IDC Privacy Policy (EU)

IDC (hereinafter referred to as “we” or “IDC”) is committed to conducting its business in line with best personal data protection practices. Personal data refers to any information that identifies you or could be used to identify you. This Privacy Policy provides you with transparent information about how IDC collects, processes, shares, and otherwise uses your personal data and about your related rights.


1. Who Processes Your Data?

The controller of your personal data is IDC. A full list of IDC affiliates is available here. Each affiliate acts as a Data Controller with respect to data processed, used, and stored as a part of services and activities conducted by an IDC affiliate. Certain services and activities may be conducted by several IDC affiliates.

For all matters related to privacy and the processing, use, and storage of your personal data, please contact IDC’s Privacy Compliance Officer at

For more information about IDC, please refer to here.


2. What Data Do We Process, Use, and Store When Providing Our Products and Services?

Depending on the product or/and service involved, IDC may collect various data types with distinct purposes in mind. Below, you will find more information on the data processed, used, and stored related to the products and services IDC provides:

  • Market Intelligence:IDC may use your name and email address, information about your employer, your job title, and other information provided at the time of registering with to deliver the Market Intelligence product ordered by you or your employer. We may also use your contact details to communicate with you when producing reports and other Market Intelligence products. In addition, we may log your IP address for security purposes.
  • Advisory Services/Consulting:IDC may use your name and email address, information about your employer, and your job title to provide Advisory Services ordered by you or your representatives. In some cases, IDC may collect additional personal data if required due to the nature of the consulting project.
  • Events Organization: When organizing conferences, webinars, networking events, and other events, we may collect the name, email address, job title, company, and phone number of each participant. In addition, we may collect details pertaining to professional profiles, including photos and information from social media profiles, as well as the names and email addresses of contacts from event partners. We may also collect any feedback or information participants, speakers, and/or partners have volunteered to provide to us via questionnaires submitted prior to or during events. We will use such data to organize and market such events, manage event participation, and present details about speakers and sponsors in the programs and/or brochures of such events, as well as on our website and via social media. We may share information on participants and speakers other than their contact details with our event partners, as listed on the event webpage, to prepare, improve, and organize the event, including the collection and review of event statistics, and to ensure that the event’s contents are relevant to and customized for the event audience.Some public IDC events can be recorded by means of photographs, audio recordings, and/or videos. Such photographs and recordings may subsequently appear on the respective conference webpage, on social media, or in the press. All events to be thus documented will be clearly indicated as such. IDC may separately seek your consent prior to recording if you are to feature predominantly in the planned recording (e.g., speakers and participants in interviews).Based on participants’ and speakers’ consent, we may share participants’ and speakers’ contact details with our event partners, as listed on the event webpage, for any follow-up communication, including marketing communication, on a one-time basis. We may ask you for such consent during your event registration and/or during the course of the event. For more details on the withdrawal of your consent, please see the Your Rights section, below. Your consent for us to share your contact details with event partners is unrelated to any consent that you may grant directly to any event partner during event networking, including by allowing an event partner to scan your electronic business card.If you request us to arrange additional event-related services for you, such as booking accommodation and/or flight tickets, we will also use your personal data to secure the requested arrangements.Networking tools at events: IDC may provide specific tools during the event to enhance your networking opportunities — in particular, a networking application and electronic business cards, as described below.Mobile application: In the event mobile app, your name, company, and job title (along with your photo, profile, and social media information, as provided by you) are visible to all other event participants. Opting for “private mode” will ensure that your name and contact details do not appear in the application.Electronic business cards: We may provide you with electronic business cards. These are incorporated, for instance, in your event badge and contain your name, email address, company phone number, job title, and company. You may provide such contact details to event partners by allowing them to scan your electronic business card. By allowing an event partner to scan your electronic business card, you provide your consent to this event partner to use your contact details, as included in the electronic business card, for any follow-up communication, including marketing communication on a one-time basis. Please refer to the Privacy Policy of the relevant event partner for more details about the processing of your personal data by the given event partner and your rights vis-à-vis this event partner.
  • Ancillary Services: To provide services related to updates on industry developments, IDC may use your name and email address to deliver these updates to you or your employer. Such services may include newsletters, market updates, market snapshots, and other value-added services or features provided by IDC, whether for remuneration or free of charge.


3. For How Long Do We Store Your Data?

We will store your personal data for as long as is necessary to provide you with the products and/or services requested by you or your employer; for as long as is reasonably required to store such information for our lawful business purposes, such as exercising our legal rights; or for as long as we are legally obligated to store such information.

We will store photographs and video and audio recordings from each event for a period of 3 years from the end of the respective event.

If you consent to us processing, using, and storing your personal data, we will do so for the duration of such consent — in other words, until such consent expires or is withdrawn. You have the right to withdraw your consent at any time. For more details on the withdrawal of your consent, please see the Your Rights section, below.


4. On What Legal Basis Do We Process, Use, and Store Your Data?

We process, use, and store your data primarily to perform our obligations under the contracts we have concluded with you or your employer.

In certain instances, we may also process your personal data based on our legitimate interests. IDC’s legitimate interests include offering and delivering our products and services to business customers, enhancing our customer base, exchanging professional knowledge about the industry, exercising our legal rights, preventing fraud or imminent harm, and ensuring the security and operability of our network and services.

In specific cases, we process your data based on consent.


5. Cookies

Cookies are small information files that are placed on your device when you visit our website. We use several cookie types, and each type performs a different function. Information in the cookies may be linked to personal data. Cookies enable you to navigate between pages efficiently and store your preferences, and they generally improve your web experience.

You can change your browser settings to enable or disable cookies or to display a warning before accepting any cookies. However, keep in mind that deleting cookies will prevent you from using many of the features of the website. We use cookies to maintain your log-in status and control your access as you move through the site. Cookies also enable us to personalize your preferences, including search, “myIDC,” and “remember me.”

We use external cookies to track your behavior on our website, including your search terms, documents accessed, and pages visited. If you are a registered user, this information is stored with your registration information, is identifiable by a unique number, and is used to provide you with a personalized website experience. We also analyze this data to improve our research offerings and enhance the website.

In addition to the internal cookies described above, by visiting our website, you may receive cookies from the third parties with which we cooperate. External cookies are set by these third parties. You may therefore wish to check the privacy policies governing their websites. You can do so by clicking on the below hyperlinks.

We aggregate statistics for analysis regarding the application types used to browse our website and those of IDC affiliates and the regions from which such browsing takes place. This information is not personally identifiable

In addition to cookies, IDC’s website may include features that enable sharing via third-party social media applications, such as Facebook’s like button and LinkedIn and Twitter widgets. Any personal information you provide via such social media applications may be collected and used by other users of that social media application, and such interactions are governed by the respective privacy policies of the companies that provide those applications. We do not bear responsibility for those companies or their use of your information.

If you choose not to receive cookies from our website, you may also wish to remove the cookies already on your device. describes the process by which you can remove cookies from your devices.


6. Marketing

We may contact you to invite you to our events and to inform you about the IDC news, services, features, and special offers that we believe may be of interest to you on the basis of our legitimate interest, including the provision of marketing communication within the limits prescribed by law.

Your marketing communication preferences may be changed at any time. If you would like to unsubscribe from an email sent to you, please follow the “unsubscribe” link and/or instructions placed at the foot of every IDC email.

Please note that we may occasionally send you important information (including via email) about the IDC services you are using or have used, including changes to applicable terms and conditions, and/or other communication or notifications, as may be required to fulfil our legal and contractual obligations. Such communication is not affected by your marketing communication preferences.


7. How Do We Secure Your Data When It Is Processed, Used, and Stored by Our Suppliers and Affiliates?

Our affiliates and/or external companies working with us or on our behalf for the purposes described in this Privacy Policy may have access to your personal data.

We share your data with our trusted business partners, who process your data as our data processors on our behalf and pursuant to our instructions. We strive to select our vendors carefully and ensure they are able to provide adequate data protection and security safeguards in accordance with Article 28 of the European Union’s General Data Protection Regulation (hereinafter referred to as GDPR). If such processors reside outside of the European Economic Area, all data transfers are conducted in accordance with Chapter V. of GDPR — in particular, in accordance with adequacy decisions issued by the European Commission, standard contractual clauses (Model Clauses), or (in the case of U.S.-based companies) active Privacy Shield certification.

In relation to the above, we may share your data with the following third parties:

  • Suppliers that provide IT support to IDC
  • Suppliers that support our marketing activities

In addition to sharing your data with third-party vendors, as described above, we may share your data with our affiliates, as listed here.

We may also share your personal data with other third parties as and when necessary:

  • to comply with legal processes;
  • to enforce or defend the legal rights of IDC in connection with corporate restructuring, such as a merger or business acquisition, or in connection with an insolvency situation;
  • to prevent fraud or imminent harm; and/or
  • to ensure the security and operability of our network and services.


8. What Are Your Rights?

As a data subject, you have the following rights:

  • The Right to Access: Upon your request, we will provide you with access to the personal data on you that we process, and we will send you a copy of that data.
  • The Right to Receive Information: You may contact us at any time with a request to receive more information regarding the following:
    • the purposes for which we use your personal data;
    • how we categorize your personal data;
    • the source or sources from which we received your personal data;
    • the recipients of your personal data;
    • the length of time we store your personal data; and
    • your rights as a data subject.
  • The Right to Portability: As applicable under Article 20 of GDPR, you have the right to receive a copy of your personal data from us in a structured and commonly used machine-readable format. You may also request us to transfer such data to another Data Controller.
  • The Right to Erasure: You may request us to erase your personal data from our records.
  • The Right to Rectification: If you discover that any of the data we possess about you is incorrect or incomplete, you can request to have such data amended via the contact information provided in Section 1 of this Privacy Policy.
  • The Right to the Restriction of Use: You may ask us to restrict our use of your personal data so that we can only use your personal data in ways stipulated by you. If you have obtained the right to the restriction of the use of your personal data, you will be informed beforehand should this right become invalid for any reason.
  • The Right to Object: In cases in which we rely on our legitimate interest to use your personal data, we must consider and acknowledge the interests and rights that you have under data protection law. Your privacy rights are always protected by appropriate safeguards and balanced with your freedoms and other rights. You have the right to submit an objection at any time to our use of your personal data based on our legitimate interest.
  • The Right to Withdraw Consent. You have the right to withdraw your consent at any time to our use of your personal data. Please note that a withdrawal of your consent does not affect the legality of the use of your personal data prior to your consent being withdrawn.

To exercise any of the above-mentioned rights, please contact us through the contact information provided in Section 1 of this Privacy Policy.

Additionally, you have the right to lodge a complaint with the competent Data Protection Authority if you believe your rights regarding our use of your personal data have been violated.


9. Data Security

IDC strives to ensure its security measures are in line with the industry’s best practices to prevent the loss, misuse, or alteration of the information in our possession. We strive to ensure the ongoing confidentiality, integrity, availability, and resilience of our processing systems and services and will aim to restore the availability of personal data and access thereto in a timely manner in the event of a physical or technical incident. We employ various security measures to protect the information we collect, as appropriate to the type of information, including encryption, firewalls, and access controls. IDC further ensures that all individuals who have access to your data and are involved in the processing, use, and/or storage thereof are bound by appropriate confidentiality obligations.

All information you provide to us is stored on our secure servers. All payment transactions are encrypted using SSL technology. You are responsible for keeping confidential any passwords that we give you (or you choose) that enable you to access certain parts of our website. For security reasons, such passwords must not be shared with anyone.


10. Links to Other Sites

We may provide references and/or links to other companies, organizations, and/or public institutions on our website that enable you to access their websites directly from ours. The websites of these entities are governed by the entities’ own privacy policies. If you have any queries concerning the way your personal data is processed, used, or stored by such entities, we recommend referring to the privacy policies on the relevant websites.

IDC strives to provide you with links to reputable high-quality websites that we consider to be of interest and relevance to you. Please note that we are not responsible for the content of such websites and cannot accept responsibility for any issues arising in connection with such third parties’ use of your personal data.


11. Changes to this Privacy Policy

We may periodically modify the provisions of this Privacy Policy and encourage you to review it from time to time in order to stay up to date with the most recent developments in the area of the protection of your personal data. In the event of significant changes, we may also choose to notify you via email should we have your email address in our records.

Updated versions of this Privacy Policy will be published on our website.

This Privacy Policy was last updated on November 7th 2018.