The policy covers:
- 1. The types of personal data we collect, including a section on cookies , the reasons for us processing this data and who has access to it
- 2. How we store your data and your rights regarding the personal data we process
- 3. Details of how to contact us should you require further information or have any concerns
1.1 The personal data we collect
As a service user you will be required to provide us with certain personal data or sensitive, confidential information in the normal course of business:
- Contact details (name, business name, address, telephone number, email address)
- Domain registration details (user name, customer ID, password)
Cookies are files containing an identifier (a string of numbers or letters) which are sent by a web server to a web browser and stored by the browser then sent back to the server each time the browser requests a web page from the server, which include users’ IP address. Although not directly accessed, our servers will store anonymised IP addresses within these cookies for security and authentication purposes.
1.2 Cookies used by third parties / third party privacy policies
Google Analytics and other Google services
1.3 Our reasons for processing personal data
We process your personal data for the purposes of:
Communication –for the purpose of customer contact to support our business relationship with you
Performance of a service contract –to carry out the services we are providing for you
Order management –for administrative and financial business activities such as the managing of invoices or notifications of hosting renewals
Legal grounds –for identification purposes, to counter fraud and comply with legal obligations. To be lawful, each processing of personal data must be based on a ‘legal ground’ as specified in the EU GDPR. processes data based on three ‘legal grounds’ as follows:
i) For the performance of our service contract with you ii) For legitimate interests pursued by us, or iii) Your consent
1.4 Who has access to personal data?
does not, in the normal course of business, share any personal data to any third party without your explicit consent and comply internally with the requirements of the Data Protection Act (2018).
The only circumstance where personal data may be shared without consent would be where we are forced to comply with a statutory or court order, or where we were compelled to provide data to supervisory authorities such as the police or HM Revenue & Customs as part of their investigations into criminal acts. International transferal of data does not transfer data outside of the European Union / European Economic Area.
2. Data storage and choices you have on how we use your personal data
2.1 Retention and deletion of personal data
Personal data is encrypted and held on our secure servers for the purposes stated above and is removed when it is no longer required for these purposes. There are some instances where certain elements of personal data are stored for a longer period of time in accordance with legal obligations implemented by public institutions or for our own internal security.
2.2 Your rights in respect of the personal data we process
You have certain rights under data protection law with regards to how we process your personal data. Your principle rights are summarised below: Right to be informed You have the right to confirm whether we can use your process your personal data, the purpose of processing the data and the categories of data concerned. Right of access
You have the right to access the personal data we hold about you. We can provide this electronically on written request. Right of rectification
At any time you can contact us to update the personal data we hold about you. We will ensure your records are updated to reflect corrected data immediately. Right of erasure
In some cases you have the right to request the erasure of your personal data. These circumstances include (but are not limited to) the personal data is no longer relevant to the purpose for which it was collected or processed; your objection falls within the certain conditions of applicable data protection law; where you withdraw consent within consent-based processing; where processing is for direct marketing purposes or where data has been unlawfully processed. Exclusions to the criteria include where the processing of personal data is necessary to perform contractually agreed services, or compliance with a legal obligation or for the establishment or defence against legal claims. Right to restrict processing
There are some circumstances where you can restrict processing of your personal data. You have the right to request the restriction or suppression of your personal data. This is not an absolute right and only applies in certain circumstances. When processing is restricted, we are permitted to store the personal data, but not use it. Right to data portability
The right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services. It allows them to move, copy or transfer personal data easily from one IT environment to another in a safe and secure way, without affecting its usability. The right only applies to information an individual has provided.
For full details on your data protection rights please refer to: https://ico.org.uk
You may exercise your legal rights in respect of your personal data by written request via our website or by telephone.
If you believe that our processing of your personal data infringes data protection laws you have a legal right to complain to a supervisory body responsible for data protection.
3. How to contact us
We are always happy to provide further information or address any concerns you have in relation to our processing of your personal data. Please contact us via our website or by telephone if you have any questions or concerns.