Privacy Notice

LAST UPDATED: June 27, 2018

OVERVIEW

Risk Intelligence ("Risk Intelligence", "we" or "us") respect your privacy. This Privacy Notice ("Notice") explains who we are, how we collect, use and share information that identifies you (directly or indirectly) (“Personal Information”), and how you can exercise your privacy rights.

This Notice covers the Personal Information we collect: about Users of the Risk Intelligence System and about our Subscribers (generally recipients of emails, through our websites and in connection with our events, sales and marketing activities).

We recommend that you read this entire Notice to ensure you are fully informed.

However, to make it easier for you to review those parts of this Notice which apply to you, we have divided the document into the following sections:

  1. The Basics
  2. Risk Intelligence Users
  3. Risk Intelligence Subscribers
  4. Risk Intelligence Website Visitors
  5. General Information

1. THE BASICS

1.1. About Us

Risk Intelligence provides independent, unbiased, intelligence-led advisory services to private and governmental clients on security threats and risks. 

Risk Intelligence has been specialising in analysing threats from and interaction between piracy, organised crime, terrorism, insurgency and military conflicts since 2001. We advise on preventing maritime security incidents at both vessel and company level as well as providing maritime security analysis to private and governmental organisations. 

You can find out more about us and our products here.

1.2. Key Terms

In this Notice, the terms below have the meanings defined below:

1.2.1. Customer means the entity we have contracted with to provide the Services, which if you are a User, generally refers to the entity of which you are an employee, contractor, member or other participant.

1.2.2. Subscribers means any individual whose information is stored or collected by us and to whom we send emails to or otherwise engage or communicate with.

1.2.3. Services means the Risk Intelligence System or parts of the System like MaRisk and PortRisk, as well as other products and services offered by Risk Intelligence.

1.2.4. User means any customer individual who has registered to use and access the Services under 1.2.3.

1.2.5. Website means any website we own and operate (such as riskintelligence.eu and any sub-domains).

 

2. Risk Intelligence Users

This section applies to Personal Information we collect and process when you engage with us as a User of the Service. If you are not yet a User, section 3 (applicable to subscribers of our marketing newsletter) or section 4 (applicable to visitors to our websites) may be more applicable to you and your data.  In this section, "you" or "your' refer to Users.

2.1. Information We Process

2.1.1. Information you provide to us: You may provide Personal Information to us through the Services – for example, when you sign up for a Risk Intelligence subscription account to access the System, consult with our support teams, send us an email or communicate with us in any other way. We will usually let you know prior to collection whether the provision of Personal Information we are collecting is compulsory or may be provided on a voluntary basis and the consequences, if any, of not providing the information. The information you provide to us, may include:

2.1.1.1. Registration information: You need a Risk Intelligence account to use the Services as a User. When you register for an account, we ask you to provide contact information such your name, email address, telephone number, job title, and organization name.

2.1.1.2. Billing information: If you purchase our Services, you may also need to provide us with payment and billing information. We will also maintain a record of your purchases, transactional information, your Services history and usage, and any communications and responses.

2.1.2. Information collected automatically: When you use the Services, we automatically collect certain information about your device and use of the Services. We may use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed more in our Cookie Notice.

2.1.3. Information we obtain from third party sources: We may receive information about you from other sources, including publicly available databases or third parties from whom we have purchased data, and combine this data with information we already have about you. This helps us to update, expand and analyse our records and provide Services that may be of interest to you. This Personal Information may include (for example), information such as your name, employer, job title, email address, phone numbers, and other company, contact, and/or employment information.

2.2. Why We Process Your Information

We process your Personal Information for our legitimate interests, which include:

2.2.1. To provide the Services: We process your Personal Information to provide the following Services:  a) to identify who you are, including both for identification and authentication purposes; b) to enable you to login and access your account; c) to respond to your inquiries; d) to provide you with customer support; e) to send you information as part of the Services; and f) to provide you with information about your account, including renewals and changes in Services or your account status and additional services.

2.2.2. To customize our Services: To help us deliver a better and more personalized experience (for example, it enables us to tailor our Services according to your interests); and to build a profile about you so as to help direct you to other relevant features and Services we offer and help you in using our Services, by making recommendations for you to optimize use of our Services.

2.2.3. To improve our Services: To create new Services, features, content or make recommendations; improve our Services for you and all Users; and to fix bugs and troubleshoot product functionality.

2.2.4. For Business Analytics: To infer your geographic location based on your IP address; to track behaviour at the aggregate/anonymous level to identify and understand trends in the various interactions with our Services; and to conduct internal business analysis based on meta-data about usage, feature adoption and forecasting.

2.2.5. To prevent abuse/illegal activities: To screen for and prevent undesirable or abusive activity.

2.2.6. For legal records: To identify who you are, including both identification and authentication purposes; to carry out our obligations and enforce our rights arising from any contracts entered into between you and us (including for billing and collection); and to respond to legal requests or prevent fraud. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond.

2.3. How We Share Your Information

In the following limited situations, we may disclose information that we collect or that you provide to us:

2.3.1. to our contractors, service providers and other third parties who provide data processing services to us and with whom the sharing of your Personal Information is necessary to undertake the work e.g. to process billing, to analyse data, host data, to provide customer support and to deliver online and offline marketing communications about us and/or our affiliates that we think will interest you.

2.3.2. as required by law, such as to comply with any court order, subpoena or other law or legal process, when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a governmental or regulatory request.

2.3.3. to enforce our rights arising from any contracts entered into between you and us and for billing and collection.

2.3.4. to affiliates of our corporate group for customer support, technical operations, and account management purposes.

2.3.5. to a buyer or other successor in the event of a merger, sale or transfer of some or all of Risk Intelligence's assets.

2.4. Cookies and Tracking Technologies

We use various tracking technologies (such as cookies) to collect and store information when you use the Services.  For example, cookies allow us to collect information such as your IP address, browser, email client type and other similar details. We use this information to measure the performance of our application and to provide analytics information and enhance the effectiveness of our Services. We use page tags in the emails we send to our Users. For more information, read about our cookies in more detail in our Cookie Notice.

2.5. Children

Our Services are not intended for and may not be used by minors. "Minors" are individuals under the age of 16 (of under a higher age if permitted by the laws of their residence).  We do not knowingly collect Personal Information from Minors or allow them to register. If it comes to our attention that we have collected personal data from a Minor, we may delete this information without notice. If you have reason to believe that this has occurred, please contact customer support.

2.6. Legal Basis for Processing Personal Information (EEA Residents Only)

2.6.1. If you are a User resident in the EEA, then our legal basis for collecting and using Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it.  However, where we are processing your Personal Information for our own purposes we normally rely on our legitimate interest to collect Personal Information from you, except where such interests are overridden by your data protection interests or fundamental rights and freedoms. Where we rely on our legitimate interests to process your Personal Information, they include the interests described in the sections above headed "Why We Process Your Information".

2.6.2. In some cases, we may rely on your consent or have a legal obligation to collect Personal Information from you or may otherwise need the Personal Information to protect your vital interests or those of another person. If we rely on consent to collect and/or process your Personal Information, we will obtain such consent in compliance with applicable laws.

2.6.3. If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us using the contact details provided under the “Contact Us” heading below.

2.7. Data Retention

2.7.1. We retain Personal Information we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with a Service you have requested or to comply with applicable legal, tax or accounting requirements).

2.7.2. When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymise Personal Information. If this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.

2.7.3. We will retain information we process on behalf of our customers as a data processor for as long as needed to provide Services to our customers (unless deletion is requested at an earlier time by the customer) and as necessary to comply with our legal obligations, resolve disputes and enforce our agreements.

3. Risk Intelligence Subscribers (Email Recipients)

This section applies to Personal Information we collect and process about our email subscribers as a data controller when providing the Services. In this section "you" or "your" refers to a Subscriber.

3.1. Information We Process

3.1.1. Information collected: When you interact with us via our website (for example ask for more information on a campaign or register for an event), we collect certain information about you that are necessary to reply to your request. We may also use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed in more detail in our Cookies Notice.

If you have opted-in to receive email communication from Risk Intelligence we might include page tags (also known as web beacons) that allow us to collect information about who opened those emails. Additionally, your engagement with any links in emails sent (for example, when you click a link) is reported to us. Our use of cookies and other tracking technologies is discussed in more detail in our Cookie Notice.

3.2. Why We Process Your Information

We process your Personal Information for our legitimate interests, which include:

3.2.1. In connection with support queries: To respond to an enquiry which you may submit to us. For example, our customer support team may use your email address to communicate with you if you have contacted us about an email you received, but we will not send marketing to you unless you have otherwise opted-in to marketing.

3.2.2. To improve our services & ensure functionality

3.2.2.1. To ensure the full functionality of the Service. We collect information using cookies about your interaction with an email sent to you through the Services. These cookies are used to ensure that the full functionality of our Services is operational; to ensure that the Service experience works well across all possible devices; and to fix bugs and troubleshoot product functionality.

3.2.2.2. To track behaviour at the aggregate/anonymous level to identify and understand trends in the various interactions with our Services (for example, by inferring geographic location to produce aggregated data around subscriber location trends as they relate to open rates). This data will be aggregated and anonymized, so we can examine patterns in terms of subscribers’ preferences as they relate to email engagement.

3.2.2.3. Our use of cookies and other tracking technologies is discussed in our Cookie Notice.

3.3. How We Share Your Information

In the following limited situations, we may disclose subscriber information:

3.3.1. to our contractors, service providers and other third parties who provide data processing services to us and with whom the sharing of your Personal Information is necessary to undertake the work e.g. to deliver content and to provide customer support and other business-related functions.

3.3.2. to comply with any court order, law or legal process, including responding to a governmental or regulatory request.

3.3.3. to affiliates of our corporate group for customer support, technical operations, and account management purposes.

3.3.4. to a buyer or other successor in the event of a merger, sale or transfer of some or all of Risk Intelligence’s assets.

3.4. Cookies and Tracking Technologies

We use various tracking technologies (such as cookies) to collect and store information when you use the Services.  For example, cookies allow us to collect information such as your IP address, browser, email client type and other similar details. We use this information to measure the performance of our application and to provide analytics information and enhance the effectiveness of our Services. We use page tags in the emails we send to our Users. Links within these emails are tracked to show individual recipient’s clicks. For more information, read about our cookies in more detail in our Cookie Notice.

3.5. Data Retention

3.5.1. We retain Personal Information we collect from you where we have an ongoing legitimate business need to do so (for example, to prevent abuse or illegal activities, retain our legal records, or to comply with other applicable legal, tax or accounting requirements).

3.5.2. When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymise Personal Information. If this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.

3.5.3. We will retain information we process for as long as needed to provide Services to you (unless deletion is requested at an earlier time) and as necessary to comply with our legal obligations, resolve disputes and enforce our agreements.

3.5.4. At any time, you can get a view of the kind of your Personal Information that is retained by us, and you can unsubscribe to our email and have your record deleted by contacting us.

4. Risk Intelligence Website Visitors

This section applies to Personal Information that we collect and process through our Websites (for example when you visit our website and sign up for our marketing newsletter or apply for a job at Risk Intelligence) and in the usual course of our business, such as in connection with our events, sales and marketing activities.

4.1. Information We Process

4.1.1. Information you provide to us: Certain parts of our websites may ask you to voluntarily provide Personal Information (such as your name, contact details and company name). For example, when expressing an interest in obtaining additional information about Risk Intelligence or our Services, subscribing to the marketing newsletter, applying for a job, or otherwise contacting us. We may also collect Personal Information, such as your contact and professional background details and feedback, when you attend our events, take part in surveys, or through other business or marketing interactions we may have with you. You may choose to provide additional information when you communicate with us or otherwise interact with us, and we will keep copies of any such communications for our records.

4.1.2. Information collected automatically: When you visit our websites, like most website owners, we may also collect certain information automatically from your device, such as your device type, browser type, broad geographic location (e.g. country or city-level location), the referring website, what pages your device visited, and the time that your device visited our website. In some countries, including countries in the European Economic Area, this information may be considered Personal Information under applicable data protection laws. We (including our service providers) may use cookies, pixel tags and other similar tracking technologies to collect this information. Our use of cookies and other tracking technologies is discussed in our Cookie Notice.

4.1.3. Information we obtain from third party sources:  We may receive Personal Information about you from other sources, including publicly available databases or third parties from whom we have purchased data, and combine this data with information we already have about you. This helps us to update, expand and analyse our records, identify new customers, and provide Services that may be of interest to you. This Personal Information may include information such as your name, employer, job title, email address, phone numbers, and other company, contact, and/or employment information.

4.2. Why We Process Your Information

4.2.1. To provide you with information you have requested: To respond to your requests or provide you with information requested by you, including where you request information about our products or services.

4.2.2. To market to you: To contact you with information about products and services that we offer, and to send you information regarding us, our affiliates, and/or our partners (see the section headed "Your Data Protection Rights" for information about how you can opt-out of receiving marketing communications from us at any time).

4.2.3. For Business Analytics: To infer your geographic location based on your IP address; to track behaviour at the aggregate/anonymous level to identify and understand trends in usage and the various interactions with our websites and marketing content; determining the effectiveness of our marketing; and to conduct internal business analysis based on meta-data about usage, feature adoption and forecasting to improve our websites and services.

4.2.4. For website optimization: To administer our website and for internal operations, including troubleshooting, data analysis, testing, research, and statistical purposes; to understand how our website is used and to improve our website to ensure that content is presented in the most effective manner for you and your computer; and as a part of our efforts to keep our website safe and secure.

4.2.5. For legal records: To comply with and enforce applicable legal requirements, agreements and policies.

4.3. How We Share Your Information

In the following limited situations, we may disclose information that we collect or that you provide to us:

4.3.1. to our contractors, service providers and other third parties who provide data processing services to us and with whom the sharing of your Personal Information is necessary to undertake the work e.g. to process billing, analyse data, host data, provide customer support, and to deliver online and offline marketing communications about us and/or our affiliates that we think will interest you.

4.3.2. as required by law, such as to comply with any court order, subpoena or other law or legal process, when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a governmental or regulatory request.

4.3.3. to enforce our rights arising from any contracts entered into between you and us and for billing and collection.

4.3.4. to affiliates of our corporate group for customer support, marketing, technical operations, and account management purposes.

4.3.5. to a buyer or other successor in the event of a merger, sale or transfer of some or all of Risk Intelligence’s assets.

4.4. Cookies and Tracking Technologies

We use cookies and similar tracking technology (collectively "Cookies") on our websites to collect and use Personal Information about you: a) to ensure we are complying with our legal obligations (for example, we use cookies to infer your location and if, for example, you are in the EEA, we can ensure that we are compliant with regulations in the EEA); to serve targeted advertising to you, to analyse trends, administer the website, track users' movements around the website, and to gather demographic information about our user base as a whole. For more information, read about our cookies and other tracking technologies in more detail in our Cookie Notice.

4.5. Legal Basis for Processing Personal Information (EEA Residents Only)

4.5.1. If you are a website visitor or other prospective customer who is a resident in the EEA, then our legal basis for collecting and using Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it.  However, where we are processing your Personal Information for our own purposes we normally rely on our legitimate interests to collect Personal Information from you, except where such interests are overridden by your data protection interests or fundamental rights and freedoms. Where we rely on our legitimate interests to process your Personal Information, they include the interests described in the sections above headed "Why We Process Your Information".

4.5.2. In some cases, we may rely on your consent or have a legal obligation to collect Personal Information from you or may otherwise need the Personal Information to protect your vital interests or those of another person. If we rely on consent to collect and/or process your Personal Information, we will obtain such consent in compliance with applicable laws.

4.5.3. If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us using the contact details provided under the “Contact Us” heading below.

4.6. Data Retention

4.6.1. We retain Personal Information we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with information you have requested or to comply with applicable legal, tax or accounting requirements).

4.6.2. When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymise it or, if this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.

5. General Information

5.1. Your Data Protection Rights (EEA Residents Only)

If you are resident in the EEA, you have the following data protection rights:

5.1.1 You can access, review, change, update or delete your Personal Information at any time by contacting us at info@riskintelligence.eu.

5.1.2. To remove your Personal Information from a website testimonial or request removal of your Personal Information from our blog or community forum, contact us at info@riskintelligence.eu. In some cases, we may not be able to remove your Personal Information, in which case we will let you know if we are unable to do so and why.

5.1.3. In addition, you can object to processing of your Personal Information, ask us to restrict processing of your Personal Information or request portability of your Personal Information. To exercise these rights email info@riskintelligence.eu.

5.1.4. You can opt out of receiving marketing communication we send you at any time. You can exercise this right by clicking on the “unsubscribe” link in the emails we send you or by contacting info@riskintellignce.eu. To opt-out of other forms of marketing (such as postal marketing or telemarketing), please contact us at info@riskintellignce.eu. For data privacy concerns, use the contact details provided under the “Contact Us” heading below.

5.1.5. If we have collected and process your Personal Information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.

5.1.6. You have the right to complain to a data protection authority about our collection and use of your Personal Information.  For more information, please contact your local data protection authority. Contact details for data protection authorities in the European Economic Area ("EEA"), are available here.

Please note that because most of the information we store can only identify a particular browser or device, and cannot identify you individually, you will need to provide us with some additional information to enable us to identify the Personal Information we hold about you and ensure that accurately fulfil your request. You may also be required to provide ID.

5.2. Third-Party Websites and Apps

This Notice only applies to Risk Intelligence websites and Services. We are not responsible for the privacy practices or disclosures of third parties that use or access the Risk Intelligence website or Services. In addition, the website or Service may contain links to third-party websites and apps. Any access to and use of such linked websites or apps is not governed by this Notice, but instead is governed by the privacy policies of those third parties. We are not responsible for the information practices of such third parties.

5.3. How Do We Keep Your Personal Information Secure?

5.3.1. We use appropriate technical and organizational security measures to protect any Personal Information we process against unauthorized access, disclosure, alteration, and destruction.

5.3.2. Unfortunately, nobody is truly and completely safe from hackers. Although we do our best to protect your Personal Information, we cannot guarantee security, no Internet transmission can ever be guaranteed 100% secure, and so we encourage you to take care when disclosing Personal Information online and to use readily available tools, such as Internet firewalls, secure e-mail and similar technologies to protect yourself online.

5.4. International Data Transfers

5.4.1. The website and the Services are provided, supported, and hosted in Denmark. If you are using the website or Services from outside Denmark, be aware that your information may be transferred to, stored, and processed by us in our facilities and by those third parties with whom we may share your Personal Information, in Denmark and other countries. These countries may have data protection laws that are different to the laws of your country.

5.4.2. However, we have taken appropriate measures to require that your Personal Information will remain protected in accordance with this Notice and have implemented appropriate safeguards to require that your Personal Information will remain protected in accordance with this Privacy Notice. These include implementing the European Commission’s Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect personal information they process from the EEA in accordance with European Union data protection law. We have implemented similar safeguards with our third party service providers and partners. Further details can be provided upon request.

5.5. Changes to this Privacy Notice

We may revise this Notice from time to time in response to changing legal, technical or business developments. The most current version of this Notice will govern our use of your Personal Information. When we update our Privacy Notice, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Notice changes if and where this is required by applicable data protection laws. You can see when this Notice was last updated by checking the “last updated” date displayed at the top of this Notice.

5.6. Contact Us

Thanks for taking the time to learn about our Privacy Notice. We hope it was clear and reassuring.

For general Data Privacy questions related to our Services, or any other question in regards to this Privacy Notice, please email info@riskintelligence.eu.