Ten facts about GDPR
- Start date:It came into effect on 25th May 2018.
- Evolution, not revolution:It is a refresh of existing EU data protection laws, updated for the digital age.
- Forget “PII” (Personally Identifiable Information)?:GDPR applies to any information relating to identifiable people, known as “personal data”. This definition is now much broader than it was under the Data Protection Act and includes digital identifiers such as emails, cookies and device IDs, circumstances where individuals can be singled out and pseudonymous data. Consequently, the concept of anonymity has been narrowed.
- Service providers are regulated:GDPR applies to service providers (processors) who process data on behalf of others (controllers). Before GDPR, only controllers had legal obligations.
- Data is global, so GDPR is global:GDPR applies to any organisation that processes personal data in any EU state, sells goods or services in the EU or monitors individuals located in the EU.
- Accountability and transparency:GDPR requires justification for the processing of personal data, such as genuine customer consent or a legitimate business interest. Mere interest is not enough.
- Power to the people:GDPR introduces new rights for individuals, such as a right of erasure and a right to portability. People now have far greater control over use of their data than ever before.
- Profiling is covered:GDPR expressly covers the profiling of individuals. For example, individuals have the right to opt out of direct marketing and (importantly) all related profiling.
- Consumer awareness of data privacy issues is increasing – GDPR reinforces this trend:Individuals have the right to know how their data is used, and EU regulators also have new audit powers.
- The consequences of making mistakes are greater than ever:The statutory fines under GDPR (up to 4% of global turnover) have been grabbing headlines, but perhaps more interesting is the power consumer interest groups now have to enforce rights on the behalf of individuals.
This website is provided by Phoenix Data Innovations Limited. Registered Address: Suite 2A, Blackthorn House, St, Pauls Square, Birmingham, B3 1R. We take very seriously the privacy of our website users and the security of their personal information.
Grounds for data collection
Processing of your personal information (meaning, any information which may potentially allow your identification with reasonable means; hereinafter “Personal Information“) is necessary for the performance of our contractual obligations towards you and providing you with our services, to protect our legitimate interests and for compliance with legal obligations to which we are subject.
What information we collect?
We collect two types of data and information from Users.
The first type of information is un-identified and non-identifiable information pertaining to a User(s), which may be made available or gathered via your use of the Site (“Non-personal Information”). We are not aware of the identity of a User from which the Non-personal Information was collected. Non-personal Information which is being collected may include your aggregated usage information and technical information transmitted by your device, including certain software and hardware information (e.g. the type of browser and operating system your device uses, language preference, access time, etc.) in order to enhance the functionality of our Site. We may also collect information on your activity on the Site (e.g. pages viewed, online browsing, clicks, actions, etc.).
The second type of information Personal Information which is individually identifiable information, namely information that identifies an individual or may with reasonable effort identify an individual. Such information includes:
- Device Information: We collect Personal Information from your device. Such information includes geolocation data, IP address, unique identifiers (e.g. MAC address and UUID) and other information which relates to your activity through the Site.
- Registration information: When you register to our Site you will be asked to provide us certain details such as: full name; e-mail or physical address, and other information.
- Contact information: When you submit a contact request form, you will be asked to provide us certain details such as: full name; e-mail, telephone number, company and other information.
How do we receive information about you?
We receive your Personal Information from various sources:
- When you voluntarily provide us your personal details in order to register on our Site;
- When you use or access our Site in connection with your use of our services;
- From third party providers, services and public registers (for example, traffic analytics vendors).
What information we collect?
We may use the information for the following:
- Communicating with you – sending you notices regarding our services, providing you with technical information and responding to any customer service issue you may have;
- To communicate with you and to keep you informed of our latest updates and services where requested by you;
- To serve you advertisements when you use our Site (see more under “Advertisements”);
- To market our websites and products (see more under “Marketing”);
- Conducting statistical and analytical purposes, intended to improve the Site.
In addition to the different uses listed above, we may transfer or disclose Personal Information to our subsidiaries, affiliated companies and subcontractors.
- Hosting and operating our Site;
- Providing you with our services, including providing a personalized display of our Site;
- Storing and processing such information on our behalf;
- Serving you with advertisements and assist us in evaluating the success of our advertising campaigns and help us retarget any of our users;
- Providing you with marketing offers and promotional materials related to our Site and services;
- Performing research, technical diagnostics or analytics;
We may also disclose information if we have good faith to believe that disclosure of such information is helpful or reasonably necessary to: (i) comply with any applicable law, regulation, legal process or governmental request; (ii) enforce our policies (including our Agreement), including investigations of potential violations thereof; (iii) investigate, detect, prevent, or take action regarding illegal activities or other wrongdoing, suspected fraud or security issues; (iv) to establish or exercise our rights to defend against legal claims; (v) prevent harm to the rights, property or safety of us, our users, yourself or any third party; or (vi) for the purpose of collaborating with law enforcement agencies and/or in case we find it necessary in order to enforce intellectual property or other legal rights.
EXERCISE YOUR RIGHTS
You have the following rights in relation to the personal information we hold about you:
- Your right of access. If you ask us, we’ll confirm whether we’re processing your personal information and, if so, provide you with a copy of that personal information (along with certain other details). If you require additional copies, we may need to charge a reasonable fee.
- Your right to rectification. If the personal information we hold about you is inaccurate or incomplete, you’re entitled to have it rectified. If we’ve shared your personal information with others, we’ll let them know about the rectification where possible. If you ask us, where possible and lawful to do so, we’ll also tell you who we’ve shared your personal information with so that you can contact them directly.
- Your right to erasure. You can ask us to delete or remove your personal information in some circumstances such as where we no longer need it or if you withdraw your consent (where applicable). If we’ve shared your personal information with others, we’ll let them know about the erasure where possible. If you ask us, where it is possible and lawful for us to do so, we’ll also tell you who we’ve shared your personal information with so that you can contact them directly.
- Your right to restrict processing. You can ask us to ‘block’ or suppress the processing of your personal information in certain circumstances such as where you contest the accuracy of that personal information or you object to us processing it. It won’t stop us from storing your personal information though. We’ll tell you before we lift any restriction. If we’ve shared your personal information with others, we’ll let them know about the restriction where it is possible for us to do so. If you ask us, where it is possible and lawful for us to do so, we’ll also tell you who we’ve shared your personal information with so that you can contact them directly.
- Your right to data portability. With effect from 25 May 2018, you have the right, in certain circumstances, to obtain personal information you’ve provided us with (in a structured, commonly used and machine readable format) and to reuse it elsewhere or to ask us to transfer this to a third party of your choice.
- Your right to object. You can ask us to stop processing your personal information, and we will do so, if we are:
- relying on our own or someone else’s legitimate interests to process your personal information, except if we can demonstrate compelling legal grounds for the processing; or
- processing your personal information for direct marketing.
- Your rights in relation to automated decision-making and profiling. You have the right not to be subject to a decision when it’s based on automatic processing, including profiling, if it produces a legal effect or similarly significantly affects you, unless such profiling is necessary for entering into, or the performance of, a contract between you and us.
- Your right to withdraw consent. If we rely on your consent (or explicit consent) as our legal basis for processing your personal information, you have the right to withdraw that consent at any time.
- Your right to lodge a complaint with the supervisory authority. If you have a concern about any aspect of our privacy practices, including the way we’ve handled your personal information, you can report it to the UK Information Commissioner’s Office (ICO). You can find details about how to do this on the ICO website athttps://ico.org.uk/concerns/ or by calling their helpline on 0303 123 1113.
- If you would like to access, review, update, rectify, and delete any Personal Information we hold about you, or exercise any other data subject right available to you under the EU General Data Protection Regulation (GDPR), email info@phoenixdatainnovcomwith the heading Personal Information. Our privacy team will examine your request and respond to you as quickly as possible.
- Please note that we may still use any aggregated and de-identified Personal Information that does not identify any individual, and may also retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
We will retain your personal information for as long as necessary to provide our services, and as necessary to comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods will be determined taking into account the type of information that is collected and the purpose for which it is collected, bearing in mind the requirements applicable to the situation and the need to destroy outdated, unused information at the earliest reasonable time. Under applicable regulations, we will keep records containing client personal data, account opening documents, communications and anything else as required by applicable laws and regulations.
We may rectify, replenish or remove incomplete or inaccurate information, at any time and at our own discretion.
Strictly Necessary Cookies
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
|· ARRAffinity (Session)
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
|· vuid (729 Days)
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
· SID (2914985 Days)
· HSID (2914985 Days)
· demographics (2914985 Days)
· VISITOR_INFO1_LIVE (179 Days)
· APISID (2914985 Days)
· LOGIN_INFO (2914985 Days)
· GPS (< 1 Days)
· SSID (2914985 Days)
· YSC (Session)
· SAPISID (2914985 Days)
|· LOGIN_INFO (2914985 Days)
|· IDE (2914985 Days)
|· NID (182 Days)
Third party collection of information
How do we safeguard your information?
Transfer of data outside the EEA
Please note that some data recipients may be located outside the EEA. In such cases we will transfer your data only to such countries as approved by the European Commission as providing adequate level of data protection, or enter into legal agreements ensuring an adequate level of data protection.
We may use a third-party advertising technology to serve advertisements when you access the Site. This technology uses your information with regards to your use of the Services to serve advertisements to you (e.g., by placing third-party cookies on your web browser).
You may opt-out of many third-party ad networks, including those operated by members of the Network Advertising Initiative (“NAI”) and the Digital Advertising Alliance (“DAA”). For more information about this practice by NAI and DAA members, and your choices regarding having this information used by these companies, including how to opt-out of third-party ad networks operated by NAI and DAA members, please visit their respective websites: http://optout.networkadvertising.org/#!/ and http://optout.aboutads.info/#!/.
We may use your Personal Information, such as your name, email address, telephone number, etc. ourselves or by using our third party subcontractors for the purpose of providing you with promotional materials, concerning our services, which we believe may interest you.
Out of respect to your right to privacy we provide you within such marketing materials with means to decline receiving further marketing offers from us. If you unsubscribe we will remove your email address or telephone number from our marketing distribution lists.
Please note that even if you have unsubscribed from receiving marketing emails from us, we may send you other types of important e-mail communications without offering you the opportunity to opt out of receiving them. These may include customer service announcements or administrative notices.
Protecting the privacy of the young, i.e. children under the age of 13, is especially important. For that reason, we never collect or maintain information at our site from those we actually know are under 13, and no part of our site is structured to attract anyone under 13. If a child has provided us with personal information, we ask that a parent or guardian of the child contact us firstname.lastname@example.org if they would like the information submitted by the child deleted from our database. We will use all reasonable efforts to delete such information from our database.
How to contact us
If you have any general questions about the Site or the information we collect about you and how we use it, you can contact us at email@example.com
Phoenix Data Innovations Limited
Registered Address: Suite 2A, Blackthorn House, St, Pauls Square, Birmingham, B3 1RL
Last Modified: 11th June 2019