top of page

Parallel Reality Ltd.

MENU

Privacy Policy

(Updated 01 September 2023)

Our privacy policy as stated herein is applicable to our products EMA-MSK for the NHS, and EMA Sport.

At Parallel Reality, we take data privacy very seriously and we are committed to protecting and respecting the rights of all individuals. We are dedicated to ensuring the confidentiality and privacy of information entrusted to us and aspire to be transparent when we collect and use personal data.

This privacy notice covers the following:

  • Our Contact Details 

  • How we collect personal information

  • Parallel Reality's purposes and lawful bases for personal data processing

  • How we store your information

  • Sharing Information

  • International Transfers

  • Your rights

  • Rights related requests

  • How to complain

  • Changes to this Privacy Notice

 

Our Contact Details

Parallel Reality Ltd.
30, Saltash Road
Hainault, Ilford
IG6 2NL

Parallel Reality is registered with the Companies House in the UK, with registration number 10758495.

If you have questions or comments about this Data privacy notice or how we handle personal data, please direct your correspondence either to the above postal address (marking the envelope FAO – Data Protection Officer) or to info@parallelreality.co.uk.

How we collect personal information

We may obtain personal data directly from individuals in a number of ways including:

  • When you fill in a form on our website

  • When you give us your business card

  • When you become a client

  • When you submit a job application

  • When you use our support and service portals

  • When you email or call us

  • When you visit our offices or attend events, conferences, and meetings

  • When you subscribe to our newsletters and user groups

  • When you participate in a white paper research project

 

We may also obtain personal information indirectly from a variety of sources including:

  • Third parties, such as joint marketing partners and data brokers that share business contact information with us

  • Recruitment services may provide us with CVs

  • Existing clients may share their employees' contact details with us

  • Publicly available sources such as LinkedIn, Companies House, or freely available news articles

  • Companies providing security background checks

  • CCTVs that may be located at our offices

 

We will always ensure you know we are processing your personal information except where it is disproportionately difficult to do so.

Our purposes and lawful bases for personal data processing

We process personal data for the following reasons:

To Fill Job Vacancies

If you submit a job application either directly or through a recruiter, we will use your information in connection with the specific job that you have applied for, and in the event you are unsuccessful in your application, we will keep your information on file in case additional vacancies come up for which you may be suitable.  We store the information of unsuccessful candidates for 6 months. If you give us your consent to hold it for longer, we will keep this for a maximum of 2 years.

Sometimes we use publicly available sources of data such as LinkedIn in order to source candidates’ information. 

The legal basis for processing your data for recruitment is our legitimate interest in operating our business and fulfilling vacancies.

Prior to the interview process, we will ask whether you need modified access because of disabilities. Our legal basis for processing this information is a legal obligation.

To provide customer support and access to self-service portals and to provide service delivery

When you become a partner/customer of ours, we collect your data from our portal login pages. We do this in order to provide online and telephone support services to help deliver contracted services to you via web portals, email, or over the telephone. We use this information to process online requests, solve problems, answer questions, and respond to communications from individuals and organisations.

If you have access to parts of our websites or use our online services, you remain responsible for keeping your user ID and password confidential.

Our legal basis for processing these data is our legitimate interest in providing our services.

For Purposes of Financial Management

We gather and retain business contact details for financial management purposes. Personal information such as names and contact information will be needed to ensure purchase orders, requisitions, invoices, and debts are handled appropriately. 

Our legal basis for processing financial information is the performance of a contract. The retention period for this type of information is up to 7 years in line with legal and tax regulations.

To send you marketing materials by email

 

We use your contact to send you marketing and product information. You can opt out of marketing messages at any time.

We will remove your details from our marketing list if there is no activity (such as opening an email) for a 3-year period.

Our legal basis for this processing is our legitimate interest in promoting our business.

To tell you about our products and services

If you complete an inquiry form on our website or give us your details in person, for example at a conference, we will contact you by email or phone so that we can discuss the products or services in which you have indicated an interest.

Our lawful basis for processing is our legitimate interest in selling our products and services.

To invite you to conferences or exhibitions

 

We use your data to invite you to conferences and events. Sometimes Parallel Reality uses this information to provide assistance with travel and/or hotel arrangements at the request of the individual.

 

Our lawful basis for processing data for these purposes is our legitimate interest in promoting our business.

 

To host meetings with you at Parallel Reality Offices, conferences, or exhibitions

We need to process your data in order to manage access and physical security at our offices. At some Parallel Reality sites, visitors may be required to provide photo proof of id, but this information will not be stored.

 

Our lawful basis is our legitimate interest in ensuring the security of our business premises and authorised attendance at our events.

 

Additionally, during the COVID-19 pandemic, we will record the dates and times you visit a related facility. We will also collect a contact number from you (or the nominated lead, if you are part of a group) in the event that this may be needed to support the contact tracing scheme. This data is only retained for a period of 21 days.

Our lawful basis for processing data for this purpose is our legitimate interest in supporting the NHS Test & Trace programme.

 

We may also ask for dietary restrictions or access requirements that reveal religious beliefs or physical health conditions.

 

Our legal basis for processing these data is your consent which you can withdraw at any time.

Once your access has been arranged, we do not retain this information.

To manage the security of our facilities

Some of our offices have CCTV systems that monitor the perimeter of the buildings. These collect location and time-based images of you and, sometimes, of your vehicle in order to protect buildings and assets from damage, vandalism, or another crime.

 

Our lawful basis for processing this data is a legitimate interest to ensure the security of our business premises and help to prevent and detect crime.

 

Our policy is to automatically overwrite CCTV footage within 60 days.

 

To allow members of the public to participate in white paper research projects

 

If you agree to take part in either an Engagement Solutions research project or a research project on behalf of one of our customers, your data may be used to produce an industry white paper, thought leadership report, or set of research findings which may be published either by us or our customer and as such in the public domain.

 

Our legal basis for this processing is our legitimate interest in promoting our business.

 

To comply with auditing requirements

 

In order to maintain our certifications and comply with our legal obligations, Parallel Reality is required to assist and cooperate with external third-party auditors. We may need to share your information as part of these audits.

 

Our legal basis for this processing is our legitimate interest in maintaining our business .certifications and standards.

 

To train and develop our staff

 

We record calls that are made to our customer service centre to assist in our review of call quality standards. We use this information to help train and develop our staff.

 

Call recordings are retained for a period of 90 days before they are automatically deleted.

 

Our lawful basis for processing data for these purposes is our legitimate interest in improving our call quality standards.

 

How we store your information

 

Parallel Reality is dedicated to keeping your data safe. We are certified under ISO27001 as having put technical and organisational policies and procedures in place to protect personal data from loss, misuse, alteration, or destruction. We ensure that access to your personal data is limited only to those who need to access it and those individuals are required to maintain the confidentiality of such information. Where necessary, we apply encryption and anonymisation techniques in efforts to further protect personal data.

 

Sharing Information

 

We will never sell your data to third parties. We may, however, share your data with companies with whom we have a direct business arrangement in order to jointly market Parallel Reality-related products.

We also use third-party data processors who provide marketing, marketing automation, and lead-generation services for us. We have contracts in place with our data processors. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will not share your personal information with any organisation and they will hold it securely and retain it for the period we instruct.

 

The legal basis for sharing these data is our legitimate interest in cost-effectively marketing our business.

 

International Transfers

 

Parallel Reality operates and provides services from its locations across the globe. As such we may transfer personal information to Parallel Reality group locations outside of the UK when we have a business reason to do so. We have Intra-Group Transfer Protocols in place based on Standard Contract Clauses which provide legal safeguards for such transfers, where applicable.

 

Additionally, in order to support the provision of our services, we may transfer personal data to our third-party service providers outside the UK. We only transfer this data where it is necessary to do so and where a legal safeguard is in place.

 

Your Rights

 

Your right of access –You have the right to ask us for copies of your personal information. This right always applies. There are some exemptions, which means you may not always receive all the information we process.

 

Your right to rectification – You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete. This right always applies.

 

Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.

 

Your right to restriction of processing – You have the right to ask us to restrict the processing of your information in certain circumstances.

 

Your right to object to processing – You have the right to object to processing if we are using legitimate interests as our lawful basis for processing.

 

Your right to data portability – This only applies to the information you have given us. You have the right to ask that we transfer the information you gave us from one organisation to another, or give it to you. The right only applies if we are processing information based on your consent or as part of a contract, or in talks about entering into a contract and the processing is automated.

 

Your right to withdraw consent – You can withdraw the consent that you have previously given to one or more specified purposes to process your personal data. This will not affect the lawfulness of any processing carried out before you withdraw your consent. It may mean we are not able to provide certain products or services to you and we will advise you if this is the case.

 

Rights related requests

 

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information or to exercise any of your other rights. This helps us to ensure that personal data is not disclosed to any person who has no right to receive it.

No fee is required to make a request unless your request is clearly unfounded or excessive. Depending on the circumstances, we may be unable to comply with your request based on other lawful grounds.

 

How to complain

 

If you disagree with how we are processing your data, please contact our DPO at info@parallelreality.co.uk
 

You can also complain to the ICO if you are unhappy with how we have used your data.
 

The ICO’s address:
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

 

Helpline number: 0303 123 1113

 

Changes to this Privacy Notice

 

Parallel Reality will occasionally update this privacy notice to reflect changes in legislation, our practices, and services. When we post changes to this privacy notice, we will revise the “last updated” date at the top of this privacy notice. If we make any material changes in the way we collect, use, and share personal data, we will notify you by prominently posting notice of the changes on the website. We recommend that you check this page from time to time to inform yourself of any changes in this privacy notice.

bottom of page