.2. We will also collect certain information about how you use our website and the device(s) that you use to access our website. This might include your IP address, geographical location, device information (such as your hardware model, mobile network information, unique device identifiers), browser type and version, referral source, length of visit to the website, number of page views, website navigation paths, the search queries you make on the website and similar information. This information may be collected by a third-party website analytics service provider on our behalf and/or may be collected using cookies. For further information about the cookies we use, please see paragraph 6 below.
3.3. Information we receive from third parties
3.3.1. We may receive information about you from third parties. For example
(a) we will use third-party providers to verify information provided by you in connection with your application to one of our programmes. For example, we may use third-party databases or websites to confirm your employment history and company details;
(b) we will receive information about you from third parties that are referring you to us to consider for participation in our programmes and events; and
(c) if you are a job applicant we may contact your referees to provide information about you.
3.3.2. We might also receive information about you from third parties if you have indicated to such third party that you would like to hear from us.
3.4. Where we need to collect personal information by law, or under the terms of a contract we have with you or for services or events, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you. In this case, we may have to cancel services you have with us but we will notify you if this is the case at the time.
3.5. We also collect, use and share aggregated data such as statistical or demographic data for any purpose. Aggregated data could be derived from your personal information but is not considered personal information in law as this data will not directly or indirectly reveal your identity. However, if we combine or connect aggregated data with your personal information so that it can directly or indirectly identify you, we treat the combined data as personal information which will be used in accordance with this privacy policy.
4. HOW WE USE YOUR INFORMATION
4.1. We will only process your information if there is a reason for doing so, and if that reason is permitted by law. In addition, we will ensure that we have a legal purpose under the GDPR to process your personal information . Please see below:
4.1.1. to provide you with access to our website in a manner convenient and optimal and with personalised content relevant to you, including sharing your information with our website hosts and developers;
4.1.2. to administer any programmes or events that you are participating in (including communicating with you about the programme or event);
4.1.3. to share your information with selected third parties (such as our programme or event sponsors), to enable them to contact you with information about things that may interest you;
4.1.4. to process any job applications that you submit to us, including sharing this with any third party recruitment agencies if necessary;
4.1.5. to keep in contact with you about our news, events, new website features or services that we believe may interest you, provided that we have the requisite permission to do so, and sharing your information with our marketing services provider;
4.1.6. to collect information for our diversity monitoring forms
4.1.7. to keep in contact with you about our news, events or services that we believe may interest you and sharing your information with our marketing services provider;
4.1.8. to provide us (and those companies within our group) and third parties with statistical information about our users (but those third parties will not be able to identify any individual user from that information);
4.1.7. to deal with enquiries and complaints made by or about you relating to our events;
4.1.8. to carry out aggregated and anonymised research about general engagement with our website;
4.1.9. to share information our authorised third party suppliers which enable us to provide you with our events and services and;
4.1.10. to protect, investigate, and deter against fraudulent, unauthorised, or illegal activity, including without limitation identity fraud; and
4.1.11. to enable us to comply with legal and regulatory obligations to which we are subject and our policies and procedures, or to enforce or protect our legal rights, or to protect the rights, property or safety of our employees and to share information with our technical and legal advisors
4.2. We will use your information for the purposes listed above either on the basis of:
4.2.1. performance of a contract with us and the provision of our services to you;
4.2.2. your consent (where we request it); and/or
4.2.3. necessary for our legitimate interests (to deliver information to sponsors at our events, provide marketing communications and to develop relationships with the sponsors to add value; to learn more about our website users and to develop the services and events that we deliver; to ensure that complaints are dealt with and to improve our events and services).
4.2.4. your explicit consent.
4.2.5. necessary to comply with a legal obligation
4.2.6. necessary for our legitimate interests (for detecting and preventing fraud and operating a safe and lawful business and to mitigate risks)
4.2.7. necessary for our legitimate interests (to manage your job application to us)
4.3. Where we refer to using your information on the basis of our “legitimate interests”, we mean our legitimate business interests in conducting and managing our business and our relationship with you, including the legitimate interest we have in:
4.3.1. personalising, enhancing, modifying or otherwise improving the services and/or communications that we provide to you;
4.3.2. detecting and preventing fraud and operating a safe and lawful business;
4.3.3. improving security and optimisation of our network, sites and services;
4.3.4. managing your job applications to us; and
4.3.5. providing you with marketing communications.
4.4. Where we use your information for our legitimate interests, we make sure that we take into account any potential impact that such use may have on you. Our legitimate interests don’t automatically override yours and we won’t use your information if we believe your interests should override ours unless we have other grounds to do so (such as your consent or a legal obligation). If you have any concerns about our processing please refer to details of “Your Rights” in paragraph 9 below.
5. CHANGE OF PURPOSE
5.1. We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.
5.2. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
6. SHARING YOUR PERSONAL INFORMATION
6.1. In connection with the purposes described above and in addition to the recipients of your information as we have already outlined above, we may share your personal information with third parties with whom we work, such as:
6.1.1. any third parties that we work with to deliver our business needs (including third parties hosting or operating our databases, managing our event invites and marketing communications);
6.1.2. any other third parties (including legal or other advisors, regulatory authorities, courts and government agencies officers, insurers, professional advisers, agents, or subcontractors) where necessary to enable us to enforce our legal rights, or to protect the rights, property or safety of our employees or where such disclosure may be permitted or required by law;
6.1.3. any member of our group of companies (this means our subsidiaries, our ultimate holding company and all its subsidiaries) for business administration; and
6.1.4. any prospective seller or buyer and their owners and advisors of such business or assets, only in the event that we decide to sell or buy any business or assets; and
6.1.5. with such third parties as we reasonably consider necessary in order to detect, prevent or investigate a crime, e.g. the police.
6.2. We will also share your information with any third party where required to do so by law or competent court.
6.3. We require third parties to maintain appropriate security to protect your information from unauthorised access or processing.
7. COOKIES
7.1. Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our website.
7.2. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer's hard drive.
7.3. We use cookies which are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website, use a shopping cart or make use of e-billing services.
7.4. You can block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our website.
8. INTERNATIONAL DATA TRANSFERS
8.1. We are located in the United Kingdom (the UK).
8.2. Information that we collect may be stored and processed in and transferred between any of the countries in which we (or our suppliers) operate, which may include countries based outside the European Economic Area and/or the UK.
8.3. In the event that your information is processed outside of the EEA or the UK, we will take all steps which are reasonably necessary to ensure that any of your information is adequately protected and processed in accordance with this Privacy Policy, including relying on approved data transfer mechanisms to ensure that your information is subject to adequate safeguards in the recipient country.
8.4.Please contact us using the contact details above for further information.
9. SECURITY AND RETENTION OF YOUR INFORMATION
9.1. We use appropriate technical and organisational precautions to protect your information against unauthorised access and/or unlawful use, such as:
9.1.1. ensuring the physical security of our offices;
9.1.2. ensuring the physical and digital security of our equipment and devices by using appropriate password protection and encryption; and
9.1.3. limiting access to your personal information to those in our company (and third parties) who need to use it in the course of their work.
9.2. You acknowledge that the transmission of information over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet; any transmission is at your own risk. Once we have received your information, we have implemented strict procedures and security features to prevent unauthorised access.
9.3. We will retain your information for as long as is necessary to provide you with the services that you have requested from us or for as long as we reasonably require to retain the information for our lawful business purposes, such as to the extent we are required to retain the information by law or for the purposes of exercising or defending our legal rights (e.g. providing information to others for the purposes of fraud prevention and reducing credit risk). Otherwise, we securely erase your information where we no longer require it for the purposes we collected it for..
10. YOUR RIGHTS
10.1. You have certain rights in respect of the information that we hold about you, including:
10.1.1. the right to ask us not to process your personal data for marketing purposes;
10.1.2. the right to request access to the information that we hold about you. You have the right to receive a copy of the information we hold about you ;
10.1.3. the right to rectification. You are entitled to have any incomplete or inaccurate information we hold about you corrected, though we may need to verify the accuracy of the new information you provide to us;
10.1.4. the right to erasure which enables you to request the deletion or removal of certain of the information that we hold about you where there is no good reason for us continuing to process it;
10.1.5. the right to ask us to stop processing information about you. we may still have a lawful reason to store your information, but we will not use it further;
10.1.6. the right to data portability. You have the right to receive your information in a structured, commonly used and machine-readable format which you can transfer to another service provider or other third party;
10.1.7. the right to withdraw consent. Where we rely on consent to use your information, you have the right to withdraw that consent at any time. Withdrawing consent will not, however, make unlawful our use of your information before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain services to you.
10.1.8. the right to object to processing. You have the right to object to certain types of processing of your information, including processing for marketing purposes and profiling.
10.2. Please note some of the above rights are not absolute and will only apply in certain circumstances.
10.3. You may exercise your rights above by contacting us using the details in paragraph 2 of this Privacy Policy, or if you wish to withdraw your consent to processing for marketing activities also by following the unsubscribe hyperlinks contained in our marketing emails.
10.4. Please note that we may need to retain certain information for our own record-keeping purposes.
10.5. You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
11. THIRD PARTY WEBSITES
11.1. Where our website includes hyperlinks to, and details of, third party websites, please note that we have no control over, and are not responsible for, the privacy policies and practices of third parties. When you leave our website, we encourage you to read the privacy notice of every website you visit.
12. UPDATING INFORMATION
12.1. It is important that the personal information we hold about you is accurate and current. Please let us know if the personal information that we hold about you needs to be corrected or updated.
13. AMENDMENTS
13.1. We may make changes to this Privacy Policy from time to time. We will post any changes to our site, or notify you of any material changes by email. Any changes will come into effect the next time you engage with us after the changes have been notified.
This Privacy Policy was last updated in December 2023.