Privacy Policy

‍1. Introduction

This Privacy Policy explains how DataDiggers collects, uses, processes, and protects personal data.

For the purpose of this policy, “DataDiggers”, “we”, “us”, or “our” refers to:

Data Diggers Market Research S.R.L. (Romania)
DataDiggers Market Research Pte Ltd (Singapore)
DataDiggers Études de Marché Inc. (Canada)
AVD DataDiggers-MR India Pvt Ltd (India)

Depending on the contractual relationship, the relevant legal entity acts as the data controller.

We are committed to processing personal data in accordance with:

EU General Data Protection Regulation (GDPR)
Romanian data protection law
Applicable international data protection laws in jurisdictions where we operate

If you have any questions regarding this Privacy Policy, you may contact us at:

📧 privacy@datadiggers-mr.com

2. Categories of Individuals Whose Data We Process

We may process personal data relating to:

Panel members (respondents)
Clients and client representatives
Prospects and business contacts (including RFQ inquiries)
Website visitors
Suppliers and contractors

PART A – PANEL MEMBERS (SURVEY RESPONDENTS)

3. Registration and Participation in Surveys

When you register as a panel member, we collect:

Age
Gender
Location
Email address
Profile information relevant to survey targeting

Legal Basis

Article 6(1)(b) GDPR – performance of a contract or steps taken at your request prior to entering into a contract
Article 6(1)(f) GDPR – legitimate interest in managing research operations
Article 9(2)(a) GDPR – explicit consent (for sensitive data)

Sensitive data (e.g., ethnicity, political opinions, health data) is processed only with explicit consent.

You may withdraw consent at any time.

4. Survey Participation

When participating in surveys:

We may collect responses, usage data, and metadata.
In most cases, responses are anonymized or pseudonymized before delivery to clients.
We do not disclose identifying information to clients unless you explicitly consent.

PART B – CLIENTS, PROSPECTS & BUSINESS CONTACTS

5. Data We Collect

If you:

Send an email to RFQ@datadiggers-mr.com
Request a quotation
Purchase services
Engage in business correspondence
Subscribe to marketing communications

We may process:

Name
Business email
Company name
Job title
Phone number
Communication history
CRM interaction data

6. Purposes of Processing

We process business contact data to:

Respond to RFQs
Provide quotations
Negotiate and perform contracts
Manage business relationships
Send service communications
Send product education emails
Send limited promotional communications
Improve our services

7. Legal Basis for Processing (Business Contacts)

We rely on:

Article 6(1)(b) GDPR – performance of a contract or steps taken at your request prior to entering into a contract
Article 6(1)(f) GDPR – legitimate interest

Our Legitimate Interests Include:

Developing and maintaining professional business relationships
Informing contacts about relevant services
Providing product updates and education
Sending limited, relevant promotional offers

We conduct internal balancing assessments to ensure your rights are not overridden.

8. Marketing Communications

If you contact us, request a quotation, or become our client, we may send:

Product education communications
Platform updates
Industry insights
Limited promotional offers

We rely on legitimate interest where permitted by law.

You have the right to object at any time by:

Clicking the unsubscribe link in emails
Emailing privacy@datadiggers-mr.com

We will honor your objection without delay.

We do not send mass unsolicited marketing to unrelated third parties.

PART C – CRM AND AUTOMATION TOOLS

9. Use of CRM and Marketing Platforms

We use secure third-party service providers (including HubSpot) to:

Manage contact records
Maintain subscription preferences
Send email communications
Automate marketing workflows

These providers act as data processors under written data processing agreements and process data strictly on our documented instructions.

PART D – WEBSITE VISITORS

10. Technical Data

When you visit our website, we may collect:

IP address
Browser type
Device information
Usage data

This is processed for:

Website security
Analytics
Service improvement

Legal basis:

Legitimate interest (Article 6(1)(f))

PART E – DATA SHARING

11. Disclosure of Personal Data

We may share personal data with:

IT and hosting providers
CRM providers
Professional advisers
Regulators (when legally required)
Group companies (where necessary)

We never sell personal data.

We require all processors to:

Implement appropriate security measures
Process data only under our instructions
Maintain confidentiality

PART F – INTERNATIONAL TRANSFERS

12. Transfers Outside the EEA

Where personal data is transferred outside the EEA, we ensure appropriate safeguards, including:

European Commission Standard Contractual Clauses (SCCs)
EU–U.S. Data Privacy Framework (where applicable)
Other legally approved transfer mechanisms

You may request details of safeguards by contacting us.

PART G – DATA RETENTION

13. Retention Periods

We retain personal data only as long as necessary:

Clients: up to 10 years (accounting/tax compliance)
Business leads (non-clients): maximum 24 months from last meaningful interaction
Panel members: for duration of membership
Marketing data: until objection or unsubscribe, subject to periodic review.

We may retain anonymized data indefinitely for statistical purposes.

PART H – YOUR RIGHTS

14. Your Rights Under GDPR

You have the right to:

Access your data
Rectify inaccuracies
Request erasure
Restrict processing
Object to processing
Data portability
Withdraw consent (where applicable)

To exercise your rights: