At Vescient, we take the privacy and security of your personal information seriously. This Privacy Statement outlines how we collect, use, disclose, and protect your personal information in compliance with applicable legislation.

Applicability
This Privacy Statement does not apply to any website, application, product, or service that links to its own privacy statement or that is offered by third parties, in which clicking on third party links or enabling those connections may allow the third party to collect, use, or share data about you. We encourage you to read their respective privacy statements.

Principles of Data Protection
Vescient adheres to the following principles of data protection:

Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner.

Purpose Limitation: We collect and process personal data only for specified, explicit, and legitimate purposes.

Data Minimization: We ensure that personal data collected is adequate, relevant, and limited to what is necessary for the intended purposes.

Accuracy: We take reasonable steps to ensure that personal data is accurate, up-to-date, and rectified without undue delay if inaccuracies are identified.

Storage Limitation: We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by applicable laws.

Integrity and Confidentiality: We implement appropriate security measures to protect personal data from unauthorized access, loss, destruction, or alteration.

Collection of Personal Information
We collect personal information from you when you interact with our website, products, services, communicate with us or engage in some form of contractual arrangement. This may include but is not limited to your name, contact details, email address, postal address, and other relevant information required to provide our services or operate our business.

Use of Personal Information
We may use your personal information for the following purposes:

To provide the products and services you request from us.

To communicate with you regarding our products, services, or any updates.

To personalize and enhance your experience with our website and services.

To process transactions and payments.

To comply with legal and regulatory obligations.

For the legitimate purposes necessary to administer and run our business(es).

To improve our products, services, and overall customer experience.

Disclosure of Personal Information
We may share your personal information with:

Your organizations and contacts.

Affiliates within the Vescient group of companies.

Third party business partners that support our business, such as our content and other partners, vendors and subcontractors, analytics providers, advertising and marketing agencies, credit agencies, and other third parties we engage.

Third parties to market their products or services to you.

Third party customers and users where the Services and content includes your personal information, such as when we aggregate information from various public and private sources to create listings, reports, profiles, and directories (like attorney and legal professional directories), in which this content may be made available to all users of those Services. Under some local privacy laws, this may constitute a “sale” of personal information.

With governmental agencies and third parties involved in our sale or purchase of a business or assets, including in connection with a merger, divestiture, restructuring, reorganization, bankruptcy, liquidation, dissolution, or other disposition of assets.

With law enforcement, government agencies, or other third parties in order to comply with any law, court order, legal request, or other legal process, as well as to enforce our agreements or protect the rights, property, or safety of our business, employees, customers, or others (including for the purposes of cybersecurity, fraud protection, and credit risk reduction).

With others when necessary to fulfill your consents or to follow your instructions.

International Transfers of Personal Information
If we transfer your personal information to a location outside of the location of origin, we will ensure that we comply with and apply appropriate safeguards to protect your data as required by applicable laws.

Data Retention
We will retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Statement, unless a longer retention period is required or permitted by law.

Compliance with General Data Protection Regulations
Vescient is committed to protecting the privacy and personal data of its customers, employees, and other individuals with whom we interact. Where data is collected within Europe or the United Kingdom, the appropriate General Data Protection Regulation (GDPR) will be applied.

Principles of Data Protection
Vescient adheres to the following principles of data protection:

Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner.

Purpose Limitation: We collect and process personal data only for specified, explicit, and legitimate purposes.

Data Minimization: We ensure that personal data collected is adequate, relevant, and limited to what is necessary for the intended purposes.

Accuracy: We take reasonable steps to ensure that personal data is accurate, up-to-date, and rectified without undue delay if inaccuracies are identified.

Storage Limitation: We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by applicable laws.

Integrity and Confidentiality: We implement appropriate security measures to protect personal data from unauthorized access, loss, destruction, or alteration.

Lawful Basis for Processing
Vescient will process personal data only when one or more lawful bases for processing under the GDPR are applicable. These lawful bases include.

Consent: We obtain explicit and informed consent from individuals before processing their personal data for specific purposes.

Contractual Obligations: Personal data may be processed when necessary for the performance of a contract with the individual.

Legal Compliance: We may process personal data to comply with legal obligations.

Legitimate Interests: When processing personal data, we will consider our legitimate interests, ensuring they do not override the rights and freedoms of the data subjects.

Data Transfer
If personal data is transferred to countries outside the European Economic Area (EEA), Vescient will ensure appropriate safeguards are in place to protect the data as required by the GDPR.

Data Protection Officer (DPO)
Vescient has appointed a Data Protection Officer (DPO) responsible for overseeing data protection compliance. The DPO can be contacted at:

Data Protection Officer

DPO@vescient.com

Your Rights
We respect the rights of individuals. These rights include;

Right of Access: Individuals have the right to request access to their personal data held by Vescient.
Right to Rectification: Individuals can request the correction of inaccurate or incomplete personal data.
Right to Erasure: Individuals have the right to request the deletion of their personal data under certain circumstances.
Right to Restriction of Processing: Individuals can request the restriction of processing their personal data in certain situations.
Right to Data Portability: Individuals can receive their personal data in a structured, commonly used, and machine-readable format.
Right to Object: Individuals have the right to object to the processing of their personal data in certain circumstances.

IMPORTANT: These rights are not absolutely guaranteed and there are several exceptions where we may not have an obligation to fulfill your request. We are only required to honour these rights to the extent we act as a controller of that data and the requested rights have been granted and apply to you under applicable data protection laws. Please consult your local data protection laws to determine what rights may be available to you and when access to these rights is limited. You may appeal an adverse decision on your requests by emailing or writing to us; and you have the right to lodge a complaint to your local regulator if you are not satisfied with our responses to your requests or how we manage your personal information. However, we encourage you to first contact us so we can address your concerns directly.


Security
We employ reasonable and appropriate security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. We work to implement technical and organizational measures designed to protect the security of personal information. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee its absolute security. The security of your information also depends on you: you are responsible for using unique, strong usernames and passwords for each of your accounts, and for keeping those usernames and passwords confidential. We are not responsible for the circumvention of any privacy settings or cybersecurity measures contained on our Services, and any transmission of personal information is at your own risk.


Data Breach Notification
In the event of a data breach that poses a risk to individuals’ rights, freedoms, or the potential to cause harm, Vescient will notify the appropriate supervisory authority and affected individuals without undue delay.


Cookies and Similar Technologies
Our website may use cookies and similar technologies to enhance your browsing experience. You can manage your cookie preferences through your browser settings.


Marketing Communications
We may send you marketing communications based on your consent or where otherwise permitted by law. You can opt-out of receiving such communications at any time.


Changes to this Privacy Statement
We may update this Privacy Statement from time to time to reflect changes in our practices or for legal and regulatory reasons. The updated version will be posted on our website, and the revised date will be indicated at the top of the statement.


Contact Information
If you have any questions, concerns, or requests related to this Privacy Statement or your personal information, please contact us at:
Data Protection Officer
DPO@vescient.com
Effective Date: 1 July 2023