UpliftingData is a trading name of COMBOBULATE LIMITED (company reg no.: 09681678). Further in this text COMBOBULATE LIMITED will be referred to as “we”, “us”, “our” etc.
Our registered address is COMBOBULATE LIMITED, The Rain Cloud, 76 Vincent Square, London, England, SW1P 2PD.
Please read the following privacy notice carefully. If you have any concerns, questions or suggestions, please do not hesitate to contact our data protection officer at firstname.lastname@example.org, or at Data Protection Officer, COMBOBULATE LIMITED, The Rain Cloud, 76 Vincent Square, London, England, SW1P 2PD
How we process your data in COMBOBULATE LIMITED
If you are a user of our website/website forms and/or our client or a potential client and/or you got in touch with us through other means like email, telephone etc, we collect information about you in order to be able to manage our relationship with you.
We are committed to keeping any information you provide to us securely and only processing it on the appropriate legal basis. Our ISO 27001 certification means our Information Security Management System is in line with international best practice.
You can rest assured we will never sell your data.
We will share your data with our trusted third-party suppliers that provide us with data related and other services. For instance, we use Amazon Web Services to store data (we chose them because of their excellent standard of data security). We, currently, only store data in Great Britain and Ireland.
When we share your data with third parties we will always have contracts in place with them to ensure they too are GDPR compliant and that they are only allowed to use your data for the purposes we specify.
We may also use your data for the purpose of determining whether we have any other products or services that may be useful to you and your business.
In certain circumstances we might be legally required to share your data. For example, if we receive a summons for its use in a court of law.
If we are processing data on behalf of one of our clients, they are responsible for determining how they use your data and for what purpose(s). We would only ever process that data according to terms agreed with our client when they sign up to our services. We hold such data only for the time period specified in each particular contract. Where possible we anonymize personally identifiable information when processing our client’s data.
WHAT PERSONAL DATA DO WE COLLECT?
When you browse our website, we collect unique identifiers such as your IP address (which is your device’s unique identification number) and track website usage (for example, which of our website pages you have visited). We use a third-party service called Google Analytics and their cookies to automatically collect data that tells us how our website is being used.
If you submit a form on our website, we might collect the data you provide on the form. If you are a potential client, we also obtain limited information from publicly available sources including LinkedIn profiles and Twitter handles; we do this to understand whether our products are likely to be of use to the business you work for and whether you are likely to be interested in hearing about them.
If you sign up for one of our products or services, we will agree the information required for us to perform that contract when you sign up.
If you are a user of our website/website forms and/or our client or a potential client or you got in touch with us through other means like email, telephone etc, we will collect any of the following pieces of information:
* Your Name
* Your Address (personal or corporate)
* Your Email Address (personal or corporate)
* Your Phone Number (personal or corporate)
* Job Title / Company
* Other Information Publicly Available (e.g. your profile picture on LinkedIn)
* CCTV Images (if you visit our offices)
If you have, or are in the process of, signing a contract agreement with us, we will also collect the following in addition to the data mentioned above:
* Billing Information
HOW WILL WE USE YOUR DATA?
If you are a user of our website/website forms and/or our client or a potential client or you got in touch with us through other means like email, telephone etc, we will use the data collected to market products and services to you that we think you might be interested in. For example, if you have a public LinkedIn profile showing your email address and you are a Fundraising Manager of a company which we believe would benefit from one of our products we may market that product to you. If you receive any such communications we will always make it clear from the outset how you can easily opt out of such marketing.
The data we collect when you browse our website is used to manage our website usage.
When you sign up to a service or product with us, the information collected as part of contractual arrangements is used to deliver our products and services to you. We will also use it to provide Customer Support by solving issues, for instance, via phone or email.
When carrying out assessment about our legitimate interest for processing data of our clients, potential clients, website visitors, etc. we have considered, among other things, the two following quotes from Recital 47 of EU GDPR regulations:
“Such legitimate interest could exist for example where there is a relevant and appropriate relationship between the data subject and the controller in situations such as where the data subject is a client or in the service of the controller.”
“The processing of personal data for direct marketing purposes may be regarded as carried out for a legitimate interest.”
Where we have collected data for marketing purposes, we believe we have a legitimate interest to share information on products and services with you which we think will be relevant to your business.
We have also assessed that we have a legitimate interest in collecting information on how our website is used. This helps us to learn about what people like most on our website and we use this information to improve user experience. It also assists us in keeping our website secure and preventing fraudulent activity.
How long do we hold the data
Due to the requirements of GDPR, every two years we will review the data we hold on individuals. The records which are no longer needed will be either anonymised or erased.
Your rights with regards to your data under GDPR
At UpliftingData trust and respect are built into the very foundations of our organisation. The following is a summary of the most important points of your rights under GDPR. You can find the full information at https://gdpr-info.eu
1. You have the right to enquire information about what data we hold about you.
2. You have the right to have your data amended.
3. In certain circumstances you can request restrictions on how your data is used.
4. Under GDPR you can ask for the data we hold on you in machine-readable form if you wish to transfer it elsewhere. This right applies only to data you have provided to us.
5. You can request “to be forgotten” (meeting the conditions of GDPR regulations). In these cases, we will immediately delete the data we hold on you.
6. If we fail to rectify complaints that you send to our DPO, you have the right to lodge a complaint with a supervisory authority (https://ico.org.uk/make-a-complaint/).
Thank you for taking the time to read this privacy notice.