Metropolis Group (Metropolis Group Holdings Ltd) is a media group with a number of media brands which are shown on its website www.metropolis.co.uk. Our principal business activities involve the creation and delivery of information to businesses and consumers through organising events, conferences, exhibitions, publishing magazines, delivering content digitally through our websites and by email and socially and the provision of ad hoc marketing services to our customers.
The following companies in our group (with company registration number) are data controllers:
Metropolis International Group Limited – 02916515
Innovare Media Limited - 0781637
MPI Media Limited - 486758
Diamond Publishing Limited - 04611236
EMAP Publishing Limited – 07880758
Metropolis Financial Platforms Limited – 06439194
Crambeth Allen Publishing Limited - 04718665
The registered address of all of these companies is 10th Floor, Southern House, Wellesley Grove, Croydon, CR0 1XG except MPI Media which is 23 Fitzwilliam Street Upper, Dublin 2. Metropolis Group respects the privacy of every person for whom we have personal data [“data”]. We comply with data protection legislation such as the Data Protection Act 2018 and the General Data Protection Regulation which regulates the processing of data and ensures that your data is processed fairly and lawfully, is kept secure and only that data necessary for any processing is kept.
This policy summarises the information we may collect about you and how we may use that data. We primarily collect data to provide you with services you have requested, to provide services likely to meet your needs, to improve services provided to you and to sell advertising space to help us provide many services free of charge. The policy tells you how we ensure the information we have is kept accurate and how you can request access, deletion, rectification, restriction, transfer and withdraw consent (where applicable) and make a complaint.
We have a number of businesses within the group and each may collect and use data about you in different ways. In the event that one of those businesses does use data other than detailed in this policy, it will publish its own policy on its own web site and you should refer to the privacy policy of that business and not this group policy. Both at a business and group level we may update the privacy policy at any time without notice so please check back regularly so you are aware of any changes. This privacy policy is subject to our terms and conditions which are found on each business’s website.
1. What Information do we collect and how is this collected?
We only collect personal information if we have your permission, or we have reasonable commercial reasons for doing this, such as collecting information to process event registrations or to supply you with services. We will only collect the minimum amount of information we need to do these things.
We may collect some of the following data such as name, job title, company that employs you, home post code, email address, birthdate, telephone number, gender, purchasing preferences and history, content you post on our websites, and content you read on our websites plus various other data. This data may be collected when you order a service or product, use our websites (or a third-party website e.g. to pay for a subscription), post content to our websites, sign up for a newsletter or subscription, on completion of a survey, questionnaire or entry to a competition, or by communication to us by email, phone and by other means.
When you pay us, we will record details of the financial transaction but do not directly store your debit or credit card information. Online payments are made through our websites but are processed securely by a third-party payment provider: we only store the last 4 digits of your credit card number.
If you use our website, we may record your IP address, registration details and your browsing history such as the pages you have visited within our sites. If you sign up for a newsletter, we may track your response e.g. open a newsletter or click on a link in a newsletter or the pages you visit.
For employees we keep personal data needed to recruit you, pay you, provide company benefits and to fulfil our legal obligations.
We do not share personal data with third parties for marketing purposes, other than with your direct consent which you may withdraw at any time, except when you attend a sponsored event where we may share some of your data with the event sponsor(s): if we do this we will inform you and you will have the opportunity of opting out.
2. Cookies
We use cookies to monitor web usage. Cookies are written to the hard drive of a web user, they contain no personal information about the website user and only keep a record of the sites visited and actions on the web site. Some cookies expire after your browser is closed whilst others stay on your hard drive. They are of standard use across many websites. We use them on an aggregated information basis and to assess your areas of interest – they are used to identify the number of unique visitors to a site, to improve further web visits (store preferences, user name and your email address so you don’t need to reinput every time you visit) and to improve the user experience for you by, amongst other things, providing content based on your preferences. We use the following categories of cookies on our websites: (1) Strictly necessary cookies. These cookies are essential in order to enable you to move around the website and use its features. Without these cookies, services you have asked for such as remembering your login details cannot be provided. These cookies cannot be disabled (2) Performance cookies. These cookies collect anonymous information on how you use a website. The data stored by these cookies never shows personal details from which your individual identity can be established. Without these cookies we cannot learn how the website is working to make improvements which improves your browsing experience (3) Functionality cookies. These cookies remember choices you make and then can be used to provide you with an experience more appropriate to your selections and to make the visits more tailored and pleasant. The information these cookies collect may be anonymised and they cannot track your browsing activity on other websites (4) Targeting or advertising cookies. These cookies collect information about your browsing habits in order to make advertising more relevant to you and your interests. They are also used to limit the number of times you see an advert as well as help measure the effectiveness of an advertising campaign. They remember the websites you visit and share that information with advertisers. We are in the process of updating our systems so that when you visit a website we ask for your consent to show you personalised advertisements based on your browsing habits.
Most browsers offer you ways to control or block cookies should you wish to. These browser controls will usually be found in the “options” or “preferences” menu in your toolbar. The “help” portion of the toolbar on most browsers will tell you how to stop or manage cookies. Note that should all cookies be rejected we are unable to match site content appropriate to the preferences given to us by previous visits and you will not be able to fully utilise all of the web site features. For further information on cookies visit aboutcookies.org or the Information Commissioner's webpage on cookies ico.org.uk/for-the-public/online/cookies/.
3. Legal basis for processing data
Different legal bases are used which depend upon the purpose for processing your data.
- When data is provided when purchasing a product or service under a contract with you we process your data under contract necessity with the data being needed to fulfil the contract.
- When you sign up for a newsletter, an event or magazine subscription we process your data under consent
- Any additional processing i.e. sharing data with third parties, marketing to you on behalf of third parties is done through either consent or legitimate interest. In the case of legitimate interest, we have balanced our interests with yours and do not believe these activities will have a negative impact on your privacy rights and freedoms. Examples of where we rely on legitimate interest include sharing your contact details with event sponsors, contacting you about relevant products and services relating to the portfolio of an event you have attended, researching publicly available business contact details, customising the content you see on our websites. In each case where we rely on legitimate interests you have the option to opt out of the processing of your data.
- When you pay us, or we pay you, we only keep data as long as it is necessary to comply with the law.
4. Use of personal data
We will only use personal information for the purpose it was collected. Should we ever wish to use it for another purpose we will contact you first asking you for your consent. We primarily use data to communicate with you, deliver the service you have requested, or services that might interest you (subject to your right to opt out with the details on how to do this found on each business website), to renew a subscription, improve our service, to verify your identity when taking payment or to meet legal, regulatory and compliance requirements.
Profiling – from time to time we may use some elements of the data you supply to target the messages we send you. For example, we may use your location to send you information about an event which is happening in the same country, or we may use your company type or job title to send you a relevant news story. We do not use this information to make automated decisions.
5. How long do we keep your data for?
Data is not kept any longer than is required for the purposes of the processing or to comply with the law. As we collect data for many different purposes there is not a single retention period for all data. We instead carefully assess the length of time to retain data according to the processing purpose and to comply with our legal obligations. When data is no longer required for the purposes of the processing it is securely removed from our systems.
6. Security & Confidentiality
Metropolis takes commercially reasonable physical, technical and administrative measures to protect personal information from theft, misuse or accidental destruction and to keep it confidential. We aim to protect personal information but cannot provide a 100% guarantee of security. All employees and data processors (third parties who process data on our behalf) who access your data are obliged to keep the information confidential and secure and not to use it for any other purpose other than that they are contracted to carry out for us.
7. Transfer of data to third parties
We may use third party providers e.g. for web site hosting, web maintenance, email alerting, subscription fulfilment and taking payment. We share information with these third party to provide these services. We collect broad statistical anonymised information on an aggregate basis, which doesn’t identify you personally, which we may provide to third parties to sell advertising. This allows us to provide content free of charge. We will also share data with public or regulatory authorities where required by law or to enforce our terms of service. We take reasonable commercial steps to ensure that your data is kept secure and confidential by any third party, is deleted when not needed for the purpose it was given, that their data privacy policies protect your data and that they only process your data on our instruction. We do not sell or rent your personal data, although we may transfer, sell or assign your data outside of our group to a third party if we merged, sold or reorganised all, of part, of the group. Your data will be processed fairly, lawfully and securely in the UK and will only be transferred outside of the European Union when there is protection in place for your rights and when the data will be kept secure.
8. Withdrawal of consent
When you have provided consent, if you should wish to withdraw that consent, you can let us know by sending an email (details provided on the business website) or by emailing dataprivacy@metropolis.co.uk including the email address and brand associated with your account and we will remove your data from our systems.
9. Restriction of liability
Our websites link to other websites. Metropolis is not responsible for the privacy policies of those websites nor does it have or accept any liability for their content.
10. Legal information and how to contact us
You have the right to see, erase and correct data we hold, the right to restrict the processing we do, and the right to object to it and to have your data transferred to a third party. If you wish to do any of these things or have any questions about how we use your data, or wish to make a complaint about any privacy issues, please contact the Group Data Privacy Lead – Richard Hutchinson at richard.hutchinson@metropolis.co.uk or write to him at:
Richard Hutchinson
Group Data Privacy Lead
Metropolis International Group Limited
10th Floor
Southern House
Wellesley Grove
Croydon CR0 1XG
Requests will be dealt with and responded to within a reasonable period, and no longer than 30 days. If you are not satisfied with the way your request was handled you have the right to lodge a complaint with the supervisory authority – details of which are given below:
Information Commissioner’s Office
https://ico.org.uk/concerns/
Telephone: +44 303 123 1113
As we are based in the United Kingdom, we have appointed Richard Hutchinson, a director of our Irish subsidiary MPI Media Limited to be our representative within the EEA. His contact details are
Richard Hutchinson
c/o MPI Media Limited
23 Fitzwilliam St
Upper Dublin 2
Telephone number 0044 208 752 8144
Email richard.hutchinson@mpimedia.ie