1. Introduction
Veriva Insights Ltd is committed to protecting the privacy and personal data of individuals who interact with our business, website, research services, survey activities, client services, supplier network, and panel access operations.
This Privacy Policy explains how Veriva Insights Ltd collects, uses, stores, shares, protects, and otherwise processes personal data in connection with our website, business operations, market research services, online sample access, respondent recruitment, data collection support, client communications, supplier relationships, and related services.
For the purposes of applicable data protection laws, including the UK General Data Protection Regulation and the Data Protection Act 2018, Veriva Insights Ltd may act as a data controller, joint controller, or data processor, depending on the nature of the service and the instructions agreed with our clients or partners.
- Website visitors
- Research participants and survey respondents
- Individuals contacted for research opportunities
- Clients and prospective clients
- Supplier and panel partner contacts
- Business contacts
- Job applicants, where relevant
- Individuals who contact us by email, phone, website form, or other communication channels
2. Company Details
- Company Name: Veriva Insights Ltd
- Email: sales@verivainsights.com
- Address: Siu Offices, 4-6 Greatorex Street, London, United Kingdom, E1 5NF
- Website: www.verivainsights.com
- For privacy requests, email sales@verivainsights.com with subject line: Privacy Request
3. About Our Services
Veriva Insights Ltd provides market research and online panel access services. Services may include online sample access, respondent recruitment, survey fieldwork, B2B research access, consumer research access, healthcare audience access, multi-country fieldwork support, survey programming coordination, data quality checks, and project management support.
We support legitimate market research and insight activities. We do not use research participation for direct marketing, sales solicitation, or lead generation unless separately disclosed and lawfully permitted.
4. Personal Data We May Collect
The personal data we collect depends on how you interact with us.
- Website visitor data may include IP address, browser, device, operating system, referral source, pages visited, timestamps, approximate location, cookie/analytics data, and contact form submissions.
- Client and business contact data may include name, business email, phone, title, company details, project requirements, correspondence history, proposal/contract records, billing information, and preferences.
- Research participant data may include demographic/profile data, survey responses, technical metadata, timestamps, quality flags, reward information, and consent records where applicable.
- Special category data may be processed only where lawful basis and additional legal condition applies (for example explicit consent or legally permitted research safeguards).
- Children and young people data is not knowingly collected unless the project requires it and legal safeguards (including parent/guardian consent where required) are in place.
5. How We Collect Personal Data
- Directly from you: website visits, contact forms, email, proposals, contracts, surveys, research registration, and project communications.
- From third parties: clients, agencies, panel partners, sample providers, platforms, recruitment partners, B2B/healthcare partners, analytics providers, referrals, and lawful public business sources.
- Where data is received from third parties, we expect lawful collection and sharing by those parties.
6. Purposes and Lawful Bases for Processing
Under UK GDPR, processing activities require a lawful basis. Purposes and lawful bases are mapped operationally for enquiries, project delivery, recruitment, quality control, incentive administration, account management, supplier management, analytics, security, compliance, and rights handling.
Typical lawful bases include consent, contract, legitimate interests, pre-contract steps, and legal obligation depending on context.
7. Market Research and Survey Data
Survey responses may be used to produce aggregated findings, analysis, and reporting outputs that generally do not identify individuals unless clearly disclosed and consented.
Respondent IDs or pseudonymous identifiers may be used for duplicate prevention, reconciliation, quality checks, and project reporting.
We do not knowingly sell respondent personal data for direct marketing.
8. Data Quality, Fraud Prevention, and Validation
- Duplicate response checks
- IP, device, and geo checks where available
- Speeding and straight-lining checks
- Attention and consistency checks
- Open-end validation
- Timestamp and suspicious-pattern analysis
- Quality scoring and source performance review
9. Cookies and Similar Technologies
Our website may use cookies, pixels, analytics tools, and similar technologies for core operation, security, performance, and functionality.
Where required by law, consent is requested before non-essential cookies are set. Cookie choices can be managed through browser settings and our cookie consent controls.
10. Who We Share Personal Data With
We may share personal data with clients, agencies, survey platform providers, panel partners, sample providers, technology/cloud providers, analytics providers, advisers, incentive providers, and legal/regulatory authorities where required.
Where we act as a processor, data is processed according to documented client instructions. Suppliers and subprocessors are expected to maintain confidentiality and appropriate controls.
11. International Data Transfers
Because we support international projects, data may be processed or accessed outside the UK. Where required, we use appropriate safeguards such as adequacy regulations, IDTA/UK Addendum mechanisms, contractual controls, due diligence, and minimization/pseudonymization practices.
12. Data Retention
Personal data is retained only as long as necessary for relevant purposes. Retention varies by project scope, contracts, legal obligations, audit needs, and consent status.
- Business enquiry records: typically up to 3 years after last contact
- Client contract records: typically up to 6 years after contract end
- Project records: project period plus reasonable reconciliation period
- Financial records: according to legal/accounting requirements
- Opt-out/suppression records: as needed to respect preferences
- Rights request records: as needed to evidence compliance
13. Data Security
- Access controls and password-protected systems
- Role-based access where practical
- Confidentiality controls
- Secure transfer methods where required
- Supplier due diligence
- Restricted project-data access
- Secure retention/deletion controls
- Incident escalation procedures
- Staff awareness and training
14. Your Data Protection Rights
Depending on applicable law, you may have rights to access, rectify, erase, restrict, object, port data, and withdraw consent where consent is the lawful basis. Some rights may be limited where legal exemptions apply.
To exercise rights, contact sales@verivainsights.com.
15. Withdrawal of Consent
Where processing relies on consent, consent can be withdrawn at any time. Withdrawal does not affect processing carried out before withdrawal.
For survey participation, withdrawal may not always enable removal from outputs already anonymized or aggregated.
16. Marketing Communications
We may contact business contacts about services where legally permitted. You can opt out at any time via sales@verivainsights.com.
Research responses are not used for direct marketing unless separately disclosed and lawfully permitted.
17. Automated Decision-Making and Profiling
Profiling or automated tools may be used for eligibility, routing, quota control, fraud prevention, and quality checks. These processes are for research operations and are not intended to produce legal or similarly significant effects.
18. Third-Party Websites
Website, survey, or communication links may direct to third-party platforms. We are not responsible for third-party privacy practices; review their policies before submitting data.
19. Complaints
If you have concerns about our handling of personal data, contact sales@verivainsights.com first.
You may also complain to the UK Information Commissioner's Office (ICO): www.ico.org.uk.
20. Changes to This Privacy Policy
We may update this policy from time to time. Updated versions will be posted with a revised Last Updated date, and material changes may be communicated where required.
