Introduction
Startupbootcamp takes your privacy very seriously. This privacy policy has been prepared in line with the EU’s General Data Protection Regulation (GDPR) which takes effect on 25 May 2018. The GDPR promotes fairness and transparency for all individuals in respect of their personal data. This privacy policy applies to all data we process, and by using Startupbootcamp Global you consent to our collection and use of such data. If you would like to get in touch about anything in this policy or about your personal data then please contact us at data@startupbootcamp.org.
Contents
What personal data do we share with third parties and who are they?
Why do we share data outside of the EU
How do we keep your personal data secure?
Changes to our privacy policy and control
Your rights
About us
1. Data we collect
As a data controller we collect a variety of data in order to deliver our services. We use a service called PORT to ensure that we collect and manage your personal data transparently, fairly and securely. Whenever we collect Personal Information from you we are open and transparent about its use, any you can access the following precise information from us:
data we have collected from you
the basis on which we are holding it (e.g. because you gave us consent)
what we will do with it
how long we will hold it for
where it is stored
who it might be shared with
your rights in relation to the data, and
information on how you can access and manage this data.
We have provided further detail below about the specific types of data we collect and our reasons for doing so.
1.1. What data do we ask you to provide to us, and why?
When we scout startups we may collect the following personal data: first and last name, email, Twitter handle, company, role, phone number, LinkedIn profile URL.
We use this data to: Scout and identify relevant startups, format, analyse and provide application data to our programs and analyse and aggregate data to get industry and internal insight.
We collect this data using the lawful basis: Legitimate Interest.
When you sign-up to one of our newsletters we collect the following data: email, role.
We use this data to: send you monthly newsletters updating you on all things Startupbootcamp
We collect this data using the lawful basis: Consent.
When we distribute surveys, we use the following data: name, email.
We use this data to: To distribute surveys to you from time to time.
To capture pre, mid, post program feedback to be later passed to our accelerators.
We collect this data using the lawful basis: Legitimate Interest.
Startups who engage on our programmes may also provide us with further personal information in order to ensure their participation on one of our programs. This is a contractual relationship.
2. Which third parties do we share data with?
When necessary to run our programs, we share personal data with the following third parties:
Our global program community – you can find our list of programs here and here – some of them reside outside of the EU and we ensure that all international transfers are in line with regulation
Innoleaps – Data is not transferred outside of the European Economic Area.
Rainmaking – Data is not transferred outside of the European Economic Area.
Eventbrite – Data is transferred outside of the European Economic Area to United States under the protection of EU/US Privacy Shield.
Capital Enterprise – Data is not transferred outside of the European Economic Area.
MailChimp – Data is transferred outside of the European Economic Area to United States under the protection of EU/US Privacy Shield.
Google – Data is transferred outside of the European Economic Area to United States under the protection of EU/US Privacy Shield.
Amazon – Data is not transferred outside of the European Economic Area.
PORT – Data is not transferred outside of the European Economic Area.
Sendgrid – Data is not transferred outside of the European Economic Area.
Slack Technologies – Data is transferred outside of the European Economic Area to United States under the protection of EU/US Privacy Shield.
Trello – Data is transferred outside of the European Economic Area to United States under the protection of EU/US Privacy Shield.
SurveyGizmo – Data is transferred outside of the European Economic Area to United States under the protection of EU/US Privacy Shield.
There are certain situations in which we may share access to your personal data without your explicit consent; for example, if required by law, to protect the life of an individual, or to comply with any valid legal process, government request, rule or regulation.
3. Why do we share data outside of the EU
We may transfer personal data to a country outside of the European Economic Area (EEA), for example to one of our non-EEA accelerator programs. If this is the case we will ensure that the transfer is legal and your data is secure by following the EU’s guidelines.
4. How do we keep your personal data secure?
We keep your data secure in a number of ways, including:
by following internal policies of best practice and training for staff
by using Secure Socket Layer (SSL) technology when information is submitted to us online
In the unlikely event of a breach of our security we will inform the relevant regulatory body within 72 hours and, if your personal data was involved in the breach, we shall also inform you.
5. Changes to our privacy policy and control
We may change this privacy policy from time to time. When we do, we will add notices to our website. By continuing to access or use our services after those changes become effective, you agree to be bound by the revised privacy policy.
6. Your rights
Your personal data is yours and you have rights over it, including but not limited to:
the right to be informed about the collection and use of your personal data
the right of access to your personal data and any supplementary information
the right to have any errors in your personal data rectified
the right to have your personal data erased
the right to block or suppressing the processing of your personal data
the right to move, copy or transfer your personal data from one IT environment to another
the right to object to processing of your personal data in certain circumstances, and
rights related to automated decision-making (i.e. where no humans are involved) and profiling (i.e. where certain personal data is processed to evaluate an individual).
To manage your data you can contact us via email with any requests that you may have.
While we do not hold personal data any longer than we need to, the duration will depend on your relationship with us.
7. About us
We are Startupbootcamp Global and our address is WeWork, 70 Wilson St, London EC2A 2DB United Kingdom. You can contact us at data@startupbootcamp.org.