We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.
We use regular Malware Scanning.
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en
Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt Out page or by using the Google Analytics Opt Out Browser add on.
When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
How long will we keep your information?
We’ll only keep your information for as long as necessary (but no longer than we have to). Just in case you need to access records or there is a dispute to resolve.
When determining the relevant time we store information periods, we take into account factors such as:
- Legal obligation(s) requiring data to be kept for certain periods of time
- (Potential) disputes
- Guidelines issued by the UK’s data protection authority.
A few examples for how long we’ll keep your data:
- Unless you ask us not to, we store your generic details (i.e. name, surname, contact details) for up to two years after you stop being our customer, to contact you just in case you change your mind
How do you protect my information?
The security of your information is really important to us. Any information sent to us is protected using robust security methods. The methods we use are industry-standard ensuring data is safeguarded whilst being sent over unprotected communications paths such as the internet. When it reaches us, we store it securely and only provide access to it by those authorised. Although we safeguard your personal information once received, We cannot guarantee the safety of any personal information you transmit to us using online methods.
Our security measures include:
- Encryption of data where appropriate
- Regular penetration testing of systems
- Internal policies setting out our data security approach
- Training for employees on security and privacy
What are my rights when it comes to my information?
Here we’ll explain the rights you have regarding your information:
1. The right to be informed
2. The right of access
You’re welcome to ask us what information we have about you, any time you like.
This is so you’re aware and can check that we’re using your information in accordance with data protection law.
We won’t charge for this and we’ll do our best to get details back within 30 days.
Check out the Contacting Us section if you want to find out how to get access to your information.
3. The right to rectification
You’re entitled to have your information corrected if it’s inaccurate or incomplete. Just let us know where to make the changes!
4. The right to erasure
This is also known as ‘the right to be forgotten’ and, in simple terms, enables you to request the deletion or removal of your information where there’s no compelling reason for us to keep using it. This is not a general right to erasure; there are exceptions.
5. The right to restrict processing
You have rights to ‘block’ or suppress further use of your information. When processing is restricted, we can still store your information, but may not use it further. We keep lists of people who have asked for further use of their information to be ‘blocked’ to make sure the restriction is respected in future.
6. The right to data portability
You have rights to obtain and reuse your personal data for your own purposes across different services. e.g. if you decide to switch to a new provider, this enables you to move, copy or transfer your relevant information easily between our IT systems and theirs safely and securely, without affecting its usability, such as your name and address.
7. The right to object
You have the right to object to certain types of processing, including processing for direct marketing.
8. Rights in relation to automated decision making and profiling
We also use technology to make decisions automatically based on your credit score analysis, which allows us to guarantee your regular payments for our products and services. What this means for you is that we’ll decide your eligibility for our products and services based on your credit history.
To exercise any of these rights at any time, check out the Contact Us section.
Here’s a glossary of data types
Contact details: name, passwords, address, telephone number, email address, delivery details.
Account data: Customer ID, payment method, bank account, credit card number (if applicable to your account), billing address, product subscriptions, segment, products purchased through any of our channels, as well as the transaction details. Your credit rating information (acquired from credit rating agencies). They also include Customer Care data: your support requests and the details required to resolve them. The time and duration of the call and the solution applied. We may also record your call to the service desk.
Telephony data: your telephone number, the phone numbers that you call and send messages to, time and duration of the call, geo-location data, device details (hardware model, operating system version).
Data collected in our website: when you log into our website we collect the time and duration of the session, pages visited, campaign attributes, transaction details and technical details (IP/MAC address, operating system and browser type)