“Personal Data” means any data, such as your name, telephone number, email address, IP (“Internet Protocol”) address or location data.
Legal basis for processing
If you have any questions or need more information about the legal basis for the collection of your Personal Data, you can reach us at firstname.lastname@example.org or call 0800 001 6363.
Information we collect
We may ask you for Personal Data when you:
Categories of Personal Data we collect may include your name, email address, address, and contact telephone numbers. We may also ask you for other information that we need to process payment for our services. If you make a payment your Payment Data will be processed via the payment service provider Stripe Payments UK, Ltd., 7th Floor, The Bower Warehouse, 211 Old Street, London EC1V 9NR, United Kingdom, and we have no access to any Payment Data you may submit.
In order to provide you with a more consistent and personalised user experience in your interactions with MultiCerts, data collected through one source may also be linked to other data collected by MultiCerts through other sources. This may include data that helps us identify you when you access our website through several different devices. We may also enrich the data we collect with data obtained from other parties, such as our business partners or other third parties, to create individual profiles about you. Examples of how we may use this data include using it to improve your user experience when visiting our website, displaying options tailored to your preferences, and for targeted advertising.
Data Automatically Collected by Us
We may automatically collect information about user behaviour and usage regarding your visits to our websites, such as the pages you view, the links you click, and other actions you take in connection with our website.
We may also collect certain information about the browser you use to access our website, such as your IP address, device identifier, location data, browser type and language, your access times, the URL ("Uniform Resource Locator") of the website from which you arrived at our website, and the URL to which you are directed after leaving our website if you clicked on a link on our website.
To provide our website, we use the services of SiteGround Hosting Ltd of 7th Floor, 50 Broadway, SW1H 0DB, London, United Kingdom who process the below-mentioned data and all data to be processed in connection with the operation of our website on our behalf.
Data from third-party sources
We may obtain data about you from third-party sources, such as social networks, and other third parties. We may use this data to better analyse your user behaviour to improve our ability to provide you with relevant marketing information and services, and to prevent and combat fraud.
Our use of Personal Data
We may use your Personal Data for the following purposes:
Retention of your data
Sharing of Personal Data by us
Our affiliates and/or business partners may contact you with information about services and offerings. We will only share your Personal Data with affiliates and business partners who have agreed to protect your Personal Data and to use it only for the purposes we have specified.
With your consent, we may disclose your Personal Data for any purpose.
In addition, we may disclose your Personal Data: in connection with law enforcement, fraud prevention or other legal proceedings; as required by law or regulation; if MultiCerts (or a part of MultiCerts) is sold to or merged with another company; or if we have reason to believe that disclosure is necessary to protect MultiCerts, its clients or the public.
In all cases other than those described above, Personal Data will not be disclosed by us to third parties for their own marketing purposes without your consent.
External services and content on our website
We include external services or content on our website. When content or services are displayed to you, communication data including your IP address is exchanged between you and the respective provider for technical reasons.
In addition, the provider may process your Personal Data for further, own purposes. We have selected services or content from providers carefully and in line with the DPA and GDPR requirements, however, we have no control over the Personal Data collected by third parties and its processing by them.
For further information on the purpose and scope of the processing of your Personal Data, please refer to the privacy policies of the respective providers responsible under data protection law for the services or content we integrate:
Updating your information
If you believe that the information, we hold about you is inaccurate or that we are no longer entitled to use it and want to request its rectification, deletion, or object to its processing, please do so by contacting us.
Access Request and updating your Personal Data
In the event that you wish to make a Data Subject Access Request, you may inform us in writing of the same.
We will respond to requests regarding access and correction as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) days of receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request. If we are unable to provide you with any Personal Data or to make a correction requested by you, we shall generally inform you of the reasons why we are unable to do so (except where we are not required to do so under the respective legal regulations mentioned above).
Under the DPA and GDPR, you can exercise the following rights:
If you have any questions about the nature of the Personal Data we hold about you, or if you wish to request the erasure or rectification of Personal Data we hold about you, or to exercise any of your other rights as a data subject, please contact us.
The Supervisory Authority
The competent data protection authority in the UK is:
The Information Commissioner`s Office (ICO)
Wycliffe House, Water Ln,
Wilmslow SK9 5AF, UK
How we protect your Personal Data
Our data processing is subject to the principle that we only process the Personal Data that is necessary for the use of our services. In doing so, we take great care to ensure that your privacy and the confidentiality of all Personal Data are always guaranteed.
All transmitted data is protected by HTTPS encryption. Hyper Text Transfer Protocol Secure (HTTPS) is a protocol used to ensure secure data transmission on the Internet. The public-private key procedure is used here. This means that data encrypted with a publicly accessible key can only be decrypted again with a separate private key.
We also use technical and organisational security measures (TOMs) throughout the company to protect the data we manage from you against accidental or intentional manipulation, loss, destruction or against access by unauthorised persons.
Nonetheless, databases or data sets that include Personal Data may be breached inadvertently or through wrongful intrusion. Upon becoming aware of a data breach, we will notify all affected individuals whose Personal Data may have been compromised, and the notice will be accompanied by a description of the action being taken to reconcile any damage as a result of the data breach. Notices will be provided as expeditiously as possible after which the breach was discovered.
Collection and Use of Children's Personal Information
MultiCerts takes the privacy of children very seriously. We do not knowingly collect Personal Data from children through our website.
Does this policy change?
Who should I contact for more information?
If you would like to contact us regarding our privacy practices for any reason, please email us.
Saturday, 21 January 2023