Who we are
We are Wilsome LLP, a brand, story and communications consultancy working with clients in the UK and Europe. We conduct consultancy projects for our clients including which often include research, interviews, data collection and analysis of that data.
Company reg no: OC422269
VAT number: 331 8020 42
Our website address is: https://wilsome.co.uk
We are registered as a Data Controller with the Information Commissioners Office – reference ZB551260
Wilsome LLP is the data controller for short surveys and questionnaires, qualitative group interviews and one-to-one interviews which we use to establish attitudes, behaviours and motivations in relation to our clients’ business objectives and strategies. We rely on the lawful basis of Legitimate Interests for collecting personal data directly related to these surveys. If we collect any special categories (sensitive) data, such as health-related data, we will clearly explain how we meet one of the conditions for processing that data and obtain your explicit consent prior to your participation in these surveys.
Wilsome LLP is a data processor for the majority of projects where we research attitudes, behaviours and motivations on behalf of a client.
On occasion, Wilsome LLP will be a data controller for certain projects where the client name needs to remain hidden for a short time in order to avoid research bias.
The remainder of this document outlines how we process your data.
What personal data we collect and why we collect it – research
Please note: For any given research project, the specifics of who the data controller is, what personal data will be processed and why will be detailed in its own project-specific privacy notice, as provided by the data controller at the start of the recruitment process.
Taking part in research
During the recruitment for research projects Wilsome LLP may collect personal data from you for ther purposes of planning and organising research activity. This may include: name, email address, phone number, location of permanent residence, age or date of birth. We will use this information to contact you about the details of the research and to establish your suitability to take part in the research.
Your personal information will not be used for marketing communications. We will not share your contact details with any third-parties for the purpose of sending you marketing communications.
If you are owed fees by Wilsome LLP we will collect payment details from you in order to make payments. Depending on the country in which you live, and therefore the payment services available to us, we may need to ask for additional information such as your bank account details or a form of identification, in order to make the payment.
Some research projects take the form of a survey. If you are selected to take part in such a project, details of how your personal data will be processed will be explained in its own privacy notice, shown at the start of the survey.
Qualitative Research Projects
If you have been invited to take part in a qualitative research project you can find details of how your personal data will be processed in the information shared with you at the time of recruitment and we will seek your consent for this via a consent form for that project. It is likely we will:
– Record the interview (video and/or audio)
– Store recordings and share with clients (unless otherwise stated / agreed) for up to 12 months after the project is completed
– Recordings may be stored on either Google Drive and/or Microsoft OneDrive in password protected folders
What other data do we collect? – website and other platforms
When visitors leave comments on this website we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
For the purposes of understanding the performance of our website we collect analytics data using Google Analytics.
Who we share your data with
We use a number of different third-party providers to host our questionnaires and surveys. Unless otherwise specified on the project, our questionnaires and surveys are hosted at Survey Monkey.
Your contact details, your questionnaire and survey responses, your responses to qualitative interview questions (audio, video and written) will be stored in Google Drive and/or Microsoft OneDrive.
To keep you updated throughout the project, we may need to contact you via email using GMail or MailChimp.
For accounting purposes your contact details and bank details will be shared with our bookkeeper.
How do we keep your data secure?
While the transmission of information via the internet is never completely secure, we do take all reasonable steps to ensure that your personal data is stored and transmitted securely. We regularly update and test our systems to guard against security threats.
We store your data with third-party providers that adhere to a robust set of security standards. The personal data of EU data subjects will only be transferred to, and stored in, the EEA, or countries that have been deemed adequate by the European Commission, or with providers that have an adequacy agreement in place e.g. EU-US Privacy Shield.
How long we retain your data
For research projects we delete all source data relating to individuals after 12 months from completion of the project.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
You can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
You can contact us at email@example.com at any time to exert your rights over your data
This notice was created: September 2019
And updated: November 2019
And updated again: 11 July 2023