Data Subscription - eGOLD (Executive Grapevine Online Database of Executive Recruitment Consultants)

These terms and conditions are to be read in conjunction with the General Terms & Conditions for all EGIL services, the GDPR policy and precise details outlined of the campaign as stated in the Booking Form.

(1) DATA OWNERSHIP

All Data (Business Contact Information, Individual Recruiting Areas and other relevant searchable attributes) or parts thereof are owned by and copyrighted by Executive Grapevine International Limited (EGIL). Unless otherwise specified in the Contract Executive Grapevine's or its Agent's access to the data is leased to the Buyer for 12 months only and no intellectual property rights of any Data shall pass to the Buyer under the Contract. The Data must not be copied or recorded by the Buyer or its Agents, or in any way processed by the Buyer or its Agents other than in accordance with the Contract or as agreed in writing by Executive Grapevine. Data supplied must, in no circumstances, be offered for resale by the Buyer.

(2) DATA ACCURACY

All data is collected in accordance with The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679). This is a new regulation which replaces the Data Protection Regulation (Directive 95/46/EC). The Regulation aims to harmonise data protection legislation across EU member states, enhancing privacy rights for individuals and providing a strict framework within which commercial organisations can legally operate. Even though the UK has expressed its intention to leave the EU in March 2019, the GDPR will be applicable in the UK from 25th May 2018. Furthermore the Information Commissioner's Office (ICO) has recently laid out its intention to continue with a similar level of regulation post Brexit.

EGIL uses all reasonable endeavours to ensure Data is accurate and up to date. The lists are compiled both directly from the data subjects and publicly available information, but EGIL cannot warrant that any of the records are 100% complete. EGIL will rely on Article 6(1)(f) GDPR as a lawful basis for processing Personal Data.

  • Article 6 (1)(f): 'processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental right and freedoms of the data subject which require protection of Personal data, in particular where the data subject is a child'.
  • Specifically, Recital 47 affirms 'The legitimate interests of a controller, including those of a controller to which the Personal data may be disclosed, or of a third party, may provide a legal basis for processing, provided that the interests or the fundamental rights and freedoms of the data subject are not overriding, taking into consideration the reasonable expectations of the data subject based on their relationship with the controller'.

EGIL undertake to balance the rights of both the individual data subject and any third party to whom the data is passed, taking into consideration the reasonable expectations of data subjects and the provision of Recital 47.

Whilst EGIL agrees that all Data has been fairly and lawfully obtained in accordance with the GDPR and the current Data Protection Act 2018, no warranty is given regarding the accuracy or completeness of individual addresses, contact names or telephone numbers or that any list is a complete compilation of the categories of persons or establishments described therein. The Buyer should ensure that data has been downloaded no more than 5 days from the system before attempting to use it.

EGIL is not responsible or liable for email addresses that prove to be undeliverable due to technical reasons. A list of Undeliverables including a reason for non-delivery must be returned to EGIL in an Excel or comma separated format document within 30 days of the send date of the campaign that generated the Undeliverables, if EGIL are to be expected to investigate.

EGIL offer to investigate shall not apply where the Buyer decides to use a method of delivery such as the use of an SMTP (Single Message Transfer Protocol) such as Outlook, Netscape and Lotus.

(3) LIABILITY

EGIL warrants that it has compiled with all the relevant data protection laws (including without limitation the DPA, GDPR and PECR) and the UK's Direct Marketing Association's Code in the collection and onward transfer of its Data.

EGIL does not accept liability for the outcome of the use of its Data. In no event will EGIL be liable for any loss of profit, revenue, goodwill, opportunity, business, third-party cost, ICO breach fines or other indirect or consequential loss of any kind in contract, tort (including negligence) or otherwise arising out of use of its Data, save where such liability cannot be excluded by law.

The Buyer warrants it shall ensure that its Users shall only use the Database in accordance with the terms of this Agreement and specifically in accordance with the GDPR and e-Privacy Directive known as PECR and shall not infringe any of EGIL IPRs in the Database. The Buyer agrees to fully indemnify EGIL against any losses, damages or costs incurred by EGIL as a result of any breach of these warranties.

For the purposes of this Agreement EGIL and the Buyer are both data controllers. Both parties will comply with all applicable Data Protection Legislation and General Data Protection Regulation (GDPR) in connection with the processing of Personal Data pursuant to this Agreement and will not do, or cause, or permit to be done, anything which may result in a breach by the other party of the same. In particular both parties will:

a. ensure that it is notified with the Information Commissioner's Office public register of data controllers and such notification is accurate and up-to-date;

b. implement and maintain appropriate technical and organisational measures to protect Personal Data against unauthorised or unlawful processing and against accidental loss, destruction, damage, alteration or disclosure. Such measures will be appropriate to the harm that might result from unauthorised or unlawful processing or accidental loss, destruction or damage to Personal Data and to the nature of the Personal Data to be protected

c. promptly notify the other party if it receives a request from an individual for access to their Personal Data. Each party will also promptly notify the other party of any other complaint or request relating to either party's obligations under relevant Data Protection Legislation and will provide full cooperation and assistance to the other party in relation to any such complaint or request (including, without limitation, allowing individuals to have access to their Personal Data).

The Buyer will not transfer any Personal Data that it receives pursuant to this Agreement to any third party or outside the European Economic Area without EGIL's prior written consent.

Without limitation, EGIL does not provide any warranties or representations regarding:

a. the accuracy, timeliness or completeness of the Database or the Service

b. the satisfactory quality, merchantability, suitability or fitness for purpose of the Database or the Service

c. the results that may be obtained from reliance on the Database or the Service

d. the performance, availability, lack of negligence, workmanlike effort or delivery of the Database or the Service

e. the provision of the Service free from any virus, worms, time locks or anything else that has contaminating or destructive properties.

Furthermore, the Database is only for general information and use and is not intended to address particular requirements. In particular, the Database does not constitute any form of advice, recommendation, representation, endorsement or arrangement by EGIL and is not intended to be relied upon in making (or refraining from making) any specific investment or other decisions. Appropriate independent advice should be obtained before making any such decision. Any information received through the Service, whether or not it is classified as “real time”, may have ceased to be current at the time it is received.

Without limiting the foregoing:

a. the Buyer agrees that EGIL shall not have any liability for any late delivery of, inaccuracies or omissions in the Database or the Service;

b. the Database is provided “as is” and neither EGIL Grapevine nor its partners who have been involved in the creation, production or delivery of the Database or the Service shall be liable for any direct or indirect damages arising out of the use of, or the inability to use the Database or the Service.

(4) BUYER'S OBLIGATIONS

Access to the Data will be granted to The Buyer providing the following are submitted within 28 days of the purchase date. These are subject to the approval of EGIL's Data Controller Representative. In the case of agent purchasing on behalf of a third party, then both parties must complete the following where applicable.

a. Complete a Legitimate Interest Assessment Questionnaire as laid out by the Direct Marketing Association and supported by the Information Commissioner's Office

b. Provide a Copy of a GDPR compliant Privacy Policy

c. Provide a Data Subject Impact Assessment

d. Provide an example of the style of communication template to be used to ensure it has professional relevance to the data subject and demonstrates the identity of the sender and includes a straightforward opt out mechanism.

e. Proof of GDPR Compliance (specifically for a data breach)

The Buyer also

a. agrees to comply with any requests for the suppression of deceased names and also notify EGIL of any request received by the Buyer for the suppression of a deceased name or disputed data that can be identified as being included in the Data supplied by EGIL, within 30 days of receipt of the request.

b. agrees to notify EGIL within 30 days of receipt, of any request for access to, or the correction or the deletion of inaccurate data it receives from an individual whose name can be identified as being included in the Data supplied by the EGIL to the Buyer.

c. agrees to notify EGIL if any Data is found to be out of date or incorrect.

d. will, where email Data is leased to send emails, ensure that the recipient is given a simple means to opt-out of receiving further communications. The Buyer or other third party must not conceal its identity when sending, or instigating the sending of a message by electronic mail. The Buyer must provide a valid email address to which the recipient can send an opt-out request. The Buyer must forward to EGIL the details of any recipients who do exercise their right to opt-out including any comments that may be made by such recipients in an Excel or comma separated format document.

e. will, where Data is leased to send postal communications, ensure that they forward to EGIL the details of any recipients who do exercise their right to opt-out of further postal communications including any comments that may be made by such recipients in an Excel or comma separated format document.

f. shall inform EGIL in writing if they close, cease to trade, go into administration or liquidation as the Data must cease to be used as it cannot be sold on as part of a company's assets or transferred to another company.

(5) ACCEPTABLE USE POLICY

EGIL has undertaken to balance the rights of both the individual data subject and any third party to whom the data is passed, taking into consideration the reasonable expectations of data subjects and the provision of Recital 47. As such EGIL must balance the rights of data subjects across all third parties. EGIL reserves the right to monitor usage, and where it deems necessary advise the Buyer where an acceptable usage level has been breached.

All data supplied by EGIL will contain a reasonable quantity of seed names, which will be monitored to detect unauthorised usage at all times throughout and after the term of the license. EGIL considers the unauthorised usage of its data very seriously. Unauthorised usage includes, but is not limited to, disclosure, transfer, resale, re-use, data capture or copying and modification in part or in whole. If unauthorised usage is detected and confirmed upon investigation, the Buyer will be liable for a penalty charge of £5,000, payable immediately and must expunge from any storage facility owned by, or under the control of the Buyer any data contained in or derived from EGIL database. Where it is proven beyond reasonable doubt that the Purchaser, Buyer or their Nominated Third Party has supplied or resold EGIL information an immediate fine of £10,000 will be payable and the Information Commissioner's Office and Police will be informed.

(6) DATA SECURITY BREACH

In the event of a data breach, no matter how small, the Buyer shall immediately inform EGIL and the Information Commissioner's Office, if required under GDPR.

The buyer shall undertake to make public to all data subjects the nature of the breach and highlight any potential harm that the data subjects could be exposed to. If required under GDPR.

The buyer shall undertake to investigate the breach and do everything possible to limit any further impact on the data subject.

(7) THE SERVICE

EGIL shall provide the Buyer with access to the Service through the company IP addresses or on request through the Buyers own infrastructure.

The Buyer (including its Users) shall keep confidential and shall not share with any third party any “PIN”, “ID” or similar code (if applicable) that it is provided with to facilitate User access to the Service.

The Buyer shall be responsible for obtaining and maintaining all terminals, telephone, computer hardware and other equipment needed for access to and use of the Services and all charges related thereto. The Buyer acknowledges that the speed of the Service will depend upon the specification and quality of the Buyer's own terminals, connection to the Internet and the extent of the Buyer's use of the Internet.

(8) USE OF THE DATABASES AND INTELLECTUAL PROPERTY RIGHTS

Subject to the terms of this Agreement, EGIL hereby grants to the Buyer a non-exclusive, non-transferable, non-sub-licensable licence to allow its Users to use the Database for their own personal internal business use subject to meeting the GDPR standard for Legitimate Interest and other conditions laid out in Section 4, and for no other purpose.

If Data is leased by a Buyer for a third party company then the Data is only authorised to be used for that one third party company and not also the Buyer himself. EGIL will require written confirmation of the third party company's name and company details before releasing the data In this case, both the Buyer and third party must complete the requirements laid out in Section 4.

The Buyer shall be liable for the loss or misuse of Data whilst in its care, or the care of his Agent. It will be deemed an Unauthorised misuse of a list if the list is used for any activity other than the purpose for which it was originally provided. The Buyer undertakes to keep lists and any copies or extracts of lists supplied by Executive Grapevine secure and completely safeguarded against unauthorised use or disclosure.

Users may access, extract and re-utilise any insubstantial parts of the contents of the Database for research and current awareness purposes only in the normal course of business which includes:

a. making searches of the Database

b. making one or more copies in hard copy form of the output of any search provided that such copies may not be sold and may not be distributed to anyone who is not a User;

c. downloading search results to hard disk provided that such data is not made available to anyone who is not a User; at all times provided that the systematic extraction and/or re-utilisation of insubstantial parts of the Database shall not conflict with the normal exploitation of the Database and shall not cause prejudice to the interests of EGIL.

Prior to providing Users with access to the Database via the Service, the Buyer shall ensure that all Users are aware of the terms of this Agreement, including their obligation to comply with any other user terms applicable to the Service and notified to the Buyer. The Buyer shall only provide Users with access to the Service via the access method provided by EGIL and shall not provide access to anyone other than a User.

The Buyer and its Users may not use the Database and the Service in any way which in EGIL's reasonable judgment, adversely affects EGIL's business or business prospects, or where EGIL has been misled about either the contents or the Client, or it affects the performance or function of the Database or the Service or interferes with the ability of other Users to use the Database or the Service.

Except as expressly permitted by this Agreement, the Buyer shall not and shall ensure that its Users do not copy, cut and paste, email, reproduce, publish, distribute, redistribute, broadcast, transmit, modify, adapt, edit, abstract, create derivative works of, store, archive, publicly display, sell or in any way commercially exploit any part of the Database or set up derived databases.

EGIL reserves complete freedom in the form and content of the Database and may add to, remove or edit the contents of the Database at any time on a permanent or temporary basis and with or without notice.

EGIL reserves the right to monitor Database usage by all Users (in terms of volume, frequency or otherwise) during the term of this Agreement.

EGIL reserves the right to monitor its Database usage by all Users with the use of 'seeds'. These are dummy entries in the database which contain contact details owned by EGIL. They exist to protect EGIL’s intellectual property and copyright. EGIL do not pass out individual seed addresses to The Buyer or their Agents even in the event of a dispute.

This Agreement does not constitute a sale of the Database or any part of it and except as expressly provided in this Agreement no rights or licences, express or implied, are hereby granted to the Buyer or its Users in respect of the Database. The Buyer acknowledges that EGIL (or its licensors) is throughout the world the owner of all IPRs subsisting in the Database. Nothing herein contained shall be construed so as to transfer any IPRs whatsoever in the Database to the Buyer or its Users.

The Buyer acknowledges and agrees that:

a. all use of EGIL's Marks hereunder to the benefit of EGIL

b. EGIL's Marks will remain the exclusive property of EGIL

c. nothing in this Agreement shall confer upon the Buyer any right of ownership in EGIL's Marks

d. Buyer shall not now or in the future contest the validity of EGIL's Marks or take any action impairing the rights of EGIL in its Marks.

In the case of unauthorised use of the Database or the Service by the Buyer or a User, EGIL reserves the right to deny access to the Service to the Buyer or any User by blocking without prior notification the IP address(es) of the Buyer or User used to access the Service.

The Buyer authorises EGIL to provide any User Data to any third party that EGIL engages to provide any aspect of the Services for the purpose of that third party providing the Services.

The Buyer shall provide EGIL with reasonable assistance in complying with its obligations under applicable data protection and privacy laws insofar as necessary to facilitate EGIL's compliance with EGIL’s obligations in this Agreement.

The Buyer agrees that from time to time, EGIL may alter the features and functions made available, as part of the Service, but it shall use all reasonable endeavours to ensure that the overall quality, quantity and variety of features and functions remain constant.

The Buyer will keep the password and personal identifier confidential and will immediately notify EGIL if and when it becomes aware of any unauthorised third party using the password or personal identifiers.

Whilst every effort is made to quote the number of records accurately, the quantity may vary from time to time, as is reasonable, due to movements within the Data and no warranty or condition is given that the figure quoted agrees with that finally reached during the execution of the order.

EGIL may temporarily suspend the Service for the purpose of repair, maintenance or improvement of any of EGIL’s facilities which are necessary to provide the Service, or vary the technical specification of the Service for operational reasons subject to EGIL giving the Buyer as much on-line, written or oral notice as is reasonably practicable in the circumstances, and restoring the Service as soon as reasonably practicable after such temporary suspension.

EGIL reserves the right to monitor the use of the Service by the Buyer.

The Buyer acknowledges that it has no right to any physical access to the premises from which the Service is provided or any other EGIL premises.

(9) TERMINATION OF AGREEMENT

On the termination or expiry of this Agreement the Buyer’s and its Users’ rights to receive the Service shall immediately cease and the Buyer shall notify its Users that they are no longer entitled to access or use the Service. Buyers are reminded that ownership of the data set remains with EGIL at all times and does not transfer to the buyer at the end of the period, unless through the communication between the buyer and a recipient of a communication has a established a formal connection. This connection is not established by the recipient opening an email, engagement is classed by a formal acknowledgement and consent to continue communication.

The Buyer shall delete all copies of contents of the Database and return or destroy (as instructed by EGIL) all files, materials and documents supplied by EGIL before and during the Term unless the Buyer can demonstrate a legal basis to continue to process a data subjects Personal Data. The buyer must be able to demonstrate this basis for each and every data subject it wishes to retain. Use of any data after the termination date will be considered an ‘unauthorised breach’ and incur a penalty charge. Buyers should ensure that any downloaded data is adequately marked up in such a way as to allow its easy removal in a timely fashion.