This Privacy Notice describes how Landmark Public Affairs (“we”) handles, collects, protects and stores personal information connected with the services we provide when we are a data controller as defined in the EU General Data Protection Regulation (EU GDPR), the UK General Data Protection Regulation (UK GDPR) and the Singapore Personal Data Protection Act (SG PDPA). This broadly means when we take decisions about which personal information to process and how.
This notice does not apply when we process personal information as a data processor as defined in the EU GDPR, UK GDPR or SG PDPA. This broadly means when we process information only on the basis of instructions from our clients. When this is the case, you should contact the client on whose behalf we are processing data, since they will either be the data controller or be able to tell you who the data controller is.
This notice also does not apply to the processing of personal information of our employees.
You can use the following links to jump to different sections of the notice.
Name: Landmark Public Affairs
(This is the trading name of Landmark Public Policy Advisers Europe Limited, a company registered in England with a Belgian branch.)
We collect personal information:
We currently collect and process the following types of information:
The EU, UK GDPRs define and prohibit the processing of “special category personal data”, except under one of several exemptions. This is sensitive personal data which reveals your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership; as well as genetic data, biometric data which is processed for the purpose of uniquely identifying you; and also data concerning your sex life or sexual orientation.
The only special category data which we process are those about people’s political opinions. When we do so, we rely on the exemption in Article 9(2)(e) of the EU and UK GDPRs which allows us to process such data which is manifestly made public by the data subject. This reasonably includes publicly-available information about political affiliations, as well as equivalent information provided by you at events and meetings, for example. For the avoidance of doubt, we do not include within the term “political
opinions” your views about public policy, including your views on policy responses such
as proposals for legislation or regulation.
We process your personal information for one or more of the following reasons:
Under the EU/UK GDPRs and SG PDPA, all processing of your personal information must have a “lawful basis”. The lawful bases we rely on for processing your personal data are:
Information is stored securely in electronic form on our servers or cloud-based servers located in the European Union and UK and in paper form as part of a filing system in our premises in the UK and Belgium. For Asia based clients and their information is stored securely in electronic form on our third-party IT service providers servers located in the UK and the EU and in offline copy (only if required) as a part of filing system in our premises in Singapore. We take security measures to ensure that personal information is held securely, whether electronically or in paper form.
We usually keep personal information for the period of your, or the relevant client’s, contract with us, plus a further period which is based on the time after that during which legal claims may be made. We may be required by law to keep some information for longer (for example, tax or regulatory information). In the case of job applications, we retain the personal information of unsuccessful applicants only until our recruitment is complete.
We dispose of information by deleting all electronic records and disposing securely of all paper-based records.
We do not apply automated decision-making including profiling to the personal information we collect.
Under data protection law, you have rights including:
You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you.
If you wish to make a request, please contact us in Brussels if you are based in the EU or in London if you are based in the UK. Asia based requests can be reached out to our Singapore address. Our addresses are above.
You can also complain to the relevant Data Protection Authority (regulator) if you are unhappy with how we have used your data.
If you are in the European Union, the relevant Data Protection Authority is the Autorité de protection des données (APD)/Gegevensbeschermingsautoriteit (GBA). You can contact them at:
Autorité de protection des données / Gegevensbeschermingsautoriteit)
Rue de la Presse/ Drukpersstraat 35 1000 Bruxelles / Brussel Telephone:
+32 (0)2 274 48 00
If you are in the UK, the relevant Data Protection Authority is the Information
Commissioner’s Office (ICO). You can contact them at:
Information Commissioner’s Office
Wycliffe House, Water Lane Wilmslow, Cheshire, SK9 5AF Helpline number:
+44 303 123 1113
If you are in Singapore, the relevant Data Protection Authority is the Information
Personal Data Protection Commission (PDPC). You can contact them at:
Personal Data Protection Commission
Address: 10 Pasir Panjang Road, #03-01 Mapletree Business City Singapore 117438
Main Line: +65 6377 3131
Fax: +65 6577 3888