Privacy and cookies notice

The Kantar Group Limited and its affiliate and subsidiary group companies (together "Kantar", "we", “our” or “us”) are committed to protecting and respecting your privacy. As a global business, Kantar is committed your privacy, and our obligations under the data protection laws which apply in your region (such as the General Data Protection Regulation (GDPR) or the California Consumer Protection Act (CCPA)).

This notice sets out the basis on which we process personal data we collect from you or that you provide to us on (“our site”) and personal data we collect from you for sales and marketing purposes. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.

For the purposes of this notice, ‘personal data’ means any data or information that relates to an identified or identifiable living individual. Kantar is the is the ‘data controller’ (or similar legal term, such as responsible ‘business’) for the purposes of applicable data protection law. This means that Kantar is the overarching responsible party for your personal data, as it determines the purposes and means of the processing of your personal data. The Kantar Group Limited, as operator of the site, acts on behalf of its affiliate and subsidiary group companies; please see the ‘contact us’ information below to get in touch or for further information.

This notice is not intended for participants in a survey, or members in a panel, conducted by Kantar, nor any related market research activities. If you have participated in such activities, please see the ‘contact us’ information below to ask us for help if you cannot find the relevant notice.


We collect and process the following data on our site:

  • Information that you provide by filling in forms on our site.
  • Information you provide if you report a problem with our site.
  • If you contact us, we may keep a record of that correspondence.
  • We may have collected business contact information at a Kantar or third-party event, for example via business cards.
  • Details of your visits to our site including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise and the resources that you access as described in this policy.


Please refer to our Cookie Policy for information on our use of cookies.


The data that we collect from you may be transferred to and/or stored outside your territory. It may also be processed by staff operating outside your territory who work for us or for one of our suppliers. If your personal data is transferred to, stored at or otherwise processed outside your country or territory, and that country or territory has not been recognised as providing an adequate level of data protection, we will put in place additional safeguards to protect your personal data, as required by applicable law.  For example, if you are in the EEA, standard contractual clauses would be used if we process your data outside the EEA.


We take reasonable steps to ensure that your data is treated securely and in accordance with this notice. All information you provide to us is stored on secure servers. We limit access to the information by our own employees, contractors, site service providers and those individuals who are authorised for the proper handling of such information. We request that our third party contractors and site service providers follow similar standards of security and confidentiality.

Measures include security and storage controls that integrate our data and network security policies and procedures with the security requirements of our clients and in line with the requirements of local data protection laws. All Kantar personnel laptops are encrypted, include network protection and storage/processing on removable media/devices is prohibited. Removable media and mobile devices are stored in locked cabinets/drawers/rooms with restricted access together with secure building access. Kantar has also invested in endpoint protection (including anti-malware), threat intelligence, and response services. These measures are deployed across all workstations and servers covering the Kantar estate. Industry/government standard encryption in place - AES128 (Mac) or AES256 (PC), used as standard across the business.

Where you have been asked to create an account with us, your account information and personal data are password protected so that you and only you have access to your information. In order to keep your personal data safe, we recommend that you do not divulge your password to anyone. We will never ask you for your password in an unsolicited phone call or in an unsolicited email. Also, please remember to sign out of your account and close your browser window when you have finished visiting our site. This is to ensure that others cannot access your personal data and correspondence if you share a computer with someone else or are using a computer in a public place like a library or Internet cafe. Please change your password regularly.

In the case of an unfortunate personal data security incident, we will, in a timely manner and in accordance with laws and regulations, inform you of the basic conditions and possible impacts of the security incident, response measures that are already taken or to be taken by us, suggestions for you regarding self-prevention and risk mitigation, our remedial measures for you, etc. We will inform you of such information by email, fax, telephone, or push notification, etc., and when it is difficult to notify each individual individually, we will properly and effectively issue a public notice. At the same time, we will also take the initiative to report the handling of personal data security incidents in accordance with regulatory requirements.


Below we have set out more detailed information below about how we use your personal data. Some data protection laws require that we have a ‘lawful basis’ for our processing, which is a legal justification that has been pre-defined by the relevant law for collecting, storing and using personal data. For your information where that requirement exists, we have set out below the relevant lawful basis alongside the applicable purpose.

Use Case


Categories of data collected


Legal basis

Operating our site

Ensure that content from our site is presented effectively, according to the device and location you are accessing it from.

See the “Cookie Disclosure” section below for more information.

IP address, operating system information, browser specifications, device specifications.

We obtain this data from you directly.

It is our legitimate interest to ensure that our site is presented to you in the most effective way possible and to detect fraudulent behaviour.

Analysing our site usage.

Analyse statistical data about users browsing actions and their patterns to improve our site or detect fraudulent behaviour.

See the “Cookie Disclosure” section below for more information.

IP address, operating system information, browser specifications, device specifications, site use data (such as clicks, page visits and time spent).

We obtain this data from you directly.

Consent when you visit our site through our Cookie Declaration (you can change this on our site at any time).

Website marketing. Track visitors across websites to display advertisements that are relevant and engaging for the individual user and thereby more valuable to the advertiser. See the “Cookie Disclosure” section below for more information. IP address, operating system information, browser specifications, device specifications, websites visited, site use data [***] We obtain this data from you directly, or we obtain this data from a third-party website. Consent when you visit our site through our Cookie Declaration (you can change this on our site at any time).
Providing you with information or respond to your enquiries. Provide you with information regarding products or services that you request from us, or that we have determined may be of interest to you, or respond to an enquiry you have raised with us. This may include where you have opted-in for our weekly newsletter, for example. Name, email address, IP address, phone number, postal address, employer, job title. We obtain this data from you directly, for example when you download reports or other content from our site, or when you submit an enquiry. We will have your consent or determine that we have a legitimate interest in using your details to provide you with relevant information. You can withdraw your consent or opt out of communications from Kantar at any time.
General sales and marketing. Provide you with information regarding products or services that we have determined may be of interest to you. We may also combine this information with other data sources we hold about you (as described above) to build a marketing profile and provide more relevant information to you. Name, email address, phone number, employer job title, information relating to your relationship with Kantar (i.e., purchase and pitch history). We obtain this data from you directly, i.e. at a business event, or from publicly available sources. We will have your consent or determine that we have a legitimate interest in using your details to provide you with relevant information and market our business to you. You can withdraw your consent or opt out of communications from Kantar at any time.

Sensitive Personal Data 

Kantar does not knowingly collect, process or sell data that is commonly classified as “sensitive” or “special category” personal data. The meaning of this type of personal data varies under data protection laws of different countries. This typically includes racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.


We may share your personal data within the Kantar group of companies for the purposes described above. For example, where you have submitted a specific enquiry with us, we will share that information with the relevant team to answer the enquiry and get in touch with you. We may also share your personal data with third-party vendors and subcontractors for the purposes described above, for example Customer Relationship Management (CRM) platforms. In relation to cookies, you can see a list of third parties in the “Cookie Disclosure” section below. We may also disclose your personal data to third parties for the following purposes:

  • In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
  • If Kantar or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation; or to protect the rights, property, or safety of Kantar, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
  • If we use a service provider or supplier to process your data for the purposes described avove (for example third parties who help administer our site or provide our services to you); however such third will only process this data for the purposes we instruct them to.


Under the CCPA, “sales” and “sharing” are broadly defined, respectively, and include disclosing or making available personal data in exchange for monetary or other valuable consideration, or for purposes of cross-context behavioural advertising. We do not disclose, sell or otherwise make available personal data in exchange for monetary compensation. However, we share identifiers, internet and electronic network activity information, and inferences with third party analytics providers, and ad networks and social media platforms, in order to improve and evaluate our site, our content and our marketing and advertising campaigns, and to better reach individuals with more relevant ads and content. We do not sell or share sensitive personal data, nor do we sell or share any personal information about individuals who we know are under sixteen (16) years old.


We keep your personal data only for as long as is necessary for the purposes for which we are using it. The period for which we keep your personal data will be determined by a number of criteria, including the purposes for which we are using the information, the amount and sensitivity of the information, the potential risk from any unauthorised use or disclosure of the information, and our legal and regulatory obligations.

As part of the Company Business Continuity Plan and as required by ISO 27001, ISO 9001, ISO 20252 and in certain instances the law, our electronic systems are backed up and archived. These archives are retained for a defined period of time in a strictly controlled environment. Once expired, the data is deleted and destroyed to ensure the data is erased completely.


Automated Decision-making

You will not be subject to decisions that will have a significant impact on you based solely on automated decision-making, unless we have a lawful basis for doing so and we have notified you.



As a global business, Kantar is committed your privacy, and committed our obligations under the data protection laws which apply in your region (such as GDPR or the CCPA).

You have the following rights in relation to your personal data (some of these rights apply only in certain circumstances, and some of them vary according to the legal basis on which we are processing your data or the territory you are located in):

  • Where we are processing your personal data on the basis of consent, the right to change your mind and to withdraw your consent.
  • The right to ask whether we’re processing your personal data and, if we are, to find out details of that processing (as well as obtaining a copy of your personal data).
  • The right to ask us to correct any personal data that we hold about you that’s inaccurate or incomplete.
  • The right to ask us to delete personal data that we hold about you.
  • The right to object to how we’re processing your personal data, and to ask us to restrict how we’re processing your personal data.
  • The right to have your personal data provided to you in a structured and commonly-used electronic format.  You can also ask us to transfer your personal data directly to another company if that’s feasible.
  • The right to opt out of the sale of your personal data if applicable.  Personal data collected through this site is not sold to third parties. 
  • The right not to be discriminated against for exercising the rights available to you under applicable data protection laws.
  • Rights in respect to any automated decision-making. If you become subject to automated decision-making, in advance we will provide you with meaningful information about the logic involved, the significance and the envisaged consequences. You also have the right to obtain human intervention, express your own point of view, obtain an explanation of the decision and challenge the decision.

If you wish to exercise any of these rights (for example you no longer wish to receive marketing from us), you can use the link or unsubscribe button provided in our email correspondence, contact or you can use the phone numbers provided in our “contact us” section of this site.   Please note, in some circumstances we may need to take steps to verify your identity prior to fulfilling your request. You may be entitled to use a third party to submit a request to us on your behalf (sometimes referred to as an ‘authorised agent’ or similar). For this purpose, we will require proof that you gave that third party signed permission to submit the request, which may be in the form of a power of attorney. We may also require additional verification, such as the identity of the third-party individual.

If you’re not happy with how we’ve dealt with your personal data, we’d like a chance to put it right – please contact us at However, you may have a legal right to lodge a complaint with a local authority, regulator or supervisory authority responsible for data protection in your country.

• EU residents can find the contact details of their country supervisory authority via the European Data Protection Board:
• UK residents can make complaints to the Information Commissioner’s Office via:, by emailing:, or by post to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
• New Zealand residents can contact the Office of the New Zealand Privacy Commissioner via:, or be email:, or be phone: 0800 803 909, or post to PO Box 10 094, Wellington 6143


Our site may, from time to time, contain links to and from the websites of our partner networks and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy notices and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.


This notice was last updated on 4 January 2024.

This privacy notice may be updated from time to time and any changes we may make will be posted on this site.

Contact us

If you have any questions or concerns relating to your privacy, or you wish to unsubscribe or access any of your personal data rights, you can contact Kantar:
o by email at for general enquires or for enquiries about your personal data
o by post to: The Kantar Group Limited, South Bank Central, 30 Stamford Street, London, England, SE1 9LQ
o Calling the toll free number +18664711399 (only if you are in the USA)

The Kantar Group Data Protection Officer is Ravinder Roopra who can be contacted as follows:
o Relevant legal entity: The Kantar Group Limited
o Email address:
o Postal address: The Kantar Group Limited, Vivo Building, 30 Stamford St, London SE1 9LS

New Zealand residents can contact the local Data Protection Officer via email:

China Mainland residents can contact the local Chinese data protection team via email:

Vietnamese residents can contact the local Vietnam data protection team via:

Polish residents can contact the local Polish data protection officer via: The relevant data controller entity is [ KANTAR POLSKA S. A.].

Australia residents can contact the local Australian data protection officer via: The relevant data controller entity is Australia Pty Ltd. 


This site uses cookies. We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services.
Cookies are small text files that can be used by websites to make a user's experience more efficient.

The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission.

This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.

You can at any time change or withdraw your consent from the Cookie Declaration on our site.

Your consent applies to the following domains:
Your current state: [auto field]
Your consent ID: [auto field]
Change your consent

The below section details the cookies we deploy on our website. Most cookies will only deploy when you visit certain pages of our website. For the purpose of the below information:

• 'Name’ means the name given to the cookie by the Provider
• ‘Provider’ means the organisation which provides Kantar with the cookie and stores your information – you can click on the name of the Provider to find out more information
• ‘Expiry’ means the length of time your information is retained
• ‘Session’ in the Expiry field means your information is only stored for the duration of your visit to the website/webpage – it is immediately deleted when you leave
• ‘Type’ means the method for which your information is collected

Cookie declaration last updated on [auto field] by Cookiebot:

 Name Provider
Expiry Type
 ats_source_tracking  Enhance Media  Used to track the source of a visit to the website and pass this to the Workday ATS when a job application is made.  12 hours  Text/JavaScript