Radio Joint Audience Research Ltd ("RAJAR") is committed to protecting your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR"). RAJAR respects your right to privacy. This Privacy Notice describes who we are, how we may collect, share and use your personal data, and how you can exercise your rights.
This Privacy Notice covers the use of our main website, as well as how we handle your information when contacting us (for example via email, telephone or social media), when you subscribe to our services or when we need to process your personal data for RAJAR's own business-related matters.
It is likely that we will need to modify or update this Privacy Notice from time to time. Any changes will be published on our website, which you can access at any time and, where appropriate, updates will be notified to you by e-mail.
Our website may, from time to time, contain links to and from the websites of our Joint Industry Stakeholders and other related partners. If you follow a link to any of these websites, please note that these websites have their own privacy notices and that we do not accept any responsibility or liability for these notices. Please check these notices before you submit any personal data to these websites.
Who we are
RAJAR is registered in England and Wales as Radio Joint Audience Research Limited. Company Registration Number: 02693823. Registered office: 6th Floor, 55 New Oxford Street, London, WC1A 1BS.
We have a Data Privacy Manager who can be contacted at the address above or by sending an email to: firstname.lastname@example.org.
For simplicity throughout this Privacy Notice we will refer to Radio Joint Audience Research Ltd as 'RAJAR', 'we' or 'us'.
This Privacy Notice (together with our terms and conditions and any other documents referred to on it) explains in detail the types of personal data we may collect from you, or that you provide to us, and how it will be processed, handled and kept secure by us.
Personal data we may collect from you and why we collect it
Information that you provide voluntarily
If you subscribe to our services (either via a station, bureau or non-broadcaster subscription) we may collect your name, job title, email address, telephone number, company name, company address and bank account details. We may also conduct credit searches on potential new subscribers. The personal data that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point we ask you to provide your personal data.
Information that we collect automatically
We may collect name and contact details (such as email, telephone number, company name) when you submit an online form via our ‘Contact Us’ section or when you call us. We may also keep a record of that correspondence.
When visiting our website, we may automatically collect information about your visit to our website, including the pages you view, the links that you click on and other actions taken within our website. We also collect certain standard information that your browser sends to every website you visit, such as your IP address, browser type and language, access times and referring website addresses, your computer, unique device identification numbers, including where available your IP address, operating system and browser type, broad geographical location (e.g. country or city level location) and other technical information for system administration. This is statistical data about our users' browsing actions and patterns. We gather this data using tools such as cookies, to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site.
We may use both "session" cookies and "persistent" cookies on the website. We will use the session cookies to keep track of you whilst you navigate the website. We will use the persistent cookies to enable our website to recognise you when you visit. Session cookies will be deleted from your computer when you close your browser. Persistent cookies will remain stored on your computer until deleted, or until they reach a specified expiry date.
The following table describe the cookies we use on this site and what we use them for. Currently we operate an 'implied consent' policy, which means that we assume you are happy with this usage. If you are not, within your browser you can elect to receive notification when a cookie is sent or decline all cookies. Declining cookies may prevent you from taking full advantage of the website.
Cookie name Type of cookie Purpose of cookie How to opt out __utma, __utmb, __utmb,__utmv and __utmz These are third party cookies (i.e. ones that are set by a third party) all set by Google Inc. Our site uses Google Analytics, a web analytics service provided by Google Inc. Google Analytics sets a cookie in order to evaluate use of those services and compile a report for us. Google provides a tool for opting out of this cookie here.* RAJAR_Session This is a first party cookie set by RAJAR. This is set for all users of the website to distinguish you from other users, retain settings in data reports and helps to log users in securely. You may delete this cookie at browser level yourself. aboutcookies.org is an external website that explains how users can delete cookies.* RAJAR_COMPANY_ID This is a first party cookie set by RAJAR. This is set only for users of the subscriber only sections of the website to distinguish you from other users and log you in securely. You may delete this cookie at browser level yourself. aboutcookies.org is an external website that explains how users can delete cookies.* RAJAR_UID This is a first party cookie set by RAJAR. This is set only for users of the subscriber only sections of the website to distinguish you from other users and log you in securely. You may delete this cookie at browser level yourself. aboutcookies.org is an external website that explains how users can delete cookies.* hide_cookie_warning This is a first party cookie set by RAJAR. This is only set for users who acknowledge the cookie message and ensures the cookie warning is not shown again after a user acknowledges it You may delete this cookie at browser level yourself. The site will still function as required but the cookie warning will be repeated with each visit. aboutcookies.org is an external website that explains how users can delete cookies.*
* Opens in a new window; please note we cannot be responsible for the content of external websites.
Cookies: A cookie consists of information sent by a web server to a web browser and stored by the browser. The information is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser. If you do not know what cookies are, or how to control or delete them, then we recommend you visit http://www.aboutcookies.org for detailed guidance.
Information that we obtain from third party sources
The types of personal data we collect from third parties include your name, contact details, business information and information about you that may be publicly available. We use the information we receive from these third parties to maintain and improve the accuracy of the records we hold about you or to carry out business functions that are within RAJAR's legitimate interest.
In general, we will use the personal data we collect from you only for the purposes described in this Privacy Notice. However, we may also use your personal data for other purposes that are not incompatible with the purposes specifically referenced within this Privacy Notice (such as archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes) if and where this is permitted by applicable data protection laws.
Your personal data is also indirectly collected by us from our subscribers.
When we may collect your personal data
We may collect your data:
- When you subscribe to our services
- When you ask us to send you details on our services and subscriptions
- When you visit our website
- When you contact us (via any means e.g. email, phone, website, social media) with queries, complaints etc.
- When you create an online account with us
- When you download or install one of our apps
- When it is provided by a third party
How and why we use your personal data
We do not use your personal data for marketing purposes. We will only contact you in order for us to comply with our contractual obligations or where we have a ‘legitimate interest’ in a way which is reasonably expected as part of our business relationship with you or for the purpose for which your personal data is processed. This forms the legal basis of our collection of personal data.
You have the right to choose not to share your personal data with us but this may mean that we are unable to provide services to you. Please see the section on “Your Rights” for further information.
We process your personal data for our legitimate interests including:
- to enforce compliance with our contractual obligations and applicable law
- to protect the rights and safety of our subscribers and third parties
- to meet legal requirements
- for the prevention and investigation of crime
- to investigate misuse of RAJAR's name or service or Intellectual Property
- to provide information to representatives and advisors to help us comply with legal, accounting or security requirements
- to prosecute and defend legal proceedings
- to respond to lawful requests by public authorities
- to provide, support and improve our Services
- for our data analytics projects
Who we share your information with
We do not sell your information to anyone. We may share your details to our trusted service providers / suppliers / third parties who work with us in order for us to provide a service to you or to deal with a query or complaint. We only provide the information they need to perform their specific service and they may only use your data for the exact purposes we specify in our contract with them. If we stop using their services, any personal data stored by them will be deleted. The types of services provider / suppliers / third parties we work with include, but are not limited to, IT companies who support our website and other business systems, operational companies (e.g. couriers), our research contractors.
We may also share your details with the police, regulatory or Government bodies, courts and law enforcement agencies where we are under a duty to disclose or share your personal data in order to comply with any legal obligation; or in order to enforce or apply our terms and conditions in our contract with you.
We may disclose your personal data to third parties in the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets. If RAJAR or substantially all of its assets are acquired by a third party, the personal data held by us about our customers will be one of the transferred assets.
We may disclose your personal data to any other person with your consent to the disclosure.
Legal basis for processing personal data
Our legal basis for collecting and using the personal data described above will depend on the personal data concerned and the specific context in which we collect it.
However, we will normally collect personal data from you only (i) where we need the personal data to perform a contract with you, (ii) where the processing is in our legitimate interests and not overridden by your rights, or (iii) where we have your consent to do so. In some cases, we may also have a legal obligation to collect personal data from you or may otherwise need the personal data to protect your vital interests or those of another person.
If we ask you to provide personal data to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal data is mandatory or not (as well as of the possible consequences if you do not provide your personal data).
If we collect and use your personal data in reliance on our legitimate interests (or those of any third party), this interest will normally be to operate our platform and communicating with you as necessary to provide our services to you. We also may rely on our legitimate interest to process your personal data for our legitimate commercial interest, for instance, when responding to your queries, improving our platform, undertaking marketing, or for the purposes of detecting or preventing illegal activities, investigating the misuse of RAJAR's name or Intellectual Property and defending or prosecuting legal claims. We may have other legitimate interests and if appropriate we will make clear to you at the relevant time what those legitimate interests are.
If you have questions about or need further information concerning the legal basis on which we collect and use your personal data, please contact us using the contact details provided under the “Contact Us” heading below.
How long we keep your personal information for
How long we keep your information for depends on why we have it and what we are using it for. We only keep your personal data for as long as necessary for the purpose for which it was collected. We keep records of any dealings we have with you for up to six years after the termination of your contract with us.
Your personal data will be retained for as long as we have a legitimate business or legal need to do so.
Our retention periods vary depending on the type of data involved, but, generally, we will refer to certain criteria in order to determine retention period:
- Whether we have a legal or contractual need to retain the data;
- Whether the data is necessary to provide our services;
- Whether our subscribers have the ability to access and delete the data within their RAJAR accounts.
- Whether our subscribers would reasonably expect that we would retain the data until they remove it or until their RAJAR accounts are closed.
Where we store your personal data
We store your data within the European Economic Area ("EEA"). We may transfer personal data which we collect to suppliers / third parties outside the EEA. It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers / third parties. Such staff may be engaged in, among other things, the provision of support services. Before any transfer takes place we will ensure that your personal data will be protected and that safeguards are in place to protect your personal data as if it were being processed within the EEA. Any transfer of your personal data will follow the applicable laws.
All information you provide to us is stored on our secure servers. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
The GDPR gives you the right to access information held about you. Your right of access can be exercised in accordance with the GDPR.
You have the right to:
Request access (‘Data Subject Access Request’): You can request access to your personal data. This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it. This will be free of charge in most cases.
Request correction (‘Right to Rectification’): This enables you to have any incomplete or inaccurate information we hold about you corrected. It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your working relationship with us.
Request erasure (‘Right to be Forgotten’): This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object to processing (see below).
‘Right to Portability’: If we have collected your data because you have given us consent, or because we need it in order to provide you with a product or service (under a contract), you have the right to receive the information you gave to us back in a 'machine-readable' format.
Object to or restrict processing ('Right to Object' and 'Right to Restriction of Processing'): If we are using your personal data under the ‘legitimate interest’ justification and in other circumstances then you have the right to restrict processing (for example if you want us to establish its accuracy or the reason for processing it) and also the right to object to that processing.
Request the transfer: You can request the transfer of your personal data to another party.
If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact the Data Privacy Manager in writing. We will ask you to verify your identity before proceeding with any request you make in order to protect the confidentiality of personal data.
Keeping your personal data secure
We take the security of your personal data seriously. We take all reasonable and proportionate steps to protect your personal data. We have technology and security polices, rules and measures in place to protect the personal data we hold about you in order to prevent improper access, use, alteration, destruction and loss.
When we have no ongoing legitimate business need to process your personal data, we will either delete or anonymise it or, if this is not possible (for example, because your personal data has been stored in backup archives), then we will securely store your personal data and isolate it from any further processing until deletion is possible
Changes to our Privacy Notice
It is likely that we will need to modify or update this Privacy Notice from time to time. Any changes will be published on our website, which you can access at any time and, where appropriate, notified to you by e-mail.
For further information about our privacy practices and to request any of these rights, please contact the Data Privacy Manager:
Write to: Data Privacy Manager, RAJAR, 6th Floor, 55 New Oxford Street, London, WC1A 1BS
Call: +44 (0)20 7395 0630
Contacting the Regulator
If you feel that your data has not been handled correctly or you are unhappy with our response to any request you have made to us regarding the use of your personal data, you have the right to lodge a complaint to the Information Commissioner’s Office as follows:
Call: 0303 123 1113
Website: www.ico.org.uk/concerns (opens in a new window; please note we cannot be responsible for the content of external websites)