General Data Protection Regulation (GDPR)

Intent Market Research (IMR) views the protection of your data in line with the GDPR as fundamental to doing business. We are committed to protecting information, personal data, and client information under the GDPR data protection policy. The GDPR’s requirements apply to EU residents’ personal information and anyone in your organization who processes that data. IMR is committed to meeting GDPR’s six principles of data processing and accountability. 

We strive to select our vendors carefully and ensure that they are able to provide adequate data protection and security safeguards in accordance with Article 28 of the European Union’s General Data Protection Regulation (GDPR). If such processors reside outside of the European Economic Area, all data transfers are conducted in accordance with Chapter V. of GDPR — in particular, in accordance with adequacy decisions issued by the European Commission or standard contractual clauses.

When such processors reside in the EU/UK, we comply with Article 28 of the GDPR (or the UK GDPR, as applicable). If such processors reside outside of the European Economic Area or the UK, all data transfers are conducted in accordance with Chapter V. of GDPR (or the UK GDPR, as applicable).

In accordance with the above, we may share your data with the following third parties:

  • Suppliers that provide IT support to IMR
  • Suppliers that support our marketing activities

We may also share your personal data with other third parties as and when necessary:

  • to comply with legal processes
  • to prevent fraud or forthcoming harm; and/or
  • to ensure the security of our network and services
  • to enforce or defend the legal rights of IMR in connection with corporate restructuring, such as a merger or business acquisition, or in connection with an insolvency situation

IMR does not process any special categories of personal data (as defined under the GDPR and the UK GDPR).

As a data subject under GDPR or UK GDPR, The GDPR endows individuals with eight data subject rights mentioned below:

  1. The Right to Receive Information: You may contact us at any time with a request to receive more information regarding the following: 
    1. a) the purposes for which we use your personal data;
    2. b) how we categorize your personal data;
    3. c) the recipients of your personal data;
    4. d) the length of time we store your personal data; and
    5. e) your rights as a data subject.
  1. The Right to Access: Upon your request, we will provide you with access to the personal data on you that we process, and we will send you a copy of that data.
  2. The Right to Rectification: If you discover that any of the data we possess about you is incorrect or incomplete, you can request to have such data amended via the contact information provided in Privacy Policy.
  3. The Right to Erasure: You may request us to erase your personal data from our records.
  4. The Right to the Restriction of Use: You may ask us to restrict our use of your personal data so that we can only use your personal data in ways stipulated by you.
  5. The Right to Portability: You have the right to receive a copy of your personal data from us in a structured and commonly used machine-readable format. You can also request us to transfer your data to another data controller.
  6. The Right to Object: In cases in which we rely on our legitimate interest to use your personal data, we must consider and acknowledge the interests and rights that you have under data protection law. Your privacy rights are protected by proper safeguards and maintained with your freedoms and other rights. You have the right to submit an objection at any point of time to our use of your personal data based on our legitimate interest.
  7. The Right to Withdraw Consent: You have the right to withdraw your consent at any time to our use of your personal data. Please note that a withdrawal of your consent does not affect the legality of its use prior to your consent being withdrawn.