Privacy Policy
Workbly / Failte Ireland Employer Excellence Programme
At R-GON Insights Limited t/a Workbly, we are committed to protecting the privacy and personal data of our customers and stakeholders. We recognize the importance of complying with data protection obligations under European law, including the General Data Protection Regulation (GDPR). To ensure compliance and uphold the rights of individuals, we have implemented the following measures:
By using our services, you consent to the practices outlined in this policy.
1. Data Controller
R-GON Insights Limited (“Workbly”) is the data controller responsible for the processing of your personal data.
2. Personal Data We Collect
We collect and process various categories of personal data for the purpose of conducting anonymous employee engagement surveys. This data may include:
· Contact information (email address)
· Survey responses
· Demographic information (optional)
3. How We Use Your Personal Data
We use your personal data for the following purposes:
· Sending out employee engagement surveys to the provided email address.
· Analyzing survey responses to generate insights and reports for our clients.
· Improving our services and developing new features.
4. Legal Basis for Processing
Our legal basis for processing your personal data is based on your consent, as you provide your email address and voluntarily participate in the surveys. You have the right to withdraw your consent at any time.
5. Data Retention
We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Once the survey responses are aggregated and analyzed, any identifiable personal data is securely anonymized.
6. Data Disclosure
We do not share your identifiable personal data with third parties. Survey responses are analyzed and presented in an aggregated and anonymized format, which ensures the confidentiality of individual responses.
7. International Data Transfers
Your personal data may be transferred and stored on servers located in countries outside the European Economic Area (EEA) if our service providers are based there. In such cases, we ensure that adequate safeguards are in place to protect your personal data in compliance with applicable data protection laws.
8. Prompt Information on Data Breaches:
· We have established robust security measures to prevent unauthorized access and data breaches.
· In the event of a data breach that may result in a high risk to individuals’ rights and freedoms, we have procedures in place to promptly detect, assess, and report such breaches to the relevant supervisory authorities.
· We are committed to transparently communicating any data breaches to affected individuals, providing them with prompt and clear information about the nature of the breach, the potential impact, and the steps they can take to mitigate risks.
9. Capability to Respond to Subject Rights Requests:
· We respect individuals’ rights under data protection laws, including the right to access, rectify, and delete personal data.
· We have implemented internal processes and systems to effectively respond to subject rights requests within the specified timeframes set out in the GDPR.
· Our dedicated team is trained to handle such requests and will promptly address them in accordance with the applicable legal requirements.
10. Identification of Relevant Data:
· We maintain a comprehensive data mapping exercise to identify and document the personal data we process.
· Our data inventory includes detailed information about the types of data, sources, processing activities, data flows, and retention periods.
· This enables us to quickly and accurately identify the relevant data when responding to subject rights requests or addressing data protection inquiries.
11. Capability to Amend and Delete Data:
· We have implemented appropriate technical and organizational measures to ensure the accuracy and integrity of personal data.
· Upon receiving a request to rectify or amend personal data, we will promptly review the information and make necessary corrections.
· Similarly, when individuals exercise their right to erasure, we will carefully evaluate the request and delete the relevant data from our records, subject to any legal obligations or exemptions.
12. Your Rights
You have the following rights regarding your personal data:
· Right to access: You can request a copy of the personal data we hold about you.
· Right to rectification: You can correct inaccuracies in your personal data.
· Right to erasure: You can request the deletion of your personal data under certain circumstances.
· Right to object: You can object to the processing of your personal data for certain purposes.
· Right to data portability: You can receive your personal data in a structured, commonly used, and machine-readable format.
To exercise any of these rights or to withdraw your consent, please contact us using the information provided below.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us at:
R-GON Insights Limited t/a Workbly
U59 Ardilaun Court, Dublin 5
info@workbly.com
+353 1 442 8281
14. Changes to the Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for legal reasons. We encourage you to review this policy periodically for any updates.
By using our services, you acknowledge that you have read and understood this Privacy Policy and consent to the processing of your personal data as described herein.