RepRisk | RepRisk Privacy and Cookie Policy

RepRisk Privacy and Cookie Policy

Privacy Policy

RepRisk appreciates your visit to our website and your interest in our products and services. Your privacy is important to us and we want you to feel comfortable visiting our site. We take care to protect any personal data we collect, use, or otherwise process, during visits to our site.

In the course of serving you as an individual client or as a visitor to our website, RepRisk may obtain certain personal information about you (“personal data or personal information”). Personal data, as used in Swiss privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Obtaining this information is important to our ability to deliver the highest level of service to you, but we also recognize that you expect us to treat this information confidentially and appropriately.

This policy describes the types of personal information we may collect about you, the purposes for which we use the information, the circumstances in which we may share the information, and the steps that we take to safeguard the information to protect your privacy.

What kind of information does RepRisk collect?

When you visit the RepRisk website, our web server automatically records details about your visit (for example your anonymized IP address, the website from which you visit us, the type of browser software used, the RepRisk website pages that you actually visit including the date, and the duration of your visit).

We collect personal information only when it is voluntarily offered by you and it is reasonably necessary for the purposes of conducting our business. For example, during the course of our business relationship, you might provide your name, address, email address, and contact numbers. If necessary, we may ask you to provide additional information from time to time. We may collect this information from you via webpage, mail, email, telephone, text message, or in person. You can update your preferences at any time.

We do not seek to collect sensitive personal data.

Our website also uses web-analytics tools for website analysis. These tools collect data related to the type of device or browser you are using, your anonymized IP address, and on-site activities to measure user interactions on our website, to get a sense of where in the world visitors to our website come from, and to help us maintain, improve, and develop our services. The information we collect is anonymized and is not shared with the web-analytics tools providers or any other third parties.

When do we collect information?

We collect information from you when you register on our website, request a trial registration to our RepRisk ESG Risk Platform; place an order on our Webshop; subscribe to our mailing list to receive our research, publications, newsletters, and more; respond to a survey; or fill out any other form on our website.

How will RepRisk use your personal data?

For the purposes of technical administration as well as research and development of the RepRisk Website
For client and user administration and marketing
For marketing purposes including direct marketing (for example, to email newsletters) and to inform you about our research, publications and news, as well as products and services that may be of interest or that you may have signed up to receive, where you have consented to receiving such information
To facilitate our internal business operations, including assessing and managing risk, and fulfilling our legal and regulatory requirements
To conduct surveys, where you have consented to receiving such information

How do we protect visitor information?

Our website is scanned on a regular basis using Malware Scanning for known vulnerabilities in order to make your visit to our site is as safe as possible.

Your personal information is stored in secured networks and is only accessible by a limited number of RepRisk employees who have special access rights to such systems, and are required to keep the information confidential. In addition, all login attempts and access to sensitive information are logged. All information transferred to and from our information systems are encrypted using the default industry standard encryption.

We implement a variety of security measures when a user places an order, enters, submits, or accesses his or her information to maintain the security and privacy of your personal information.

All payment transactions are processed through a gateway provider and are not stored or processed on our servers.

To whom do we disclose your information collected from the RepRisk Website?

RepRisk is committed to protecting the privacy and confidentiality of your personal information. We limit access to your personal information to authorized RepRisk staff, who, like our service providers are held to stringent standards of privacy. We also maintain physical, electronic, and procedural safeguards to protect the information against loss, misuse, damage or modification, and unauthorized access or disclosure.

International transfers - you should expect that the recipients identified above, which will receive or have access to your personal data, are located inside or outside the European Economic Area ("EEA").

For recipients located in countries which do not adduce an adequate level of protection from a European data protection law perspective, we will take all necessary measures to ensure that access to your personal data and transfers out of the EEA are adequately protected as required by applicable data protection law.

The data transfer to RepRisk affiliates is protected by standard data protection clauses adopted by the European Commission (Art. 46(2)(c) or (d) GDPR).

RepRisk uses commercially reasonable best efforts to abide by applicable laws and regulations in its use of personal data. RepRisk does not sell, trade, or otherwise transfer to outside parties your personal data.

We may disclose your information to governmental agencies or entities, regulatory authorities, or other persons in line with any applicable law, regulations, court order or official request, or under any and for the purposes of any guidelines issued by regulatory or other authorities, or similar processes as either required or permitted by applicable law.

Third-party links: Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

We will communicate any changes to our Privacy Policy on our Privacy Policy Page.
Pursuant to applicable data protection law, you may have the right to: (i) request access to your personal data; (ii) request rectification of your personal data; (iii) request erasure of your personal data; (iv) request restriction of processing of your personal data; (v) request data portability; and/or (vi) object to the processing of your personal data (including objection to profiling). Below please find further information on your rights to the extent that the GDPR applies. Please note that these rights might be limited under the applicable local data protection law.

To exercise your rights, please contact us as stated under the below contact details. You also have the right to lodge a complaint with the competent data protection supervisory authority in the relevant Member State (e.g., the place where you reside, work, or of an alleged infringement of the GDPR).

Email us at support@reprisk.com
Call us at +41 43 300 54 40

For other questions regarding data security, please contact our Data Protection Officer at dpo@reprisk.com.

Cookie Policy

Cookies are small files that a website or its service provider transfers to your computer's hard drive through your Web browser (if you allow cookies) that enables the website's or service provider's systems to recognize your browser and capture and remember certain information. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.

Cookies are useful because they allow a website to recognize a user's device. Cookies play a variety of roles, including helping you to efficiently navigate between pages, remembering your preferences, and generally improving the user experience.

Our website and the web-analytics tools may also set cookies on your browser or read existing cookies to measure user interactions with our website. You can use incognito mode to browse the web without recording webpages and files in your browser. Cookies are deleted after you close your incognito windows and tabs, and your bookmarks and settings are stored until you delete them. You can also clear any existing cookies from within your browser. You can update your cookie preferences anytime.

How does RepRisk use cookies?

We use cookies on our website to:

Understand the total number of visitors to our sites on an ongoing basis and the types of internet browsers (e.g. Firefox, Safari, Google Chrome, or Microsoft Edge) and operating systems (e.g. Windows or Macintosh) used by our visitors
Monitor our sites' performance, including how visitors navigate our website, and to improve our website in order to better serve you
Customize and enhance your online experience

Third-party cookies

We use cookies from the following third parties to track the success metrics of our campaigns and to ensure an optimal browsing experience:

Google / Google AdSense
Google / Google AdSense may use user data. You can review Google’s privacy policy regarding advertising here. That page also provides information on how to manage what information is collected and how to opt out of data collection.
DoubleClick
DoubleClick cookies are used by Google in the ads served on websites of its partners, such as websites displaying AdSense ads or participating in Google certified ad networks. When you visit a partner’s website and either view or click on an ad, a cookie may be added on your browser.
LinkedIn
LinkedIn cookies and similar technologies are used for making interactions with LinkedIn Services faster and more secure, customizing the user experience on LinkedIn Services, and for remembering information about the visitor's browser and preferences.
Matomo
Matomo cookies collect user statistics to help us understand our website usage in order to improve functionality and provide a better user experience. The data collected is anonymized.
Microsoft
Microsoft cookies and similar technologies are used for storing and honoring preferences and settings, enabling sign in, providing interest-based advertising, combating fraud, analyzing how their products perform, and fulfilling other legitimate purposes. Microsoft apps use additional identifiers, such as the advertising ID in Windows described in the Advertising ID section of this privacy statement, for similar purposes.
Pardot/SalesForce
Pardot/SalesForce cookies collect visitor and prospect activity on the website and landing pages for tracking purposes. Pardot cookies do not store personal identifying information, only a unique identifier.
SmartRecruiters
SmartRecruiters cookies register which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience.
ZoomInfo
ZoomInfo technical cookies are used for security and performance reasons.

Additionally, Google may collect cross-website behavioral information through these solutions for the purpose of remarketing, re-engagement, and identifying similar audiences in order to serve their ads better.

More specifically, we use cookies and other tracking technologies for the following purposes:

Essential (17 Cookies)

Essential cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

CookieConsent	Stores the visitor's cookie consent state for the current domain.
Cookiebot	Expiry - 1 year
1.gif	Used to count the number of sessions to the website, necessary for optimizing CMP product delivery.
Cookiebot	Expiry - session
email	Used by the website to remember the visitors who gain access to the gated publications for urestricted access upon future visits.
RepRisk	Expiry - 10 years
gclid	Stores the gclid value of the website visitors coming through Google Ads in order to calculate the conversion rate.
RepRisk	Expiry - 3 months
mtm_campaign	Stores the campaign info of the website visitors in order to calculate the conversion rate.
RepRisk	Expiry - 3 months
msclkid	Stores the msclkid value of the website visitors coming through Microsoft Ads in order to calculate the conversion rate.
RepRisk	Expiry - 3 months
test_cookie	Used to check if the visitor's browser supports cookies.
Google	Expiry - 1 day
AEC	The AEC cookie is used to detect spam, fraud, and abuse to help ensure advertisers are not incorrectly charged for fraudulent or otherwise invalid impressions or interactions with ads.
Google	Expiry - 6 months
SOCS	Google uses this cookie, which lasts for 13 months, to store a user’s state regarding their cookies choices.
Google	Expiry - 13 months
AWSALB	Registers which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience.
SmartRecruiters	Expiry - 7 days
AWSALBCORS	Registers which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience.
SmartRecruiters	Expiry - 6 days
cf_clearance	This cookie is used to distinguish between humans and bots.
SmartRecruiters	Expiry - 1 year
__cf_bm	Cookie by Cloudflare on end-user devices that access customer sites protected by Bot Management or Bot Fight Mode.
ZoomInfo	Expiry - 30 minutes
_cfuvid	Related to cloudflare Rate limiting.
ZoomInfo	Expiry - session
visitor_id#-hash [x3]	The visitor hash cookie contains the visitor ID and stores a unique hash. This cookie is a security measure to prevent a malicious user from faking a Pardot visitor and accessing corresponding prospect information.
Pardot/SalesForce	Expiry - 10 years
mtm_cookie_consent	Determines whether the user has accepted the cookie consent box.
Matomo	Expiry - 1 year
datadome	Used in context with the website's BotManager. The BotManager detects, categorizes and compiles reports on potential bots trying to access the website.
SmartRecruiters	Expiry - session

Statistic (7 Cookies)

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_GRECAPTCHA	This cookie is set by Google's recaptcha service in order to distinguish between humans and bots in the event of spam attacks.
Google	Expiry - 6 months
td	Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator.
Google	Expiry - session
_pk_id#	Collects statistics on the visitor's visits to the website, such as the number of visits, average time spent on the website and what pages have been read.
Matomo	Expiry - 1 year
_pk_ses#	Used by Piwik Analytics Platform to track page requests from the visitor during the session.
Matomo	Expiry - 1 day
_pk_ref#	Used by Piwik Analytics Platform to identify the referring website from which the visitor has come.
Matomo	Expiry - 6 months
pi_opt_in# [x2]	This opt-out cookie identifies if the visitor has deselected any cookies, trackers or other audience targeting tools.
Pardot/SalesForce	Expiry - 10 years
userType	Used to distinguish traffic among internal, external and client visitors.
RepRisk	Expiry - 400 days

Marketing (39 Cookies)

Marketing cookies are used to follow visitors on websites. The intention is to show ads that are relevant and appealing to the individual visitor and therefore more valuable to publishers and advertising third parties.

IDE	Used by Google DoubleClick to register and report the website visitor’s actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.
Google	Expiry - 1 year
_gcl_au	Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.
Google	Expiry - 3 months
_gcl_aw	Used by the conversion linker for click information. This cookie is set when a visitor clicks on a Google ad that lands him/her on the website. It contains information about which ad was clicked so that conversion metrics can be linked back to the ad.
Google	Expiry - 3 months
pagead/1p-conversion/#	Tracks view-through conversion to measure return on investment (ROI) for display campaigns and optimize campaigns based on how users are responding to display ads.
Google	Expiry - session
pagead/1p-user-list/#	Tracks if the visitor has shown interest in specific products or events across multiple websites and detects how the user navigates between sites. This is used for measurement of advertisement efforts and facilitates payment of referral-fees between websites.
Google	Expiry - session
pagead/landing [x2]	Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement. This also allows the website to limit the number of times that they are shown the same advertisement.
Google	Expiry - session
pagead/viewthroughconversion	Tracks view-through conversion to measure return on investment (ROI) for display campaigns and optimize campaigns based on how users are responding to display ads.
Google	Expiry - session
COMPASS	Pending purpose.
Google	Expiry - 1 day
GFE_RTT	Used to implement the content through Google Docs.
Google	Expiry - 1 day
NID	Registers a unique ID that identifies a returning user's device. The ID is used for targeted ads.
Google	Expiry - 6 months
_Secure_NID	Registers a unique ID that identifies a returning user's device. The ID is used for targeted ads.
Google	Expiry - 6 months
AnalyticsSyncHistory	Used in connection with data-synchronization with third-party analysis service.
LinkedIn	Expiry - 29 days
bcookie	Used by the social networking service, LinkedIn, for tracking the use of embedded services.
LinkedIn	Expiry - 1 year
bscookie	Used by the social networking service, LinkedIn, for tracking the use of embedded services.
LinkedIn	Expiry - 1 year
lidc	Used by the social networking service, LinkedIn, for tracking the use of embedded services.
LinkedIn	Expiry - 1 day
li_gc	Stores the user's cookie consent state for the current domain.
LinkedIn	Expiry - 179 days
UserMatchHistory	Used for id sync process. It stores the last sync time to avoid repeating the syncing process in a frequent manner.
LinkedIn	Expiry - 1 month
li_sugr	Collects data on user behaviour and interaction in order to optimize the website and make advertisement on the website more relevant.
LinkedIn	Expiry - 3 months
li_adsId	Collects data on user behaviour and interaction in order to optimize the website and make advertisement on the website more relevant.
LinkedIn	Expiry - persistent
MUID	Used widely by Microsoft as a unique user ID. The cookie enables user tracking by synchronising the ID across many Microsoft domains.
Microsoft	Expiry - 1 year
_uetmsclkid	Stores the _uetmsclkid value of the website visitors coming through Microsoft Ads in order to calculate the conversion rate.
Microsoft	Expiry - 3 months
_uetsid x [2]	Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement - This also allows the website to limit the number of times that they are shown the same advertisement.
Microsoft	Expiry - 1 year
_uetvid x [2]	Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.
Microsoft	Expiry - 1 year
_uetsid_exp	Contains the expiry-date for the cookie with corresponding name.
Microsoft	Expiry - persistent
_uetvid_exp	Contains the expiry-date for the cookie with corresponding name.
Microsoft	Expiry - persistent
MSPTC	This cookie registers data on the visitor. The information is used to optimize advertisement relevance.
Microsoft	Expiry - 1 year
ANONCHK	Support cookie to enable marketing functionalities.
Microsoft	Expiry - 1 hour
CLID	Identifies the first-time Clarity see a user on any site using Clarity.
Microsoft	Expiry - 1 year
SM	Used in synchronizing the MUID across Microsoft domains.
Microsoft	Expiry - session
_clck	Persists the Clarity User ID and preferences, unique to that site is attributed to the same user ID.
Microsoft	Expiry - 1 year
_clsk	Connects multiple page views by a user into a single Clarity session recording.
Microsoft	Expiry - 1 day
_zitok	It's a first party cookie for maintaining a unique visitor identifier. This cookie is used for WebSights, FormComplete, Chat and Schedule products. It contains an opaque GUID to represent the current visitor.
ZoomInfo	Expiry - 1 year
ziwsSession	Collects statistics on the user’s visits to the website, such as the number of visits, average time spent on the website and what pages have been read.
ZoomInfo	Expiry - session
ziwsSessionId	Collects statistics on the user’s visits to the website, such as the number of visits, average time spent on the website and whatpages have been read.
ZoomInfo	Expiry - session
visitor_id# [x3]	The visitor cookie sets a unique visitor ID and a unique identifier to make sure that the visitor is linked to the correct Pardot account/campaign.
Pardot/SalesForce	Expiry - 10 years
pardot	Used in context with Account-Based-Marketing (ABM). The cookie registers data such as IP-addresses, time spent on the website and page requests for the visit. This is used for retargeting of multiple users rooting from the same IP-addresses. ABM usually facilitates B2B marketing purposes.
Pardot/SalesForce	Expiry - session
lpv#	Used in context with behavioral tracking by the website. The cookie registers the user’s behavior and navigation across multiple websites and ensures that no tracking errors occur when the user has multiple browser-tabs open.
Pardot/SalesForce	Expiry - 30 minutes
MR	Pending purpose
c.bing.com	Expiry - 7 days
SRM_B	Pending purpose.
c.bing.com	Expiry - 390

Unclassified (4 Cookies)

Unclassified cookies are cookies that have not yet been categorized. These may be cookies that we are in the process of classifying, either individually or with the help of cookie providers, to better understand their purpose and functionality.

unifiedScriptVerified	Pending purpose.
	Expiry - session
ddOriginalReferrer	Pending purpose.
Alleged source: ct.captcha-delivery.com	Expiry - session
dd_testcookie	Pending purpose.
Alleged source: subscriptions.smartrecruiters.com	Expiry - session
_Secure-BUCKET	Pending purpose
	Expiry - not clearly defined

Managing and Deleting Cookies

RepRisk respects its clients’ and website visitors’ privacy and understands that you may want to control which cookies are set as part of your visit to our website. You can manage the use of cookies on your devices by using functions available on most internet browsers, and cookies can also be deleted by your device's storage medium at any time. You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You can do this through your browser (e.g. Firefox, Safari, or Internet Explorer) settings. Each browser is a little different, so look at your browser's Help menu to learn the correct way to modify your cookies.

RepRisk does not have control on how third-party cookies and tracking technologies are designed to function. If you wish to revoke third-party cookie consent after accepting it, we recommend clearing your browser cookies and cache.

If you choose to delete or refuse a cookie, please bear in mind that you may not be able to use the full functionality of our website, and any communications you receive from us may be less relevant to you than they might otherwise have been.

To learn more about the use of cookies, including how to manage or delete them, visit http://www.aboutcookies.org/.

2024

RepRisk Privacy and Cookie Policy Privacy Policy