Privacy Policy
Privacy policy—website—web version
Prepared by: |
Robert Wieder |
|
Approved by & on: |
2024-06-13 |
|
Valid from: |
2024-06-13 |
|
|
|
|
Version history |
|
|
Date: |
Changes made: |
Introduction
Oneid Technologies Ltd (we, us, our) take your privacy seriously, and we are committed to protecting your personal data.
This privacy and cookie policy (together with any other documents referred to on our website or which we have sent you) tells you:
• Who we are.
• How we collect, use, store and share your personal data.
• Your privacy and other related rights under the provisions of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, and the EU General Data Protection Regulation (EU GDPR) which applies across the European Economic Area (EEA).
• How to contact the UK Information Commissioner’s Office in the event that you have a complaint.
Please note that we may operate other websites which may have their own privacy notices or policies, and you should check those notices and policies in relation to your use of those websites.
Please note where our website includes links to third-party websites and or applications, clicking on those links, or enabling those connections, may allow third parties to collect or share data about you. We have no control over these third-party websites and or applications and are not responsible for their privacy statements. You must therefore make sure that you understand how those websites and organisations will use your personal data and not rely on this policy.
Please read this privacy and cookie policy, and any other privacy notice or policy that we may have provided to you. We want to be sure that you are fully aware of how and why we are using your data.
Please note that this website is not intended for children, and we do not knowingly collect data relating to children.
Who are we?
We are Oneid Technologies Ltd. Our contact details are as follows: 10b Clarendon Gardens, London, England, W9 1AY contact@getoneid.com.
We are the ‘data controller’ for the information that we collect when you visit our website. That means that we decide how to use information about you (referred to as ‘personal data’) and we are responsible for looking after your personal data in accordance with data protection legislation. We will explain below how we collect and use your personal data, and what we mean by the term ‘personal data’. Please note that when we refer to ‘processing’ your personal data, what we mean is using your personal data in connection with this website and or our services by acquiring it, using it, storing it, communicating it to other people (with your consent or as part of our service to you) or deleting it.
We have appointed a Data Manager who will be able to help you if you have any questions about this privacy and cookie policy. If you do have any questions, or you would like to exercise any of your legal rights in relation to your personal data, then please contact them at our address set out above.
We may update this privacy and cookie policy at any time. Any changes we may make to our policy in the future will be posted on this page. Please check back frequently to see any updates or changes made.
Complaints
Should you have any complaints or queries about anything relating to the privacy of your personal data, or any other data protection issues, please let us know using the contact details above and we will do our best to deal with them. However, you also have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection issues. The ICO may be contacted on their helpline number which is 0303 123 1113 between 9am and 5pm Monday to Friday, or by other contact methods as set out on their website: www.ico.org.uk.
Personal data we collect about you
The term personal data means any information about an individual from which that individual may be identified. It does not, therefore, include data where the identity has been removed (anonymised data).
We may collect, store and use some or all of the following categories of data about you.
When you use our website, we may record:
• technical information, including the type of device you use to access our website, the Internet Protocol (IP) address, your login data, the type and version of your browser, your time zone setting and location, browser plug-in types and versions, operating system, platform and mobile network information; and
• your usage of our website, including the full Uniform Resource Locators (URL), the pages you viewed, the page response times, any download errors, the length of time you were on a particular page, how you interacted with the page (such as scrolling, clicks and mouse-overs), and how you browsed away from the page.
When you contact us or use any of our services or purchase any of our products:
• your name and contact information, including email address and telephone number; |
• business/company details if you have contacted us on behalf of a business/company; |
• your gender information, if you choose to give this to us; |
• your personal or professional interests; |
• your professional and/or personal online presence (eg LinkedIn or Facebook profile); |
• information about how you use our website, IT, communication and other systems; |
• your responses to surveys, competitions and promotions; |
• personal information such as age, address, biometric information, logins and similar; |
This personal data is needed so that we can provide services and or supply products to you, your business or your company. If you do not provide the personal data asked for, we may be delayed or prevented from providing those products and or services.
As our services heavily depend on identification, we may obtain personal data from you that is referred to as ‘Special Category’ personal data, such as biometric data. Special category personal data collected may also, at your choice, include details about your health and genetics.
Normally we will not seek to obtain any information about criminal convictions and offences.
How we collect your data
We will collect most of your personal data directly from you, whether in person, by telephone, text or email and/or via our website. This might be when you:
• create an account on our website; |
• complete an online form; |
• subscribe to one of our publications/newsletters; |
• request that information be sent to you; |
• enter a competition; |
• take part in a survey; |
• write to us with information; |
• send a postal form to us; |
• telephone, fax or text us; |
• send information to us using social media; or |
• provide feedback on products and or services. |
• |
However, we may also collect information:
• from publicly-accessible sources (for example the internet, LinkedIn or Companies House);
• directly from a third party where the issue involves someone else (for example referees for a job);
• from automated technologies or interactions with our website through the use of cookies and similar; and
• via our systems (for example door entry systems and reception logs, CCTV and access control systems, communications systems, email and instant messaging).
How we use your data
We will only use your personal data when the law allows us to do so, and where we have a proper reason for doing so. Most often, we will use your personal data in the following circumstances:
• Where your personal data is required to access our services
• Where you give us your consent to using your personal data; for example when you correspond with us or request a newsletter (your consent may be withdrawn by you at any time as set out in this policy).
• For the performance of our contract with you, or to take steps at your request before entering into a contract.
• Where it is necessary for our legitimate interests (or those of a third party); for example, we have a business or commercial reason for using your personal data and your interests and fundamental rights do not override those interests.
• Where we need to comply with a legal or regulatory obligation.
Normally, we will only use your data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another related reason, and that related reason is compatible with the original purpose. If we need to use your data for an unrelated purpose, we will seek your consent to use it for that new purpose.
We have set out, in the table below, details of the ways that we may use your personal data, the legal bases we rely on to do so, and what our legitimate interests are, where relevant.
Note that it may be necessary for us to process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data.
Purpose |
Data type |
Lawful basis/legitimate interest |
|
Register on our website to receive a newsletter |
Name Email Address
|
Consent Consent |
|
Purchase a product or services |
Name Email Address Personal Identifiers such as date of birth and biometrics Account Address Delivery Address Payment details |
Performance of a contract |
|
Use of our products or services |
Name Email Address Personal Identifiers such as date of birth and biometrics Account Address Cryptographic and other keys |
Performance of a contract |
|
Job application |
Name Email Address Home Address Experience Education/skills Availability Personal interests Referee details |
Performance of a contract |
|
If you require more details about this, please contact us.
Sharing your data
Normally, we will not share your personal data with any third parties. If we do need to share your personal data, we will contact you to obtain your express consent before doing so.
We may need to share your data with third parties where they provide services on our behalf (for example delivery companies or those who help us to operate the website). We require that all our third-party service providers take necessary security measures to protect your personal data. We do not permit your personal data to be used by those third parties for their own purposes, and they may only process your data for specified purposes, and in accordance with our instructions.
We may share your personal data with third parties if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, to enforce or apply our site terms of use, or to protect the rights, property or safety of our site, our users and others. We will, however, ensure that sharing of your data is kept to a minimum.
We may need to share your data with third parties to whom we may choose to sell, transfer or merge parts of our organisation. If this occurs, the new owners may use your personal data in the same way as set out in this privacy and cookie policy.
If you have given your consent to being sent information or marketing materials you may at any time ask us to stop sending these to you simply by contacting us; or, where provided, by logging into the website and checking or unchecking relevant boxes to adjust your preferences; or by following the opt-out links on any communication or marketing message sent to you.
We use Google Analytics to collect information as to those who use our website, including IP addresses, unique identifiers, device and software details, mobile phone carrier and geo location data. This helps us to understand the use that is made of our website. Google is prohibited from using our data for any other purposes. Go to www.marketingplatform.google.com/about/analytics/terms/us/ to read the Google Analytics Privacy Policy.
We may be required to disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations.
Storing and retaining your data
Personal data is stored on our secure servers and/or at our premises and on the blockchain. Special rules will apply to the protection of your data if it is stored outside the UK/EEA. Special rules will also apply where, for example, we need to contact third parties on your behalf who have offices outside the UK/EEA, where electronic services and resources are based outside the UK/EEA, or where there is an international element to your matter. Please note that we routinely store personal data on the blockchain and blockchain nodes may be located in UK/EEA, USA, Asia Pacific or rest of the world, as we do not control nodes.
You EXPRESSLY authorise us to store your personal data including Special category personal data on any blockchain and on nodes that may be located in UK/EEA, USA, Asia Pacific or rest of the world.
Please note that the web hosting services used by us are based in the UK.
It may also be necessary for us to transfer personal data relating to you to one or more countries which have been assessed by the Secretary of State or, where the EU GDPR applies, by the European Commission as providing an adequate level of protection for personal data to provide for expansion and or future requirements.
We may also need to transfer your personal data to countries that have not been assessed by the Secretary of State or, where the EU GDPR applies, by the European Commission as providing adequate protection. In such cases we will always take steps to ensure that, wherever possible, the transfer complies with data protection law, and that your personal data will be secure. We plan to use standard data protection contract clauses which have been approved by the Secretary of State or the European Commission (as applicable) in such circumstances together with our data storage encryption.
For further information please contact our Data Manager.
We will keep your personal data only for as long as is necessary. In working out how long we need to keep your personal data we take into account the amount, nature and sensitivity of the personal data, the potential for harm to arise from its unauthorised use or disclosure, the purposes for which we process it, and as to whether those purposes may be achieved by other means, and the applicable legal requirements. Since retention periods will differ for different types of personal data please contact us for further details.
In order to ensure that your personal data is kept secure, and to prevent there being any breach of confidentiality or unauthorised use, we have put in place security measures which are intended to prevent your personal data from being accidentally lost or used or accessed unlawfully. Access to your personal data is restricted to those with a need to access it, and regard will be had to the need for confidentiality when that personal data is processed.
Our systems are subject to rigorous testing and we observe industry standards for information security.
If there is a suspected data security breach you will be notified. Where relevant we will also inform the appropriate regulator (including the Information Commissioner’s Office) of a suspected data security breach where we are legally required to do so.
We use a variety of measures to ensure your data is kept as secure as possible including but not limited to using industry leading password hashing algorithms, strong data storage encryption and enforcing data encryption across our websites.
Please bear in mind that the transmission of information via the internet is not completely secure, and whilst we will do our best to protect your personal data, we cannot guarantee the security of data transmitted via our website, or by email, and any such transmission is at your own risk.
Your legal rights
Under the UK[/EU] GDPR you have certain legal rights which apply in certain circumstances. These include the right to:
• Request access to your data: sometimes called a ‘subject access request’; this allows you to receive, from us, confirmation as to whether or not your personal data is being processed, and if so to gain access to that personal data and various other information about it, including the purpose for the processing, with whom the data is shared, how long the data will be retained, and the existence of various other rights.
• Request correction of your data: sometimes called a ‘right to rectification’, this is a right to obtain from us, without undue delay, the putting right of inaccurate personal data concerning you.
• Request erasure of your data: sometimes referred to as the ‘right to be forgotten’; this is the right for you to request that, in certain circumstances, we delete data relating to you.
• Restrict processing of your data: the right to request that, in certain circumstances, we restrict the processing of your data.
• Object to the processing of your data where we are relying on our legitimate interests: this is, a right, in certain circumstances, to object to personal data being processed by us where it is in relation to direct marketing, or in relation to processing supported by the argument of legitimate interest.
• Request the transfer of your data to another party: the right, in certain circumstances, to receive that personal data which you have provided to us, in a structured, commonly used and machine-readable format, and the right to have that personal data transmitted to another controller.
• A right not to be subject to automated decision making: that is to say, a right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you, or similarly significantly affects you.
In some circumstances we may not be able to do what you have asked; for example, where there is a statutory or contractual requirement for us to process your data and it would not be possible to fulfil our legal obligations if we were to stop.
You may obtain further information on your rights from the website of the Information Commissioner’s Office.
Cookies
We use cookies in connection with the operation of our website. A cookie is a small file that is sent by a web server (where we host our website) to a web browser (from where you view our website), and which is then stored by the browser.
Usually, cookies do not hold any data by which you can be identified, although if we do hold personal data about you (for example, because you have subscribed to a service that we offer) the cookie may be linked to that data.
We use cookies for the following purposes:
• Session Cookie: Used to maintain user sessions across requests. Secure and expires after 5 minutes of inactivity.
• CSRF Cookie: Used to protect against Cross-Site Request Forgery (CSRF) attacks. Secure.
In addition to cookies used by us, our service providers may also use cookies, and those cookies may also be stored in your browser when you visit our website.
If you wish to do so then usually you can prevent cookies from being downloaded to your browser and may delete those that have already been downloaded. How this is achieved varies between different browsers. Consult the website of your browser provider for more details. However, you should be aware that if you block or delete cookies this may have a detrimental impact upon your ability to access our website and the services that we provide. It may mean that not all of the facilities on our website will be accessible by you, or it may mean that you are unable to access any member services which we provide. We regret that we cannot, for technical reasons, supply user-specific services, including secure user login and session management, unless your browser is set to accept cookies.
For further information about the cookies we use please contact our Data Manager.
This privacy policy was published on 2024-06-13.
The terms and provisions of this privacy policy may be changed, updated and amended from time to time.