RepRisk Privacy and Cookie Policy

Privacy Policy

RepRisk appreciates your visit to our website and your interest in our products and services. Your privacy is important to us and we want you to feel comfortable visiting our site. We take care to protect any personal data we collect, use, or otherwise process, during visits to our site.

In the course of serving you as an individual client or as a visitor to our website, RepRisk may obtain certain personal information about you (“personal data or personal information”). Personal data, as used in Swiss privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Obtaining this information is important to our ability to deliver the highest level of service to you, but we also recognize that you expect us to treat this information confidentially and appropriately.

This policy describes the types of personal information we may collect about you, the purposes for which we use the information, the circumstances in which we may share the information, and the steps that we take to safeguard the information to protect your privacy.

What kind of information does RepRisk collect?

When you visit the RepRisk website, our web server automatically records details about your visit (for example your anonymized IP address, the website from which you visit us, the type of browser software used, the RepRisk website pages that you actually visit including the date, and the duration of your visit).

We collect personal information only when it is voluntarily offered by you and it is reasonably necessary for the purposes of conducting our business. For example, during the course of our business relationship, you might provide your name, address, email address, and contact numbers. If necessary, we may ask you to provide additional information from time to time. We may collect this information from you via webpage, mail, email, telephone, text message, or in person. You can update your preferences at any time.

We do not seek to collect sensitive personal data.

Our website also uses web-analytics tools for website analysis. These tools collect data related to the type of device or browser you are using, your anonymized IP address, and on-site activities to measure user interactions on our website, to get a sense of where in the world visitors to our website come from, and to help us maintain, improve, and develop our services. The information we collect is anonymized and is not shared with the web-analytics tools providers or any other third parties.

When do we collect information?

We collect information from you when you register on our website, request a trial registration to our RepRisk ESG Risk Platform; place an order on our Webshop; subscribe to our mailing list to receive our research, publications, newsletters, and more; respond to a survey; or fill out any other form on our website.

How will RepRisk use your personal data?

  • For the purposes of technical administration as well as research and development of the RepRisk Website
  • For client and user administration and marketing
  • For marketing purposes including direct marketing (for example, to email newsletters) and to inform you about our research, publications and news, as well as products and services that may be of interest or that you may have signed up to receive, where you have consented to receiving such information
  • To facilitate our internal business operations, including assessing and managing risk, and fulfilling our legal and regulatory requirements
  • To conduct surveys, where you have consented to receiving such information

How do we protect visitor information?

Our website is scanned on a regular basis using Malware Scanning for known vulnerabilities in order to make your visit to our site is as safe as possible.

Your personal information is stored in secured networks and is only accessible by a limited number of RepRisk employees who have special access rights to such systems, and are required to keep the information confidential. In addition, all login attempts and access to sensitive information are logged. All information transferred to and from our information systems are encrypted using the default industry standard encryption.

We implement a variety of security measures when a user places an order, enters, submits, or accesses his or her information to maintain the security and privacy of your personal information.

All payment transactions are processed through a gateway provider and are not stored or processed on our servers.

To whom do we disclose your information collected from the RepRisk Website?

RepRisk is committed to protecting the privacy and confidentiality of your personal information. We limit access to your personal information to authorized RepRisk staff, who, like our service providers are held to stringent standards of privacy. We also maintain physical, electronic, and procedural safeguards to protect the information against loss, misuse, damage or modification, and unauthorized access or disclosure.

International transfers - you should expect that the recipients identified above, which will receive or have access to your personal data, are located inside or outside the European Economic Area ("EEA").

For recipients located in countries which do not adduce an adequate level of protection from a European data protection law perspective, we will take all necessary measures to ensure that access to your personal data and transfers out of the EEA are adequately protected as required by applicable data protection law.

The data transfer to RepRisk affiliates is protected by standard data protection clauses adopted by the European Commission (Art. 46(2)(c) or (d) GDPR).

RepRisk uses commercially reasonable best efforts to abide by applicable laws and regulations in its use of personal data. RepRisk does not sell, trade, or otherwise transfer to outside parties your personal data.

We may disclose your information to governmental agencies or entities, regulatory authorities, or other persons in line with any applicable law, regulations, court order or official request, or under any and for the purposes of any guidelines issued by regulatory or other authorities, or similar processes as either required or permitted by applicable law.

Third-party links: Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

We will communicate any changes to our Privacy Policy on our Privacy Policy Page.
Pursuant to applicable data protection law, you may have the right to: (i) request access to your personal data; (ii) request rectification of your personal data; (iii) request erasure of your personal data; (iv) request restriction of processing of your personal data; (v) request data portability; and/or (vi) object to the processing of your personal data (including objection to profiling). Below please find further information on your rights to the extent that the GDPR applies. Please note that these rights might be limited under the applicable local data protection law.

To exercise your rights, please contact us as stated under the below contact details. You also have the right to lodge a complaint with the competent data protection supervisory authority in the relevant Member State (e.g., the place where you reside, work, or of an alleged infringement of the GDPR).

  • Email us at support@reprisk.com
  • Call us at +41 43 300 54 40

For other questions regarding data security, please contact our Data Protection Officer at dpo@reprisk.com.

Cookie Policy

Cookies are small files that a website or its service provider transfers to your computer's hard drive through your Web browser (if you allow cookies) that enables the website's or service provider's systems to recognize your browser and capture and remember certain information. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.

Cookies are useful because they allow a website to recognize a user's device. Cookies play a variety of roles, including helping you to efficiently navigate between pages, remembering your preferences, and generally improving the user experience.

Our website and the web-analytics tools may also set cookies on your browser or read existing cookies to measure user interactions with our website. You can use incognito mode to browse the web without recording webpages and files in your browser. Cookies are deleted after you close your incognito windows and tabs, and your bookmarks and settings are stored until you delete them. You can also clear any existing cookies from within your browser. You can update your cookie preferences anytime.

How does RepRisk use cookies?

We use cookies on our website to:

  • Understand the total number of visitors to our sites on an ongoing basis and the types of internet browsers (e.g. Firefox, Safari, Google Chrome, or Microsoft Edge) and operating systems (e.g. Windows or Macintosh) used by our visitors
  • Monitor our sites' performance, including how visitors navigate our website, and to improve our website in order to better serve you
  • Customize and enhance your online experience

Third-party cookies

We use cookies from the following third parties to track the success metrics of our campaigns:

  • Google / Google AdSense
    Google / Google AdSense may use user data. You can review Google’s privacy policy regarding advertising here. That page also provides information on how to manage what information is collected and how to opt out of data collection.

  • DoubleClick
    DoubleClick cookies are used by Google in the ads served on websites of its partners, such as websites displaying AdSense ads or participating in Google certified ad networks. When you visit a partner’s website and either view or click on an ad, a cookie may be added on your browser.

  • LinkedIn
    LinkedIn cookies and similar technologies are used for making interactions with LinkedIn Services faster and more secure, customizing the user experience on LinkedIn Services, and for remembering information about the visitor's browser and preferences.

  • Matomo
    Matomo cookies collect user statistics to help us understand our website usage in order to improve functionality and provide a better user experience. The data collected is anonymized.

  • Microsoft
    Microsoft cookies and similar technologies are used for storing and honoring preferences and settings, enabling sign in, providing interest-based advertising, combating fraud, analyzing how their products perform, and fulfilling other legitimate purposes. Microsoft apps use additional identifiers, such as the advertising ID in Windows described in the Advertising ID section of this privacy statement, for similar purposes.

  • Pardot/SalesForce
    Pardot/SalesForce cookies collect visitor and prospect activity on the website and landing pages for tracking purposes. Pardot cookies do not store personal identifying information, only a unique identifier.

  • SmartRecruiters
    SmartRecruiters cookies register which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience.

Additionally, Google may collect cross-website behavioral information through these solutions for the purpose of remarketing, re-engagement, and identifying similar audiences in order to serve their ads better.

More specifically, we use cookies and other tracking technologies for the following purposes:

Essential (9 Cookies)

Essential cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

CookieConsent

Stores the visitor's cookie consent state for the current domain.

Cookiebot

Expiry - 1 year

email

Used by the website to remember the visitors who gain access to the gated publications for urestricted access upon future visits.

RepRisk

Expiry - 10 years

gclid

Stores the gclid value of the website visitors coming through Google Ads in order to calculate the conversion rate.

RepRisk

Expiry - 3 months

mtm_campaign

Stores the campaign info of the website visitors in order to calculate the conversion rate.

RepRisk

Expiry - 3 months

msclkid

Stores the msclkid value of the website visitors coming through Microsoft Ads in order to calculate the conversion rate.

RepRisk

Expiry - 3 months

AWSALB

Registers which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience.

SmartRecruiters

Expiry - 7 days

AWSALBCORS

Registers which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience.

SmartRecruiters

Expiry - 6 days

__cf_bm

Cookie by Cloudflare on end-user devices that access customer sites protected by Bot Management or Bot Fight Mode.

ZoomInfo

Expiry - 30 minutes

_cfuvid

Related to cloudflare Rate limiting.

ZoomInfo

Expiry - Session

Statistic (13 Cookies)

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_GRECAPTCHA

This cookie is set by Google's recaptcha service in order to distinguish between humans and bots in the event of spam attacks.

Google

Expiry - 6 months

mtm_cookie_consent

Determines whether the user has accepted the cookie consent box.

Matomo

Expiry - 1 year

_pk_id#

Collects statistics on the visitor's visits to the website, such as the number of visits, average time spent on the website and what pages have been read.

Matomo

Expiry - 1 year

_pk_ses#

Used by Piwik Analytics Platform to track page requests from the visitor during the session.

Matomo

Expiry - 1 day

lpv#

Used in context with behavioral tracking by the website. The cookie registers the user’s behavior and navigation across multiple websites and ensures that no tracking errors occur when the user has multiple browser-tabs open.

Pardot/SalesForce

Expiry - 1 day

pi_opt_in# [x2]

This opt-out cookie identifies if the visitor has deselected any cookies, trackers or other audience targeting tools.

Pardot/SalesForce

Expiry - 10 years

visitor_id# [x3]

The visitor cookie sets a unique visitor ID and a unique identifier to make sure that the visitor is linked to the correct Pardot account/campaign.

Pardot/SalesForce

Expiry - 10 years

visitor_id#-hash [x3]

The visitor hash cookie contains the visitor ID and stores a unique hash. This cookie is a security measure to prevent a malicious user from faking a Pardot visitor and accessing corresponding prospect information.

Pardot/SalesForce

Expiry - 10 years

Marketing (25 Cookies)

Marketing cookies are used to follow visitors on websites. The intention is to show ads that are relevant and appealing to the individual visitor and therefore more valuable to publishers and advertising third parties.

IDE

Used by Google DoubleClick to register and report the website visitor’s actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

Google

Expiry - 1 year

_gcl_au

Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.

Google

Expiry - 3 months

_gcl_aw

Used by the conversion linker for click information. This cookie is set when a visitor clicks on a Google ad that lands him/her on the website. It contains information about which ad was clicked so that conversion metrics can be linked back to the ad.

Google

Expiry - 3 months

pagead/1p-conversion/#

Tracks view-through conversion to measure return on investment (ROI) for display campaigns and optimize campaigns based on how users are responding to display ads.

Google

Expiry - session

pagead/1p-user-list/#

Tracks if the visitor has shown interest in specific products or events across multiple websites and detects how the user navigates between sites. This is used for measurement of advertisement efforts and facilitates payment of referral-fees between websites.

Google

Expiry - session

pagead/landing [x2]

Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement. This also allows the website to limit the number of times that they are shown the same advertisement.

Google

Expiry - session

pagead/viewthroughconversion

Tracks view-through conversion to measure return on investment (ROI) for display campaigns and optimize campaigns based on how users are responding to display ads.

Google

Expiry - session

test_cookie

Used to check if the visitor's browser supports cookies.

Google

Expiry - 1 day

AnalyticsSyncHistory

Used in connection with data-synchronization with third-party analysis service.

LinkedIn

Expiry - 29 days

bcookie

Used by the social networking service, LinkedIn, for tracking the use of embedded services.

LinkedIn

Expiry - 1 year

bscookie

Used by the social networking service, LinkedIn, for tracking the use of embedded services.

LinkedIn

Expiry - 1 year

lidc

Used by the social networking service, LinkedIn, for tracking the use of embedded services.

LinkedIn

Expiry - 1 day

li_gc

Stores the user's cookie consent state for the current domain.

LinkedIn

Expiry - 179 days

ln_or

Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator.

LinkedIn

Expiry - 1 day

UserMatchHistory

Ensures visitor browsing-security by preventing cross-site request forgery. This cookie is essential for the security of the website and visitor.

LinkedIn

Expiry - 29 days

MUID

Used widely by Microsoft as a unique user ID. The cookie enables user tracking by synchronising the ID across many Microsoft domains.

Microsoft

Expiry - 1 year

_uetmsclkid

Stores the _uetmsclkid value of the website visitors coming through Microsoft Ads in order to calculate the conversion rate.

Microsoft

Expiry - 3 months

_uetsid x [2]

Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement - This also allows the website to limit the number of times that they are shown the same advertisement.

Microsoft

Expiry - 1 year

_uetvid x [2]

Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.

Microsoft

Expiry - 1 year

_uetsid_exp

Contains the expiry-date for the cookie with corresponding name.

Microsoft

Expiry - persistent

_uetvid_exp

Contains the expiry-date for the cookie with corresponding name.

Microsoft

Expiry - persistent

_zitok

  • It's a first party cookie for maintaining a unique visitor identifier.
  • This cookie is used for WebSights, FormComplete, Chat and Schedule products.
  • It contains an opaque GUID to represent the current visitor.

ZoomInfo

Expiry - 1 year

Managing and Deleting Cookies

RepRisk respects its clients’ and website visitors’ privacy and understands that you may want to control which cookies are set as part of your visit to our website. You can manage the use of cookies on your devices by using functions available on most internet browsers, and cookies can also be deleted by your device's storage medium at any time. You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You can do this through your browser (e.g. Firefox, Safari, or Internet Explorer) settings. Each browser is a little different, so look at your browser's Help menu to learn the correct way to modify your cookies.

RepRisk does not have control on how third-party cookies and tracking technologies are designed to function. If you wish to revoke third-party cookie consent after accepting it, we recommend clearing your browser cookies and cache.

If you choose to delete or refuse a cookie, please bear in mind that you may not be able to use the full functionality of our website, and any communications you receive from us may be less relevant to you than they might otherwise have been.

To learn more about the use of cookies, including how to manage or delete them, visit http://www.aboutcookies.org/.

2024