Sapio Research Privacy Policy

Sapio Research is committed to protecting the privacy of all research participants. This privacy notice sets out how we collect, use and share data.

Privacy Policy

Last updated: 9th July 2025

Sapio Research Ltd is committed to maintaining the privacy and security of personal information and respects and complies with the UK GDPR and Data Protection Act 2018. This privacy policy statement explains how Sapio Research Ltd (also referred to as “Sapio”, “Sapio Research”, “we” or “us) collects and uses your data when you visit our website or platforms, apply for a job or express an interest in applying for a job with us, or purchase products or services from us.

Research respondents – We have a separate privacy policy for research respondents which can be found here.

If you have any questions, please contact us on dataprivacy@sapioresearch.com

What is personal data or information?

The UK GDPR and Data Protection Act 2018 define personal data as “information relating to natural persons who: 1) can be identified or who are identifiable directly from the information in question; or 2) who can be indirectly identified from that information in combination with other information.”

It is important to note that:

  • Pseudonymised data is still personal data
  • Information about companies or public authorities is not personal data
  • Information about a deceased person does not constitute personal data
  • Information about individuals acting as sole traders, employees, partners and company directors where they are individually identifiable, and the information relates to them as an individual may constitute personal data.

Who and where do we collect personal information from?

We collect personal data from:

  • visitors to our website and users of our platforms
  • respondents to our surveys and research (please see separate privacy statement here)
  • people who express an interest in, or apply for a job with us
  • individuals who sign up to our newsletter or register to be sent email updates
  • individuals who fill out our contact form or email us directly regarding an enquiry, complaint or information request
  • current and prospective clients, including their employees
  • individuals who attend, or express interest in attending our events

In most cases we get personal information directly from you.  In some cases, we may also collect personal information from legal bodies or professionals, debt collection agencies, previous employment or suppliers and service providers

What information do we collect?  When you interact, use or engage with us, our website or platforms, or purchase goods or services from us we will collect and process personal data.  The below summarises the data that we may collect for different purposes:

  • Recruitment purposes and job applicants:
    • Name and contact information
    • Gender
    • Date of birth
    • Pronoun preferences
    • National insurance number
    • Copies of passports or other ID
    • Employment and education history
    • Right to work information
  • Providing services to current clients, operation of client accounts and improvement of products and services:
    • Name and contact information
    • Pronoun preferences
    • Company information
    • Payment details
    • Purchase or service history
    • Account information
    • Marketing preferences
    • Occupation
    • Usage data (including information about how you interact with and use our website, products and services)
    • Information relating to compliments or complaints
    • Video and audio recordings (e.g. of meetings or calls)
    • Records of meetings and decisions
    • Account access information
    • Website user information
    • Technical data, including information about browser and operating systems
  • Users of our Data 2 Story platform:
    • Name and contact information
    • Company information
    • Payment details
    • Account access and login information
    • Website and app user journey information
    • Usage data (including information about how you interact with and use our website, products and services)
    • Information relating to compliments or complaints
    • Video and audio recordings (e.g. of meetings or calls)
    • Records of meetings and decisions
    • Purchase or service history
    • Account information
    • Marketing preferences
    • Technical data, including information about browser and operating systems
    • IP addresses
  • For information updates or marketing purposes:
    • Name and contact information
    • Address
    • Profile information
    • Marketing preferences
    • Purchase or account history
    • Website and app user journey information
    • IP addresses
  • Dealing with queries, complaints or claims:
    • Name and contact information
    • Address
    • Payment details
    • Account information
    • Purchase or service history
    • Meeting notes and decisions
    • Call recordings
    • Relevant information from previous investigations
    • Client accounts and records
    • Correspondence

Providing personal data is optional; however, to provide you with access to our Platform and services, providing certain personal information (e.g., contact information and name) may be necessary in order to receive our services and use our Platforms.

What are the lawful bases for the collection and use of your data?

  • Contractual basis – this is where we have to collect or use the information so we can enter into or carry out a contract with you (i.e. where you purchase our goods or services).  All of your data protection rights may apply except the right to object.
  • Consent – this is where we have permission from you after we gave you all the relevant information. Examples of this include for marketing purposes or information updates.  All of your data protection rights may apply, except the right to object.  To be clear, you do have the right to withdraw your consent at any time
  • Legitimate interests – we’re collecting or using your information because it benefits you, our organisation or someone else, without causing an undue risk of harm to anyone.  Examples of this include during recruitment, to provide or carry out our services, to contact or update you about new products or services, to respond to and deal with complaints or comments, to personalise your experience, for regulatory or compliance purposes, or for customer satisfaction surveys.  All of your data protection rights may apply, except the right to portability.
  • Legal obligation – this is where we have to collect or use your information so we can comply with the law.  For example, if response to requests by government or law enforcement authorities.  All of your data protection rights may apply, except the right to erasure, the right to object and the right to data portability.

Who do we share information with?

Personal data will be shared with third party service providers, agents or subcontractors to provide services to you on our behalf or for the purposes identified in this Privacy Policy.  We will not share your information with any other organisations for the purposes of direct marketing.

If your personal data is shared with a third party, then we will ensure that it is shared and processes securely and safely.  The third party will have access only to perform specific tasks on our behalf and are obliged not to use it for any other purpose.

In some circumstances we are legally obliged to share information. For example, under a court order or where we cooperate with other European supervisory authorities in handling complaints or investigations. In any scenario, we’ll satisfy ourselves that we have a lawful basis on which to share the information and document our decision making and satisfy ourselves we have a legal basis on which to share the information.

In the event of a sale, merger, liquidation, dissolution, reorganisation or acquisition of Sapio Research, your details will be shared with relevant advisors and passed to the new owners of the business.

Use of cookies

Our website uses “cookies” and similar tracking technologies.  Cookies are small text files generated by a web server responding to a request from a website. The user’s device can store cookies (for example, via their web browser) and send the information back when they next make a request to the same web server.

Cookies are widely used to make websites work, or work more efficiently, and to provide information to the website operator. This definition of cookies is taken from ico.org

You may decline the use of certain cookies, but please note that if you do this some functionality of the website or platform may not be available or usable.

What cookies do we use?

We use different types of cookies to personalise content and ads, to provide social media features and to analyse our visitor behaviour and traffic.  Some are placed by third part providers that appear on our pages.  The following types of cookies are used across our website and platforms:

  • Necessary cookies – these cookies are required for the functionality of the site.  Without these cookies part of the services or website may not function.
  • Preference cookies – these cookies allow a website to remember information that changes the way the website behaves or looks, such as your preferred language or the region you are in.
  • Statistics cookies – these cookies help website owners understand how visitors interact with websites by collecting and reporting information anonymously.
  • Marketing cookies – these cookies are used to track visitors across websites.  The intention is to display ads that are relevant and engaging for the individual user and therefore more valuable for publishers and third-party advertisers.

You can view our cookie declaration and details here.

Third party analytics

We use third-party providers, such as Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to create reports and statistics on the performance of our website and services.  The information collected through the use of analytics may include, for example, your IP address, the website from which you visited us, the type of device you used.  You can opt out from the use of Google Analytics by downloading and installing the Google Analytics Opt-out Browser Add On.  The providers of third-party apps, tools or plug ins on our services (such as social media sharing tools) may also use automated means to collect information regarding your interactions.  Sapio Research is not responsible for those providers practices, and the information collected by the third parties is subject to their own privacy policies.

Your data protection rights

Under UK data protection law, we must have a “lawful basis” for collecting and using your personal information. There is a list of possible lawful bases in the UK GDPR. You can find out more about lawful bases on the ICO’s website.

Which lawful basis we rely on may affect your data protection rights which are in brief set out below. You can find out more about your data protection rights and the exemptions which may apply on the ICO’s website:

Your right of access

You have the right to ask us for copies of your personal information. You can request other information such as details about where we get personal information from and who we share personal information with. There are some exemptions which means you may not receive all the information you ask for. You can read more about this right here.

Your right to rectification

You have the right to ask us to correct or delete personal information you think is inaccurate or incomplete. You can read more about this right here.

Your right to erasure

You have the right to ask us to erase your personal information and in certain circumstances we must do so. You can read more about this right here.

Your right to restriction of processing

You have the right to ask us to limit how we can use your personal information. You can read more about this right here.

Your right to object to processing

You have the right to object to the processing of your personal data. You can read more about this right here.

Your right to data portability

You have the right to ask that we transfer the personal information you gave us to another organisation, or to you. You can read more about this right here. This only applies to information you have given us and is held electronically.

Your right to withdraw consent

When we use consent as our lawful basis you have the right to withdraw your consent at any time. You can read more about this right here.

If you make a request, we must respond to you without undue delay and in any event within one month.

To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.

Links to other sites

Our website, service or platforms may contain links to other sites that are not controlled or operated by Sapio Research.  If you click on a third party link we recommend that you review the Privacy Policy of the third party site that you are taken to.  This Privacy Policy does not cover how third parties process personal information.

Information security

Sapio Research is committed to keeping personal data secure and will take all reasonable precautions to protect personal information from loss, misuse or alteration. Data stored on internal network servers are protected by firewalls and other appropriate security mechanisms.

Transfers outside of the EEA and UK

Sapio Research’s use services which may be hosted in and managed from a third country (i.e. outside of the European Union or the European Economic Area “EEA”).  When your personal information is transferred to (or accessed from) a country outside EEA for which the European Commission has not issued an adequacy decision, we will implement appropriate safeguards to ensure that your Personal Data remains protected.

How long we keep information

We keep personal information for the period needed to fulfil the purposes for which it was collected and as otherwise required or permitted by applicable law, such as in relation to our record retention obligations.

How to complain

If you have any concerns about our use of your personal data, you can make a complaint to us using the contact details at the top of this privacy notice.

If you remain unhappy with how we’ve used your data after raising a complaint with us, you can also complain to the ICO.

The ICO’s address:           

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113

Website: https://www.ico.org.uk/make-a-complaint

Changes to this privacy statement

Sapio Research reserves the right to modify and update this policy from time to time.  We will notify you of any changes by posting the new Privacy Policy on this page.  You are advised to review this Privacy Policy periodically for any changes.

Contact details

If you have any questions concerning our privacy policy, or would like to opt out of direct marketing, please contact us by email at: dataprivacy@sapioresearch.com

Alternatively, you can write to us at our registered company address which is Floor 2, Pentagon House, 52-54 Southwark Street, London SE1 1UN

Want to start your journey to confidence?

Schedule a call

Get topical tips, insights and more delivered to your inbox

Be the first to know about the latest international business sentiments, behaviours and plans to stay one step ahead of your competition.