Skip to content
EqualBase
Legal

Privacy Policy

How EqualBase collects, uses, shares and protects personal data — and the rights you have under the GDPR and applicable national law.

Last updated [ date pending ]

Draft layout — final copy pending. The privacy text below is supplied and approved by EqualBase legal counsel (GDPR-relevant). Sections marked as placeholders are awaiting that copy and must not be treated as the published policy.

This Privacy Policy explains how EqualBase processes personal data in connection with the EqualBase pay transparency compliance platform and this website. It is structured to meet the transparency requirements of the EU General Data Protection Regulation (GDPR) and applicable national implementations.

01Introduction & scope

Placeholder introduction describing who this policy applies to, the services it covers, and the relationship between EqualBase as a processor of customer employee data and as a controller of its own contacts. Replace with counsel-approved text.Draft

Copy pending from counsel
Scope statement and definitions to be supplied by EqualBase / legal.

02Data controller

Placeholder for the legal entity acting as data controller, its registered address, and registration details.Draft

Copy pending
Controller entity, registered address and company number — provide before publishing. Use [ Legal entity ], [ Registered address ].

03Personal data we collect

Placeholder describing the categories of personal data processed. The final list and descriptions are supplied by counsel; the structure below indicates the expected sub-sections.Draft

Information you provide

  • Account and contact detailsDraft
  • Demo and sales enquiry informationDraft

Information processed on behalf of customers

  • Employee compensation and role data uploaded to the platformDraft

Information collected automatically

  • Usage, device and log dataDraft

04How we use personal data

Placeholder for the purposes of processing — providing the service, support, security, legal compliance and communication. Final purposes to be confirmed by counsel.Draft

05Legal basis for processing

Placeholder mapping each processing purpose to its GDPR Article 6 legal basis (e.g. contract, legitimate interests, consent, legal obligation). To be supplied and verified by counsel.Draft

Counsel to confirm
Legal bases must be stated accurately per GDPR — do not infer. Awaiting verified mapping.

06Sharing & sub-processors

Placeholder describing the categories of recipients and the use of sub-processors. The current sub-processor list is maintained on the Security page once provided.Draft

07International transfers

Placeholder describing data residency and any transfer mechanisms. EqualBase hosts customer data in the EU; specifics and safeguards to be confirmed by EqualBase.Draft

08Data retention

Placeholder describing retention periods per data category and the criteria used to determine them. To be supplied by counsel.Draft

09Your rights

Placeholder describing data-subject rights under the GDPR — access, rectification, erasure, restriction, portability, objection — and how to exercise them. Final wording to be supplied by counsel.Draft

10Security

Placeholder summary of technical and organisational measures. A fuller description of our security posture is available on the Security page.Draft

11Contact & data requests

To exercise your rights or ask a question about this policy, contact our data protection team using the details below.

Data protection contact

For privacy enquiries and data-subject requests. Details to be confirmed before publishing.

Data protection / DPO[ email pending ]
Postal address[ address pending ]
Supervisory authority[ to be confirmed ]