Privacy Policy

Effective Date: May 2018

At CLR Code Limited (‘CLR Code’) we are committed to protecting and respecting your privacy. We hold, as with most businesses, personal information about our customers and people who may be interested in our products and services.

This privacy policy applies to all of CLR Code’s operations globally. It explains the type of information we process, how that processing may affect you and your rights.

CLR Code will occasionally update this privacy policy. We will post a notice of any material changes on our website prior to implementing the changes, and, where appropriate, notify you using any of the contact details we hold for you for this purpose. We encourage you to periodically review our policies to be informed of how we use your information.

Our Data Protection Officer is: HewardMills and can be contacted at   Any questions regarding this policy and our privacy practices should be sent by email to or by writing to Head of Legal, CLR Code Limited, c/o Ascential Group Limited, The Prow, 1 Wilder Walk, London, United Kingdom, W1B 5AP.

If you wish to make a complaint about how we use your information, please contact us at and we will do our best to help. If you are still unhappy, you can contact the appropriate data protection supervisory authority. The UK Information Commissioner’s Office can be contacted via their website.

Please see the Definitions section for definitions of terminology used in this Privacy Policy.

  1. About Us

    CLR Code Limited, company number 10411689 (England and Wales) collects or receives your data under this privacy policy as a data controller for the purposes of EU Data Protection Legislation.

  2. Information we collect

    Collection directly from you

    Most of the personal data we process about you comes directly from you for example:

    • when you contact us (by email, phone, mail or in person);
    • when you subscribe to our newsletter;
    • when you sign up to attend an event relating to a particular area of interest;
    • when you become a designated contact ; and/or
    • when you express an interest in our products and services (such as when attending an event) to one of our staff or representatives.

    Please note that we may record conversations made with our Sales, Account Management and Customer Service teams.
    Automatic collection when you contact us or visit our website
    We automatically collect information about you as follows:

    • our websites automatically log web log server information (please see the table below);
    • we collect data through cookies. Cookies are small pieces of information which are issued to your computer or any similar device you use to access the internet e.g. smart phone, tablet or other mobile device when you visit a website and which store and sometimes track information about you’re use of the website. Please see our cookies policy; and

    Information obtained from other sources
    We may obtain publicly available professional information about you (as detailed in the Data Processed section below) from third parties or online publications. This information is used in the following ways:

    • to ensure that the information we hold about you is accurate and up to date;
    • to ensure that we have all the information we need to provide or offer you with a product or service; and
    • to help us to provide the best service possible, in the most efficient manner.
  3. Why we process your data

    This section details the information what we collect, the purpose for its collection and use, and the legal basis for the processing.

    Purpose 1 Personal data Processing Ground

    To respond to your communications and to retain a record for quality and training purposes.


    • First Name
    • Last Name
    • Job Title
    • Company Name
    • Email address
    • Telephone Number

    We may also record any telephone conversations.

    Legitimate interest / Performance of a Contract

    To provide you with CLR Code products and services.

    • First Name
    • Last Name
    • Job Title
    • Company Name
    • Email address
    • Telephone Number


    We may also record any telephone conversations.

    Performance of a Contract.

    To ensure network and information security.

    Web log server information:

    • IP address
    • Browser type and operating system
    • Pages visited during your visit
    • source of your access to our website (e.g. the social media platform, website or URL (link) which referred you to our website).

    Legitimate interest.

    To monitor the performance of our website and improve user experience.

    Web log server information (see above).

    Legitimate interest.

    To contact you or to stay in touch with you about our products and services.



    • First name
    • Last name
    • Job Title
    • Company Name
    • Email address
    • Telephone Number

    We may also record any telephone conversations.

    Legitimate interest; or
    Consent or Soft opt-in

    To register you for an event, and to send you confirmation and further event information. We will also use your name at the event to confirm attendance and ensure your health and safety when you attend in person.

    When you register for an event:

    • First name
    • Last Name
    • Job Title
    • Company Name
    • Email address
    • Telephone Number

    Fulfilment of a contract;
    Legitimate interest; or
    Protection of vital interests.

    Informing our product and services strategy to enhance and personalise our customer experience and offerings.
    Informing our marketing strategy to ensure our communications with you are relevant.


    • First name
    • Last Name
    • Job Title
    • Company Name
    • Email address
    • Telephone Number


    Legitimate interest.

    To determine your interest in our products and services.

    • First name
    • Last Name
    • Job Title
    • Company Name
    • Email address
    • Telephone Number


    • Analysis of your engagement with our website, content, products and services

    Legitimate interest.

    1 Where Legitimate Interest is the processing Ground, the legitimate interest is provided in the Purpose column.

  4. Special Categories of Personal Data

    We do not knowingly or intentionally collect special categories of personal data from individuals and we request that you please do not submit special categories of personal data to us.

  5. How we share your data

    We share your data in the manner and for the purposes described below:

    • CLR Code is part of Ascential Plc. CLR Code shares information with Ascential-controlled affiliates and subsidiaries, where such disclosure is necessary to provide you with our services or to manage our business. It is our legitimate interest to process your personal data for these purposes;
    • with third parties who help manage our business and deliver services. These third parties have agreed to confidentiality restrictions and use any personal information we share with them or which they collect on our behalf solely for the purpose of providing the contracted service to us. These include: IT service providers, customer relationship management services and marketing automation, solutions and analytics providers;
    • with our regulators, to comply with all applicable laws, regulations and rules, and requests of law enforcement, regulatory and other governmental agencies;
    • we may share in aggregate, statistical form, non-personal information regarding the visitors to our website, traffic patterns, and website usage with our partners or affiliates; and
    • If, in the future, we sell or transfer some or all of our business or assets to a third party, we may disclose information to a potential or actual third party purchaser of our business or assets.
  6. Explaining more about direct marketing and profiling

    How we use personal information to keep you up to date with our products and services
    We may use personal information to let you know about CLR Code products and services that we believe will be of interest to you. We may contact you by email, post, or telephone or through other communication channels that we think you may find helpful. In all cases, we will respect your preferences for how you would like us to manage marketing activity with you. 

    How you can manage your marketing preferences
    To protect privacy rights and to ensure you have control over how we manage marketing with you:

    • we will take steps to limit direct marketing to a reasonable and proportionate level and only send you communications which we believe may be of interest or relevance to you;
    • you can ask us to stop direct marketing at any time - you can ask us to stop sending email marketing, by following the 'unsubscribe' link you will find on all the email marketing messages we send you. Alternatively you can contact us at Please specify whether you would like us to stop all forms of marketing or just a particular type (e.g. email); and
    • you can change the way your browser manages cookies by following the settings on your browser as explained in our cookies policy.

    When and how we undertake profiling and analytics
    In order to understand your interest in our products and services and/or to ensure that we only send you communications which we believe may be of interest or relevance to you we analyse your engagement with our website, content, products and services. For example, your level of engagement or a specific topic of engagement will lead us to infer what is of most interest to you and if you we may offer you similar further content or related services.

  7. Data Retention

    We retain your information for no longer than necessary for the purpose for which it was collected. In determining how long your information will be stored, we will consider:

    • the purpose(s) and use of your information both now and in the future;
    •  what information we need to:
      • best provide you with products and services;
      • manage your relationship with us;
      •  meet our statutory obligations;
      • develop our products and services; and
      • meet our customers’ and previous customers reasonable expectations.
  8. Geographic Data Transfers

    As a global organisation and as an Ascential Plc group company with a presence in more than 150 countries, CLR Code may transfer your personal data outside the EEA to provide the best service possible to our customers and in the most efficient manner. In all instances, we take steps to ensure that transfers of personal information are in accordance with applicable law and carefully managed to protect your privacy rights and interests and transfers are limited to countries which are recognized as providing an adequate level of legal protection or where we can be satisfied that alternative arrangement are in place to protect your privacy rights. To this end:

    • we ensure inter-company transfers are covered by appropriate agreement(s) which contractually obliges each member to ensure that personal information receives an adequate and consistent level of protection wherever it is transferred within the Ascential Plc group, e.g. Standard Contractual Clauses;
    • where we transfer your personal information outside the Ascential Plc group or to third parties who help provide our products and services, we obtain contractual commitments from them to protect your personal information. Some of these assurances are well recognized certification schemes like the EU - US Privacy Shield for the protection of personal information transferred from within the EU to the United States; or
    • where we receive requests for information from law enforcement or regulators, we carefully validate these requests before any personal information are disclosed.
  9. Data Subjects' Rights within the EEA

    In the EEA, data subjects have the following rights:

    • to request access to your information and information related to our use and processing of your information;
    • to request the correction of your information (We may seek to verify the accuracy of the personal information before rectifying it);
    • in certain situations to ask us to erase, block or restrict the personal information we hold about you, or object to particular ways in which we are using your personal information; and
    • in certain situations, you can also ask us to send the personal information you have given us to a third party.
    • to ask to obtain a copy of, or reference to, the safeguards under which your personal information is transferred outside of the EEA.
    • to withdraw your consent to our use of your information at any time where we rely on your consent to use or process that information. This will not affect the lawfulness of our processing of your data prior to your withdrawal;
    • to object to the processing of your information for certain purposes, namely:
      • to us using or processing your information where we use or process it in order to carry out a task in the public interest or for our legitimate interests;
      • to object to us using or processing your information for direct marketing purposes. You may also exercise your right to object to us using or processing your information for direct marketing purposes by clicking the unsubscribe link contained at the bottom of any marketing email we send to you and updating your preferences, or as a subscriber by visiting the preference centre on our website and changing your preferences.

    For more information on how to object to our use of information collected from cookies and similar technologies, please see our cookies policy.
    You can exercise your rights by writing to us at Head of Legal, CLR Code Limited, C/O Ascential Group Limited, The Prow, 1 Wilder Walk, London, United Kingdom, W1B 5AP or by sending an email to
    You have a right to lodge a complaint with your local supervisory authority if you have concerns about how we are processing your personal information. We ask that you please attempt to resolve any issues with us first, although you have a right to contact your supervisory authority at any time. 

  10. Data Subjects' Rights in California

    If you are a resident of California you may have a right pursuant to Section 1798.83 of the California Civil Code to obtain certain information about the types of personal data that we have shared with third parties for direct marketing purposes during the preceding calendar year, including the names and addresses of those third parties, and examples of the types of services or products marketed by those third parties.
    Please contact us at if you would like to exercise any of your rights explained above in relation to your personal data.

  11. Do not Track

    Some browsers offer a “do not track” (“DNT”) option. For information about Do Not Track, please visit
    At this time we do not respond to DNT signals. For information on how to block and opt out from tracking technologies used on our website, please see our cookies policy.

  12. Third Party Websites

    Please be aware that CLR Code does not control and is not responsible for websites that are referred to or linked from its own websites and that use of your personal information on these websites is not subject to this Privacy Policy.

  13. Persons 18 or under

    We are concerned to protect the privacy of children. We do not knowingly contact or collect information from persons under the age of 18. The website is not intended to solicit information of any kind from persons under the age of 18.
    If you believe that we have received information pertaining to or from persons under the age of 18 please contact us at If we become aware that a person under the age of 18 has provided us with personal information, we will take steps to delete such information.

  14. Definitions

    Compliance with a legal obligation - processing is necessary to ensure we comply with our legal and regulatory obligations.

    Consent – you have given specific consent to the processing of your personal data.

    Data Controller – the entity that determines the purposes and means of processing personal data.

    EEA – the European Economic Area which comprises countries that are members of the European Union and Norway, Iceland and Liechtenstein.

    Identifiable natural person - a person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

    Legitimate Interests - processing is necessary for our or a third party’s legitimate interests in carrying on, managing and administering our respective businesses effectively and properly (except where our or the third party’s interests are overridden by your own interests, rights and freedoms).

    Performance of a Contract – processing is necessary to carry out our contractual duties, exercise our contractual rights or otherwise perform our Contract with you, or to take steps at your request to enter a Contract.

    Personal Data - any data relating to an identified or Identifiable natural person.

    Processing - means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

    Special categories of personal data - personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, genetic or biometric data processed for the purpose of uniquely identifying a natural person, data concerning Vital Interests – processing necessary protect an interest which is essential for the life of the data subject or that of another natural person.

Coloro Workspace