Privacy Policy

We are committed to safeguarding the privacy of our website visitors, customer personnel and VALNOVA service users.

This policy applies where we are acting as a data controller with respect to the personal data of our website visitors, customer personnel and service users; in other words, where we determine the purposes and means of the processing of that personal data.

This Privacy Policy will explain how the personal data of visitors (“Users” or “you(r)”) of https://www.valnova.co/ (the “Website(s)”) will be collected and processed by VALNOVA. VALNOVA only collects your personal data for a specific and justified purpose described in this privacy policy. Personal data is not processed further in a way that contradicts the purpose for which the personal data was obtained.

1. Who handles your personal data?

VALNOVA is the “Controller” with respect to any personal data that you provide via the Websites. The Controller is the legal person who determines the purposes and means of the use (processing) of your personal data. If you want to contact us, please use privacy@valnova.co. for this purpose. For the purpose of this privacy policy we will refer to ourselves as “VALNOVA”, “we”, “us”.

We (can) use certain sub-processors, but these sub-processors only process/use the personal data that is strictly necessary for these sub-processors to complete their specific task or service. We only provide your personal data, subject to data processing agreements, which state that the sub-processors must keep your personal data confidential, that the data cannot be used for their own purposes and that all information will be used in accordance with applicable privacy legislation, including strict provisions in the light of data security.

2. Purposes and the legal basis of processing your personal data.

The private user data may be processed for the purpose of providing our services to customers. Such processing may include sharing elements of the private user data with other users. For example, meeting agenda items will be shared with other meeting participants. As part of our services, we may undertake profiling, using the private user data relating to personality profiles, value profiles and relationship profiles to create reports for customers. The legal basis for this processing is legitimate interests, namely:

(a) the legitimate interests of our customers in using our services to grow and develop their talent and teams and candidates acquisition process; and

(b) our legitimate interests in the proper provision of our services to customers.

This usage data may be processed for the purposes of analysing the use of the website and services. The legal basis for this processing is our legitimate interests, namely monitoring and improving our website and services.

The customer relationship data may be processed for the purposes of managing our relationships with prospects and customers, communicating with prospects and customers, keeping records of those communications. The legal basis for this processing is our legitimate interests, namely the proper management of our customer relationships.

In addition, the customer relationship data may be processed for the purposes of sending you newsletters and other direct marketing communications. If we have asked for your consent to the sending of such marketing communications, then of course the legal basis of this processing will be consent.

The notification data may be processed for the purposes of sending you relevant notifications relating to our services, software and systems. The legal basis for this processing is our legitimate interests, namely the management of our services, software and systems and keeping users informed of issues relating to our services, software and systems.

We may process any of your personal data identified in this policy where necessary for the establishment, exercise or defense of legal claims, whether in court proceedings or in an administrative or out-of-court procedure. The legal basis for this processing is legal obligation, namely the protection and assertion of our legal rights, your legal rights and the legal rights of others.

We may process any of your personal data where necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, or obtaining professional advice. The legal basis for this processing is legal obligation, namely the proper protection of our business against risks.

In addition to the specific purposes for which we may process your personal data set out in this section, we may also process any of your personal data where such processing is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.

Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.

‌In the case of private user data, we may effectively anonymise that data before the end of the retention period, rather than deleting the data.

Notwithstanding the other provisions of this section, we may retain your personal data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.

About cookies

A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.

Cookies may be either "persistent" cookies or "session" cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.

Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies.

Cookies that we use

We use cookies for the following purposes:

(a) authentication - we use cookies to identify you when you visit our website and as you navigate our website;

(b) status - we use cookies to help us to determine if you are logged into our website;

(d) security - we use cookies as an element of the security measures used to protect user accounts, including preventing fraudulent use of login credentials, and to protect our website and services generally;

(e) analysis and testing - we use cookies to help us to analyse and test the use and performance of our website and services;

(f) as a website visitor, based on our legitimate interests, we may analyse trends, administer the website, measure users’ activity on the website and to gather demographic information about our user base.

For purposes above-mentioned at (f), we may use Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer to help us analyse how Users use the Website. Google will not associate your IP address with any other data held by Google.

The gathered information will be transmitted to – and stored by – Google on servers in the United States. Google and all its subsidiaries, such as Google Analytics, participate in the Privacy Shield Framework and are committed to the Privacy Shield Principles in the processing of personal data transferred from the European Union to the United States. You may refuse the use of cookies by selecting the appropriate settings on your browser.

The cookies may store the following information:

Your IP-Address;
Information about your use of the Website;
Device and browser;
IP-address;
Requests and responses sent from and to your device;

3. What are your (data subject) rights?

Under the privacy legislation (GDPR), you have a number of rights as a data subject. This chapter of the privacy policy states your data subject rights and how you can invoke these rights.

The right to be informed

You have the right to know if we use (i.e. process) your personal data.

The right of access

If we indeed use (i.e. process) your personal data, you have the right to access your personal data and retain a copy.

The right to rectification

If your personal data is incorrect, you have the right to ask us to rectify your personal data. We will rectify your personal data accordingly.

The right to erasure (‘to be forgotten’)

If you want us to delete your personal data, you have the right to request us to delete your personal data. We will delete your personal data, unless we have a legal obligation to keep processing your personal data.

The right to restrict processing

If you are of the opinion that the processing of your personal data is unlawful, or your personal data is incorrect, or you require the personal data for legal claims after the retention period, or you have objected to the processing of your personal data, you can request us to restrict your personal data. In this case we cannot process your personal data unless your grant us permission.

The right to data portability (when processing under consent or performance agreement)

You can request us for an export of all the personal data that is processed by VALNOVA. We will provide you with an export of your collected and processed personal data.

The right to object (when processing under legitimate interest).

In this event, we will not process any of your personal data upon your objection, unless we can provide you with compelling reasons to continue the processing of your personal data.

If you wish to make use of your data subject rights as mentioned in this paragraph, please end your request via e-mail to privacy@valnova.co. You will receive a substantiated reply within one (1) month after your request.

4. Protection of personal data

We have taken appropriate technical and organizational security measures in order to protect your personal data against loss, misuse, alteration and/or destruction. Although we exercise reasonable care in providing secure transmission of information between your equipment and our systems, we cannot ensure or warrant the security of any information transmitted to us over the internet. Access to relevant personal data is only granted to those authorized employees who require access to the relevant personal data for performance of their work.

5. International transfers

Your personal data may be processed outside the EU by us or the third parties we use. Where these transfers take place, we will ensure the same high standard of protection for your personal data at all times.

6. How long we retain your data

VALNOVA only retains personal information for as long as is necessary. For further details on our data retention periods please contact us.

Where you have consented to us to use your details for direct marketing, we will keep this data until you notify us or otherwise withdraw your consent.

7. Merger, acquisition or sale of company

If VALNOVA is involved in a merger, acquisition or sale of all or a portion of its assets, we reserve the right to transfer personal and non-personal data to a party involved in the merger, acquisition or sale, to the extent such information is necessary to carry out the merger, acquisition or sale.

8. Amendments

We may update this policy from time to time by publishing a new version on our website. You should check this page occasionally to ensure you are happy with any changes to this policy. We may notify you of significant changes to this policy by email.

9. Questions and complaints

If you have any questions or complaints about this privacy policy, please contact us at: privacy@valnova.co.

This privacy policy has been updated on September 17th, 2024.