Personnel, job applicants and potential candidates for employment: when you apply to join the Branchspace team or contract with us directly;

Customers and customers’ personnel: when you subscribe to a service we provide;

Marketing prospects: when we collect information from you with your consent from live lectures (webinars or seminars) which you attend when one of our personnel is speaking or industry conferences which you attend, when you provide us with your business contact information (such as by handing over a business card). From time to time, we may also collect information that pertains to you through other sources, such as social media sites like linkedin.com and twitter.com

Website visitors and other external contacts: when you use this site, register as a user or when we collect information from you with your consent when you are corresponding with us by phone, e-mail or otherwise.

Branchspace might need to keep and process information about you for normal recruitment, employment and other contractual or business-related purposes. The information we hold and process will be used for legal, administrative, management and operational purposes only, to run the business and manage our relationship with you effectively, lawfully and appropriately.

Personnel, job applicants and potential candidates for employment: We will use it during the recruitment process, whilst you are working for/with us, at the time when your contract ends and after you have left.

Customers and customers’ personnel: We will use it to fulfil our contractual obligations with you or your employer and for our legitimate business interests. More specifically: to perform internal business processes (such as billing and accounting functions), to provide you or your organization with the information, products and services that you request from us, to send notices, such as communications about products and services and changes to our terms, conditions and policies.

Marketing prospects: We will use it to to provide you or your organization with relevant information about our products and services. You may at any time choose not to receive marketing materials from us by following the unsubscribe instructions included in each e-mail you may receive, by indicating so when we call you, or by contacting us directly.

Website visitors and other external contacts: We will use it to respond to your enquiries or follow up our own enquiries.

Branchspace processes your Personal Data for the purposes described above:

(I) Personnel, job applicants and potential candidates for employment: when necessary to enter into an employment contract with you or when necessary for the performance of your employment contract. Customers and customers’ personnel: when contracting with you or your employer

(II) All: when necessary for us to comply with a legal obligation;

(III) All: when necessary for the purposes of our legitimate interests e.g. for administrative and marketing purposes, to protect the security and integrity of the website and our services; to prevent and detect fraud or other prohibited or illegal activity; to establish or exercise legal rights; in response to a court order, request for cooperation from a law enforcement or other government agency; for responsible corporate governance or as otherwise required or permitted by applicable laws and/or regulations; to protect and defend the rights, property or safety of Branchspace and/or other companies in the Branchspace group, its/their investors and other clients, staff, and/or service providers.

Or (IV) when we need to protect our legal position in the event of legal proceedings.

If and in so far as (i) to (iv) do not provide a lawful basis for processing and controlling your Personal Data, we shall obtain your consent to do so. If you do not provide this data, we © Branchspace Limited 2018 may be unable in some circumstances to comply with our obligations and we will tell you about the implications of that decision; If in the future we intend to process your Personal Data for a purpose other than that which it was collected and it is not for other lawful reasons such as to fulfil a contract or for legitimate reasons pursuant to G

If you are a job applicant, we may desire to retain your Personal Data to consider you for future employment opportunities. In such an event, we will seek your consent, either prior to or after you formally apply for a job opportunity. Much of the information we hold will have been provided by you, but some may come from other sources, such as managers and colleagues, or in some cases, external sources, such as referees.

Website users. We may use your Personal Data to: Personalize your experience; Improve our website and make the website easier for you to use; to respond to your enquiries or comments submitted through our website; match Personal Data with third party data. Also, we may keep track of what portions of the website and app users are visiting and other user statistics, and aggregate this information to help us create a better experience for users of our website. This is all done in order to describe our products and services to prospective partners, advertisers, and other third parties, and for other lawful purposes; create statistical reporting regarding our web activities. Our Cookie Policy applies.

Personnel and prospective personnel: interview notes, CV and references (personnel); correspondence with or about you; contact details (home and business;). Categories of Personal Data specific to employees and contractors of Branchspace are listed in our Personnel Policy.

Personnel Only: Where we process special categories of information relating to your racial or ethnic origin, political opinions, religious and philosophical beliefs, trade union membership, biometric data or sexual orientation, we will always obtain your explicit consent to those activities unless this is not required by law or the information is required to protect your health in an emergency. Where we are processing data based on your consent, you have the right to withdraw that consent at any time. You will receive GDPR training and this Privacy Policy is an important part of that training.

Customers, customers’ personnel and Marketing prospects: Branchspace may collect personal information such as your name, e-mail address and telephone number;

Website visitors and other external contacts: we will keep a record of our correspondence with you and your contact details.

We will not share your personal information with anyone, except where we are required to do so to comply with the law, to protect our rights, to improve and expand our products and services or to efficiently operate our business.

We may transfer information about you to other group companies for purposes connected with the administration and management of Branchspace’s business. We will always ensure that these organisations are obligated by written agreement to equivalent obligations in relation to the security of data processing as are imposed on Branchspace under the General Data Protection Regulation (GDPR).

In some circumstances, where needed for the purpose of administering and managing your relationship with Branchspace, your information may be transferred to our third-party providers located throughout the globe, including outside of the European Union (“EU”) and in countries where the local law may grant you fewer rights than you have in your own country. Where required by law, we have taken appropriate technical and organisational measures to secure the integrity and confidentiality of your personal information. If you would like more information about these measures, which may include the EU’s Standard Contractual Clauses, please contact us at the address below. By providing us with your Personal Data in such circumstances you agree to such transfers of your Personal Data. We will take all steps reasonably necessary to ensure that your information is treated securely and in accordance with this Privacy Policy. Branchspace endeavours to apply suitable safeguards to protect the privacy and security of your Personal Data and to use it only consistent with your relationship with Branchspace and the practices described in this Privacy Policy. Branchspace also minimizes the risk to your rights and freedoms by not collecting or storing sensitive information about you (unless you are prospective or current personnel).

Our client or their partners using their systems. As your product or service provider, they will have provided Personal Data to us to enable us to fulfil our contract with them.

Branchspace using our systems, which process data on the behalf of our clients in order for us to deliver our contracted services to them.

During the course of our business, Branchspace collects, receives, processes, stores and transmits information provided by end users to our clients and their partners. We will use it to fulfil our contractual obligations with your product or service provider (i.e. our client, the Data Controller) and for our legitimate business interests. More specifically: to process travel bookings (e.g. to make and change travel reservations and issue travel related documents); to provide travel operators, travel agencies, travel management companies and their suppliers with access to traveller information so that they can process travel bookings; to support payment, billing and accounting functions related to travel bookings; to perform related internal business processes (such as testing, quality assurance, operational support including client help desk services, and product development and enhancement); to conduct scientific, statistical, and research activities regarding travel and traveller behaviour and related system behaviour.

Branchspace processes your Personal Data for the purposes described above: (i) when contracting with your product or service provider; (ii) when necessary for us to comply with a legal obligation; (iii) when necessary for the purposes of our legitimate interests e.g. Protect the security and integrity of the website and our services; Prevent and detect fraud or other prohibited or illegal activity; In response to a court order, request for cooperation from a law enforcement or other government agency ; or (iv) when we need to protect our legal position in the event of legal proceedings.

If and in so far as (i) to (iv) do not provide a lawful basis for processing and controlling your Personal Data, we shall obtain your consent to do so. If you do not provide this data, we may be unable in some circumstances to comply with our obligations and we will tell you about the implications of that decision;

We may sometimes need to process your data to pursue our legitimate business interests, for example for administrative purposes, to prevent fraud, or to report potential crimes.; To establish or exercise legal rights; To bring or defend legal claims; For responsible corporate governance or as otherwise required or permitted by applicable laws and/or regulations; In circumstances in which we believe disclosure is appropriate in connection with fraud prevention and prevention of other illegal, or unlawful activity or any other activity which is or may be contrary to our legal and regulatory compliance obligations; To protect and defend the rights, property or safety of Branchspace and/or other companies in the Branchspace group, its/their investors and other clients, staff, and/or service providers.

Private contact and identification data for example, name, surname, gender, address, e-mail address, telephone number, date and place of birth, identification numbers, nationality

User/device data for example IP Address, Geolocation, device characteristics e.g. web browse

Contract data / transaction data for example, purchased products, services (financial), date of purchase contract, purchase price, extract, guarantees, name, surname the person signing the contract, travel documents and associated reference numbers, payment ID

Website visitors and other external contacts: we will keep a record of our correspondence with you and your contact details.

We will not share your personal information with anyone, except where we are required to do so to comply with the law, to protect our rights, to improve and expand our products and services or to efficiently operate our business.

We may transfer information about you to other group companies for purposes connected with the administration and management of Branchspace’s business. We will always ensure that these organisations are obligated by written agreement to equivalent obligations in relation to the security of data processing as are imposed on Branchspace under the General Data Protection Regulation (GDPR).

In some circumstances, where needed for the purpose of administering and managing your relationship with Branchspace, your information may be transferred to our third-party providers located throughout the globe, including outside of the European Union (“EU”) and in countries where the local law may grant you fewer rights than you have in your own country. Where required by law, we have taken appropriate technical and organisational measures to secure the integrity and confidentiality of your personal information. If you would like more information about these measures, which may include the EU’s Standard Contractual Clauses, please contact us at the address below. By providing us with your Personal Data in such circumstances you agree to such transfers of your Personal Data. We will take all steps © Branchspace Limited 2018 reasonably necessary to ensure that your information is treated securely and in accordance with this Privacy Policy. However, where we are processing Personal Data on behalf of client or its customer, in such circumstances the client with whom you contracted (who has passed to us your Personal Data to fulfill a contractual obligation) is the Data Controller to whom any concerns that you may have in respect of your Personal Data should be addressed in the first instance, as we act upon the written instructions of such third party Data Controller. Where Branchspace clients or their customers are based in the United States and you have contracted with or are employed by that client/customer, information we collect from you may be processed in the United States. The United States has not sought nor received a finding of “adequacy” from the European Union under Article 45 of the GDPR. Branchspace relies on derogations for specific situations as set forth in Article 49 of the GDPR and the client’s Privacy Shield. In particular, Branchspace collects and transfers to the U.S. Personal Data only: with your consent; to perform a contract with you or your product or service provider; or to fulfil a compelling legitimate interest of Branchspace in a manner that does not outweigh your rights and freedoms. Branchspace endeavours to apply suitable safeguards to protect the privacy and security of your Personal Data and to use it only consistent with your relationship with Branchspace and the practices described in this Privacy Policy. Branchspace also minimises the risk to your rights and freedoms by not collecting or storing sensitive information about you (unless you are prospective or current personnel).