Privacy Policy

Download our Privacy and Cookies Policy in your preferred language, or read the full English policy below:

English German / Deutsche French / Français Simplified Chinese / 简体中文 Italian / Italiano Traditional Chinese / 繁體中文 Vietnamese / Tiếng Việt Japanese / 日本語 Indonesian / Bahasa Portuguese (Brazil) / Português (Brasil) Spanish (LATAM) / Español (LATAM) Spanish (Spain) / Español (España)

Last updated: 15 January 2026

GlobeScan is an insights and advisory firm specializing in trust, sustainability and engagement. We equip clients with insights to navigate shifting societal and stakeholder expectations, crafting evidence-based strategies that reduce risks and create value for their organizations and society.

As a global business, GlobeScan Incorporated is committed to protecting and respecting your privacy and complying with its obligations under the data protection laws which apply in the regions in which it operates (such as, but not limited to, the General Data Protection Regulation (GDPR), UK GDPR, the California Consumer Protection Act (CCPA), the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA) and South Africa’s Protection of Personal Information Act (POPIA)).

This Privacy Policy explains how GlobeScan Incorporated (“GlobeScan”, “we”, “us”, “our”) collects, uses, discloses, and protects Personal Data when you visit our websites, receive our thought leadership, participate in our research (surveys, forums, interviews), attend our events, sign up to join our Stakeholder Community or otherwise interact with us. It also describes your rights and how to contact us.

This policy sets out:

1. Who we are and how to contact us

Controller: GlobeScan Incorporated
250 The Esplanade, Suite 116, Toronto, ON M5A 1J2, Canada
Email: privacy@globescan.com
Telephone: +1 415-445-4683

Data Protection Officer / Privacy Officer: Corinne Fontaine privacy@globescan.com

2. Scope

This Policy applies where GlobeScan acts as a controller of Personal Data processed for our own purposes (for example, our website, subscription lists, events, and expert community).

When we conduct research services on behalf of clients, we typically act as a processor and process Personal Data under our client’s instructions and contract. In those circumstances, the client’s privacy notice may also apply.

3. Types of Personal Data we process

Depending on your interactions with us, we may process:

  • Identity and contact data (name, email, phone, employer, role, country/region).
  • Professional profile and expertise (job function, areas of expertise, professional interests).
  • Research participation data (survey responses, interview notes, forum contributions, which may include opinions).
  • Technical data from your use of our websites and emails (IP address, device/browser details, preference settings, interaction data).
  • Event participation data (registration details, attendance).
  • Communications records (emails and other correspondence with us) and preference settings.

4. How we obtain Personal Data

We may collect Personal Data:

  • Directly from you (web forms, email, event registrations, surveys, interviews, forums).
  • From our clients (where a client lawfully supplies contact lists for research).
  • From reputable list providers (opt‑in lists where the provider assures appropriate consent/permission).
  • From publicly available professional sources (e.g., organisational websites, professional directories), where appropriate for outreach to experts.

5. Purposes and legal bases (Article 6 GDPR)

We process Personal Data for the purposes below, relying on one or more legal bases:

  • To provide and improve our websites, content and services
    Legal bases: legitimate interests (to operate and improve our services) and consent where required (e.g., analytics cookies).
  • To manage subscriptions and communications (e.g., newsletters, thought leadership)
    Legal basis: consent (you can withdraw at any time).
  • To deliver research services for clients (quantitative and qualitative research)
    Legal bases: performance of a contract with the client and our legitimate interests to provide services; where required, we rely on consent (including explicit consent where special categories are involved).
  • To operate communities/forums, events and webinars
    Legal bases: contract, legitimate interests (engagement and administration), and consent where required.
  • Business development and relationship management
    Legal basis: legitimate interests in B2B outreach, with opt‑out options and compliance with applicable e‑privacy rules.
  • Legal compliance, security and fraud prevention
    Legal bases: legal obligation and/or legitimate interests.

We may also use Personal Data to meet legal and regulatory requirements. Occasionally, we may contact you to request permission to use your information for a new purpose; we will do so only where we have a lawful basis to contact you.

6. Cookies and similar technologies

We use cookies and similar technologies on our sites. Non‑essential cookies (e.g., analytics, advertising) are used only with your consent. For details, see our standalone Cookie Policy, and manage your choices through our consent banner and preferences centre.

7. Sharing of Personal Data

We may share Personal Data with:

  • GlobeScan affiliates supporting processing under this Policy.
  • Service providers (IT hosting, survey platforms, email delivery, analytics) under contract and confidentiality/security obligations.
  • Clients (typically in aggregated form; identifiable data only where contractually agreed and with appropriate safeguards).
  • Professional advisors (e.g., legal, audit, insurance).
  • Authorities where required by law or to protect rights and safety.

We do not sell Personal Data.

8. International transfers

GlobeScan operates globally and may transfer Personal Data outside the EEA/UK/Switzerland. Where we do so, we use appropriate safeguards such as:

  • Adequacy decisions (including the EU–US Data Privacy Framework where applicable for certified recipients); and/or
  • Standard Contractual Clauses (and UK IDTA/Addendum) plus supplementary measures where appropriate.

Details can be provided upon request.

9. Data retention

We retain Personal Data only for as long as necessary for the purposes described above, including legal, accounting, or reporting requirements. Typical examples:

  • Client‑supplied research contact lists: retained for the project duration and deleted within 30 days after completion unless you consent to re‑contact.
  • Marketing/subscription contacts: retained until you unsubscribe or after 24 months of inactivity.
  • Forum/event records: retained for the event lifecycle and reasonable archiving.
  • Aggregated/anonymised data: may be retained longer and no longer identifies you.

10. Security

We implement organisational, technical, and physical measures aligned with industry standards to protect Personal Data (access controls, encryption in transit, secure development practices, and vendor due diligence). No method of transmission over the internet is fully secure; we maintain incident response procedures and will notify of breaches where required by law.

11. Your rights

Subject to conditions and applicable law, you have rights to:

  • access your Personal Data,
  • rectify inaccuracies,
  • request erasure,
  • restrict processing,
  • object to processing (including marketing),
  • request portability,
  • withdraw consent at any time (without detriment).

You may also lodge a complaint with your local data protection authority. To exercise rights, contact privacy@globescan.com.

12. Automated decision-making

We do not use automated decision‑making that produces legal or similarly significant effects without human involvement. Where profiling is used for communications (e.g., topic interests), you may opt out at any time.

13. Changes to this Policy

We may update this Policy from time to time. Substantive changes will be highlighted on our website and, where appropriate, notified to you directly.

For information about the cookies and similar technologies we use, including how to manage your preferences, please see our Cookie Policy: https://globescan.com/cookie-policy/