top of page

Privacy Policy
Last Updated: 18.02.2025

Responsible for processing your personal data:

Touchstone Executive Assessment Ltd.
Ireland
Email: david@touchstoneexecutive.com
Website: https://www.touchstoneexecutive.com/

1. Introduction

Touchstone Executive Assessment Ltd. (“Touchstone”, “we”, “us” or “our”) provides leadership assessment, executive coaching, mentoring, facilitation and leadership development services to organisations and individuals.

This Privacy Notice explains what personal data we collect, why we collect it, how we use it, how we protect it, and what rights you have in relation to your personal data.

 

We process personal data in accordance with the General Data Protection Regulation, the Data Protection Act 2018, and other applicable Irish and EU data protection legislation. The GDPR applies to the processing of personal data in the EU and sets out obligations for controllers and processors, as well as rights for individuals.

2. What is personal data?

Personal data is any information relating to an identified or identifiable living individual. This may include information such as your name, job title, organisation, email address, phone number, assessment information, professional background, or any other information that can identify you directly or indirectly.

3. What personal data we collect

The personal data we collect depends on your relationship with us and the services we provide. We may collect and process some or all of the following information:

  • name;

  • job title;

  • organisation;

  • work contact details, including email address and phone number;

  • billing or administrative contact details;

  • information shared when registering for webinars, events or workshops;

  • attendance, participation or feedback information from events, workshops or programmes;

  • information relevant to leadership assessment, coaching, mentoring or development services;

  • assessment, questionnaire or survey responses, where relevant to the services being provided;

  • CVs, biographies or professional background information, where provided;

  • communications with us, including emails, meeting notes, queries and feedback;

  • marketing preferences, including whether you have opted in to receive future updates from us;

  • technical information relating to website use, such as IP address, browser type, pages viewed and cookies, where applicable.

 

We only collect personal data that is relevant to the purpose for which it is being processed.

4. How we collect personal data

We may collect personal data directly from you when you:

  • contact us by email, phone, website form or LinkedIn;

  • register for an event, webinar or workshop;

  • participate in an assessment, coaching, mentoring or development process;

  • complete a questionnaire, survey or feedback form;

  • attend a meeting, workshop or coaching session;

  • subscribe to receive updates or communications from us.

 

We may also receive personal data from your organisation, employer, sponsor, programme manager, HR team, or another authorised contact where they engage us to provide services.

Where we use third-party platforms, such as LinkedIn, assessment platforms, webinar platforms or survey tools, those platforms may also process your personal data in accordance with their own privacy notices.

 

5. How we use your personal data

We process personal data for the following purposes:

  • to respond to enquiries and communicate with you;

  • to provide leadership assessment, coaching, mentoring, facilitation and development services;

  • to administer client projects and development programmes;

  • to manage assessment, survey, feedback or questionnaire processes;

  • to prepare reports, summaries, feedback materials or development outputs;

  • to schedule and deliver meetings, workshops, webinars and events;

  • to issue joining details, reminders and follow-up materials;

  • to manage client, supplier and business relationships;

  • to maintain appropriate business, administrative and financial records;

  • to improve our services, materials, processes and client experience;

  • to ensure the security and integrity of our systems and information;

  • to comply with legal, regulatory, contractual or professional obligations;

  • where you have consented, to send you relevant updates, event invitations, insights or marketing communications.

 

6. Legal basis for processing

We process personal data using one or more of the following legal bases:

Contract or pre-contractual steps
Where processing is necessary to enter into or perform a contract with you or your organisation, including the delivery of services you or your organisation have requested.

Legitimate interests
Where processing is necessary for our legitimate business interests, such as managing client relationships, delivering services, responding to enquiries, improving our services, maintaining appropriate records, and protecting our business, systems and information.

Consent
Where you have given consent, for example to receive certain marketing communications or future event updates. Where we rely on consent, you can withdraw your consent at any time.

Legal obligation
Where processing is necessary for us to comply with legal, regulatory, accounting, tax or other statutory obligations.

Special category data
In limited circumstances, we may process special category data if it is voluntarily provided, necessary for a specific service, or otherwise permitted under applicable data protection law. Where required, we will rely on an appropriate lawful basis and additional condition for processing.

7. Marketing communications

We may send you marketing communications, insights, event invitations or updates where we have a lawful basis to do so.

Where we rely on your consent, you can withdraw that consent at any time by contacting us or by using the unsubscribe option included in our communications.

We do not sell your personal data to third parties.

 

8. Cookies and website data

 

Our website may use cookies or similar technologies to support website functionality, understand how visitors use our website, and improve the user experience.

Cookies are small text files placed on your device when you visit a website. You can manage or disable cookies through your browser settings. However, disabling certain cookies may affect how the website functions.

If we use analytics or similar tools, we will use them to understand website usage and improve our website and services. Where required, we will seek your consent for non-essential cookies.

 

9. Sharing personal data

 

We may share personal data where necessary for the purposes described in this Privacy Notice. This may include sharing data with:

  • client organisations or authorised client contacts, where relevant to the services being delivered;

  • assessment, survey or feedback platform providers;

  • webinar, event or video conferencing providers;

  • IT, hosting, cybersecurity and cloud service providers;

  • email, communications and document management providers;

  • professional advisers, including accountants, insurers or legal advisers;

  • regulatory, law enforcement or public authorities, where required by law;

  • trusted subcontractors or consultants involved in service delivery, where appropriate safeguards are in place.

 

We only share personal data where we have a lawful basis to do so and where it is relevant and necessary.

 

10. International transfers

 

Some of the service providers or platforms we use may process personal data outside the European Economic Area.

Where personal data is transferred outside the EEA, we will ensure that appropriate safeguards are in place where required by applicable data protection law.

 

11. Security of processing

 

We maintain an information security and privacy management system aligned with recognised international standards. Touchstone Executive Assessment Ltd. is certified to ISO/IEC 27001 for information security management and ISO/IEC 27701 for privacy information management.

We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration or disclosure.

These measures may include access controls, secure systems, staff awareness, supplier due diligence, data protection procedures, and information security controls. Access to personal data is limited to those who need it for the purposes described in this Privacy Notice.

However, no transmission of data over the internet can be guaranteed to be completely secure.

 

12. Storage of personal data

 

We retain personal data only for as long as necessary for the purposes for which it was collected, and in line with our documented data retention and deletion procedures.

The retention period may vary depending on the type of personal data, the purpose of processing, contractual requirements, legal obligations, professional requirements, and any relevant limitation periods.

Where you have opted in to receive marketing communications, we will retain your contact details until you unsubscribe or withdraw your consent, unless we are required or permitted to retain certain information for legal, administrative or record-keeping purposes.

 

13. Your rights

 

Under the General Data Protection Regulation, you have a number of rights in relation to your personal data. These may include:

Right of access
You have the right to request a copy of the personal data we hold about you.

 

Right to correction
You have the right to ask us to correct inaccurate or incomplete personal data.

Right to erasure
In certain circumstances, you have the right to ask us to delete your personal data.

Right to restriction of processing
In certain circumstances, you have the right to ask us to restrict how we process your personal data.

Right to object
In certain circumstances, you have the right to object to our processing of your personal data, including processing for direct marketing purposes.

Right to data portability
In certain circumstances, you have the right to receive your personal data in a structured, commonly used and machine-readable format.

Right to withdraw consent
You have the right to withdraw consent at any time. You can do so by contacting Touchstone Executive Assessment Ltd at the contact details below. 

 

To exercise your rights, please contact us at:

david@touchstoneexecutive.com

 

14. Right to lodge a complaint

 

You have the right to lodge a complaint with the Data Protection Commission, which is the Irish supervisory authority for data protection matters.

 

You can contact the Data Protection Commission through its website: www.dataprotection.ie

The Irish Data Protection Act 2018 established the Data Protection Commission and gives further effect to GDPR in Irish law.

 

 

15. Updates to this Privacy Notice

We may update this Privacy Notice from time to time. The latest version will be made available on our website.

Where we make significant changes, we may take additional steps to bring those changes to your attention.

 

16. Contact us

 

If you have any questions about this Privacy Notice or how we process your personal data, or if you wish to exercise your rights, please contact:

Touchstone Executive Assessment Ltd.
Ireland
Email: david@touchstoneexecutive.com
Website: https://www.touchstoneexecutive.com/

bottom of page