N2S cares about your privacy and data protection.
To contact us, please contact our appointed Data Protection Officer at:
Pridatect, S.L., Barcelona, 08003
+44 20 80 59 39 99 (Please quote ‘Data Protection Assistance’ on the line when phoning.)
We are committed to offering the highest standards of products and services. Thus, we value each of our existing or prospective client and aim at maintaining the best protection for your personal data.
We have implemented a robust data protection compliance program, which includes the adoption of the high-standard data protection principles of the GDPR at a global level and includes the:
The N2S website is operated by N2S Limited in the United Kingdom (“N2S” or “we”). N2S may further share information with its affiliates in accordance with the safeguards foreseen in this policy.
Information on a job applicant is directed to the local Human Resources team in charge of the open position.
If you want to contact N2S or its Data Protection Office, please see under “How to contact N2S for privacy queries” below.
Information provided directly by you.
Important Notice: When submitting any personal data, including multimedia contents (photographs, videos …) please ensure it is accurate and do not transmit any content which is not expressly requested through a questionnaire or any other collection method (such as commercial information, advertising, personal creations, ideas, or concepts).
Information we obtain indirectly about you.
Some additional information is collected indirectly about you while you are browsing the N2S website. This information is technically needed for the proper functioning of the N2S website, to improve your browsing experience or in order for N2S to perform analytics that will enable us to serve you better by personalising our online offering for you.
Our website does not specifically focus on minors. If we should nevertheless inadvertently collect such information, the minor’s legal representative can exercise the minor’s rights on his/her behalf and on his/her name at any time (see below).
Data used to personally identify you such as your full name (including name prefix or title) or similar identifier, date of birth, title and maiden name.
Data required to communicate with you during the course of our relationship with you to include address(es), email address(es), telephone number(s) and mobile phone number(s) – this may include both your business/work and personal contact details.
Data that relates to your position and profession such as job title, professional qualifications and experience, regulatory body, the entity that you work for and details of your professional online presence (such as your LinkedIn profile and business website(s)).
Data necessary for processing payments (such as bank account details and billing address(es)), fraud prevention and other related billing information.
Data provided to us by you or on your behalf, which will include details about your contract with us, information relating to the case(s) that we are dealing with including data extracted from devices and/or obtained from IT systems and/or the Cloud (which may include data in the form of text, images, videos, audio recordings.
The data under this category will vary depending on the nature of the services we provide and your specific instructions and requirements.
(Also known as “special category data”) may be obtained and/or processed depending on the services that we are providing and/or the relevant circumstances but may include information in relation to:
Information about how you use our websites and (if you are an existing client) our services, and/or your communication preferences.
Internet protocol (IP) address, your login data (if access is provided to our Cloud platform in relation to our e-discovery services), browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our websites.
Such data may be processed within Case Data depending on the services that we are providing and the relevant client that we are instructed by and may include personal data relating to the alleged commission of offences by a data subject, proceedings for the offence and disposal of such proceedings including sentencing, criminal records and details of convictions, proceedings, allegations, investigations, offences and cautions.
We may collect and process Sensitive Data in the following circumstances:
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. It may not always be apparent at the outset what data we may require, who we may need to obtain it from and/or share it with as this will depend on the nature of the work and how the case progresses.
If you wish to have an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us.
If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.
As part of the services we provide to our clients, we may use personal data to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you and/or your business.
We have a legitimate interest in processing your personal data and information for our business development. We will only send marketing communications to you if you have requested information from us and you have not opted out of receiving that marketing.
We will only share your personal data with third parties for marketing purposes with your express consent and you can withdraw that consent (if provided) at any time by contacting us.
You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you and/or by contacting us at any time.
Where you opt out of receiving these marketing messages, this will not apply to personal data provided to us as a result of your use of our services and/or under a contract that you have entered into with us.
We may (depending on the nature of the services we are providing, and the work involved) have to share personal data with other third parties and they may also share the personal data they hold about you with us. This may include:
We require all third parties with whom your data is shared to respect the security and integrity of your personal data and to treat it in accordance with the law. We also impose contractual obligations on service providers to ensure they can only use your personal information to provide services to us and to you. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions. We will not share your information with third parties for marketing purposes (unless you expressly consent to this).
We will hold your personal data on secure servers within the European Economic Area (“EEA“). N2s does not routinely transfer personal data outside of the EEA.
Some of the external parties in relation to a case may be based outside the EEA so their processing of personal data may involve a transfer of data outside the EEA.
Whenever we transfer your personal data out of the EEA, we will seek to ensure a similar degree of protection is afforded to it by ensuring that appropriate safeguards are implemented. In some circumstances (particularly where data is to be transferred outside of the EU where data protection laws are not as strict), we may need your express consent to the transfer unless there is an overriding legal requirement to transfer the information.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those members of staff and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We will hold your personal data on secure servers with all reasonable technological and operational measures to safeguard unauthorised access to include firewalls, gateways, security configuration and malware protection.
We have gained several accreditations for managing information security effectively (particularly against cyber-attacks), and these reach beyond ISO 27001 and frameworks for best practice in information security management. For further information, don’t hesitate to reach out.
If we provide you with a username and password which enables you to access certain parts of our systems, you are responsible for keeping such log-in details confidential. You must not share such information with anyone.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
How long will we use your personal data for?
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including:
If we are hosting and/or holding data on your behalf, we will contact you and obtain your instructions before destroying any such data.
Under certain circumstances, you have rights under data protection laws in relation to your personal data. You have the right to request:
Please contact our DPO at email@example.com. If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law you can complain to the ICO, the UK supervisory authority for data protection issues. Further details can be found at www.ico.org.uk or by calling 0303 123 1113. We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
Any changes we make to our Privacy Notice in the future will be posted on our websites and, where appropriate, notified to you by email. Please check back frequently to see any updates or changes to our Privacy Notice.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.