Please rotate your device
Please rotate
your device

Privacy Policy

Updated May 24, 2018

This policy identifies why and how Kiosk collects and uses your personal data as a data controller.

For services provided by Kiosk as a data processor on behalf of our clients please refer to the client’s privacy policy.

You may give your personal details to Kiosk directly, such as on an application or contact form, or we may collect them from another source such as a jobs board. Kiosk must have a legal basis for processing your personal data. We will only use your personal data in accordance with this privacy policy. At all times we will comply with current data protection laws, including the EU’s General Data Protection Regulation (GDPR) in effect from May 25, 2018.

1. Collection and use of personal data

As a data controller, Kiosk may collect and process your personal data (which may include sensitive personal data) for one or more of the following purposes:

In some cases we may be required to use your personal data for the purpose of investigating, reporting and detecting criminal activity and also to comply with laws that apply to us. We may also use your information during the course of internal audits to demonstrate our compliance with certain industry standards.
We must have a legal basis to process your personal data. The legal bases we rely upon are:

This is where Kiosk has a legitimate reason to process your data providing it is reasonable and does not go against what you would reasonably expect from us. Where Kiosk has relied on a legitimate interest to process your personal data our legitimate interests are as follows:

Kiosk has certain legal and contractual requirements to collect personal data. If you do not give us personal data we need to satisfy our statutory and contractual requirements we may not be able to continue our relationship with you, or provide services to you that you may have requested.

2. Overseas transfers

Kiosk has offices and staff in the USA, Canada and the EU. Kiosk may transfer the information you provide us between locations. We will take steps to ensure appropriate protections are in place to ensure the security of your information during transfer.

3. Data retention

Kiosk will retain your personal data only for as long as is necessary to be able to use it for the reasons given in this privacy policy or for as long as we are required to keep it by law. If you apply for a role at Kiosk via our website we may keep your information for the purpose of contacting you should any other opportunities become available; however we will only keep this information for a maximum of 36 months from last contact.

4. Your rights

Your rights under this privacy policy are as follows:

EU Citizens have additional data protection rights under the GDPR, including:

If you would like to exercise any of your rights please contact us via email at
If you have specific questions about your personal data in relation to GDPR please email

5. Cookies

We may obtain data about you from cookies. These are small pieces of data stored by your browser at the request of websites that you visit, including a user ID the site uses to track the pages you have visited. Cookies are widely used in order to make websites work, or work more efficiently, for ensuring security and to provide information to the owners of the site. Cookies may also be used to deliver more personalised content. You can view a complete list of Cookies used on this website here.
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit Please note that in a few cases some of our website features may not function if you remove cookies from your browser.

6. Links to external websites

Kiosk’s website may contains links to third-party websites. Please be aware that Kiosk is not responsible for the privacy policies of such other sites. When you leave our site we encourage you to read the privacy policies of each and every website that collects personal data. This privacy policy applies solely to information collected through

7. Data security

Kiosk uses appropriate technical and organizational measures, including encryption, to protect your personal information and privacy. We protect your personal information using a combination of physical and software security controls, including access controls that restrict and manage the way in which your personal information and data is processed, managed and handled. Whilst we cannot guarantee the security of your personal information, we commit to taking all reasonable steps to do so. Our data security policies and controls are reviewed on a regular basis.

If you have any questions about the security of our website, you can email our Data Security Officer at

8. Changes to this privacy policy

We will update this privacy policy from time to time. We will post any changes on the policy with revision dates. If we make any material changes, we will notify you.

9. Questions

If you have questions about any of the processes or procedures set out in this privacy notice please contact: