What information is collected?
User-supplied information: when you fill out a form such as to request a demonstration of our software, the company may ask you for your name, e-mail address, and other similar information. Any information supplied by the user is supplied with your consent unless otherwise stated. We will state at the time of requesting your information the purpose for which we are asking for your information, the way it will be used and how long it will be kept by the company. Marketing ‘prospects’ and existing ‘clients’ have personal data stored within a secure database which monitors access.
If you have provided the company with your consent to directly contact you to inform you of our services, you can inform us at any time if you no longer wish to receive these marketing communications. We always provide links to automatically opt out in all of our email communications to you, however, you can contact us directly to advise us that you wish to withdraw your consent by emailing email@example.com.
How and when information is used:
The company may use information described in different ways, for example:
- To market to users, where the user has given their consent by opting in to receive marketing information. Marketing may be via post, phone, email, according to the user’s opt-in selections.
- For system administration and to monitor website use, and otherwise as reasonably required to operate our business as a legitimate interest or as required by law.
- Prospective institutions key employees are contacted under legitimate interest for promotional purposes. They are given the opportunity to opt out at the bottom of each email.
- Prospects and Client data are used in processes such as Data Storage, Direct Marketing, Event Management, Profiling, and Reporting.
How the company protects user information:
The company endeavours to protect users’ information in accordance with applicable law, but the company cannot ensure the security of any information a user transmits to the company. Users transmit such information at their own risk. Security breaches involving personal data which is likely to cause a risk to the rights and freedoms of an individual will be reported to the Information Commissioner’s Office no later than 72 hours after the breach is identified, where feasible. Justification for the delay will be provided for any report not made within 72 hours. Individuals affected by a breach will be notified without undue delay if the breach poses a high risk to the rights and freedoms of the individual. Security breaches unlikely to result in a risk for the rights and freedoms of data subjects may not be reported.
Who has access to the information:
The company may disclose personal information for the above purposes where it has a legal obligation to do so or there is a legitimate interest in processing the information. The company does not share user information with outside third parties. Should the company be obligated to do so by law, any transfer of personal data by the company shall take place only if certain conditions are complied with:
- Transfers on the basis of adequacy of data protection.
- Transfers subject to the appropriate data protection safeguards through technical and organisational measures.
How to correct inaccuracies:
You can request access to or correction of information held by the company relating to you by emailing firstname.lastname@example.org or by phone on +44 (0)7398 863494, or by writing to Azorus Inc. 10 John Street, London UK WC1N 2EB Attention: Data Privacy Officer
Under data protection law, you have the right to access the personal information that we are processing which identifies you. You are also entitled to request information which we are processing about you through automated means to be transferred to you or a third party. You are also entitled, in certain circumstances, to request that we stop processing information we hold on you, to object to any processing that we are undertaking on your information or to have the data erased.
a) You have the right to request access to your personal data and know more specifically, why and how we hold it;
b) You have the right to rectification of inaccurate personal data, and we will ensure that inaccurate or incomplete data is erased, amended or rectified;
c) You have the right to have your personal data erased if: i. the data is no longer needed for its original purpose and no new lawful purpose exists; ii. the lawful basis for the processing is your consent, you withdraw that consent, and no other lawful ground exists; iii. you exercise the right to object, and we have no overriding grounds for continuing the processing; iv. the data has been processed unlawfully; or v. erasure is necessary for compliance with EU law or specified British law
d) You have the right to restrict the processing of your personal data if: i. the accuracy of the data is contested (and only for as long as it takes to verify that accuracy); ii. the processing is unlawful, and you request restriction (as opposed to exercising the right to erasure); iii. Azorus Inc. no longer needs the data for their original purpose, but the data is still required by Azorus Inc. to establish, exercise or defend legal rights; or iv. verification of overriding grounds is pending in the context of an erasure request.
e) You have the right to receive your own personal data, which you have provided to Azorus Inc., in a structured, commonly used and machine-readable format. You also have the right to transmit the data to another data controller without hindrance from Azorus Inc. unless this is technically unfeasible.
f) Whenever Azorus Inc. justify in writing to you via privacy notice that the data processing we carry out of your personal data is on the basis of its legitimate interests, you can object to such processing. As a consequence, Azorus Inc. would no longer be allowed to process your personal data unless it can demonstrate compelling, legitimate grounds for the processing. These grounds must be sufficiently compelling to override your interests, rights and freedoms, such as to establish, exercise or defend against legal claims.
g) You have the right not to be evaluated on the basis of automated processing. The right not to be subject to automated decision-making applies only if such a decision is based solely on automated processing and produces legal effects concerning you or similarly significantly affects you. The underlying processing of personal data is allowed if it is authorised by law, necessary for the preparation and execution of a contract, or done with your explicit consent, provided that Azorus Inc. has put sufficient safeguards in place. Such safeguards might include the right to obtain human intervention on the part of Azorus Inc. or another equally effective opportunity to express your point of view to contest the decision.
Should you wish to exercise any of your rights under data protection law, please email email@example.com.
If you have any issues about the way in which the company is using your information, please email firstname.lastname@example.org who will be able to consider the matter for you. Should you be dissatisfied with the company’s response, you have the right to raise your concerns with the Information Commissioner’s Office.
This site is created and controlled by the company and subject to the laws of Canada. The European Commission has the power to determine, on the basis of article 45 of Regulation (EU) 2016/679 whether a country outside the EU offers an adequate level of data protection, whether by its domestic legislation or of the international commitments it has entered into. The European Commission has Canada (commercial organisations), as providing adequate protection. The company reserves the right to make changes to the site and this privacy statement from time to time. By using the site or supplying information to us, you are agreeing and consenting to the use of information relating to you (including international transfer) as described in this privacy statement. Marketing leads captured under legitimate interest, and client contacts are stored in Canada within a secure database.