Current version: 31 January 2019
About Us and This Policy
Ziflow Limited (”We”) are committed to protecting and respecting your privacy.
This policy (together with our Terms of Service (if you are a customer) and any other documents referred to in this policy and in the Terms of Service) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting https://www.ziflow.com/ (our site) you are accepting and consenting to the practices described in this policy.
For the purpose of the Data Protection Act 2018 (the Act), the data controller is Ziflow Limited with its registered address at Alton House, 66 High Street, Northwood, Middlesex HA6 1BL. We are registered with the UK Information Commissioner’s Office with registration reference number: ZA172378.
Ziflow is committed to protecting the security of your personal information and we take all reasonable precautions to protect it from unauthorised access, modification or disclosure. Your personal information is stored on secure servers that have SSL Certificates issued by leading certificate authorities, and all data transferred between you and the Service is encrypted. You can find out more about our security arrangements and our data protection measures on our security page.
Information We Collect About You
We will collect and process the following data about you:
Information we collect. With regard to each of your visits to our site we will automatically collect the following information:
Information we receive from other sources. This is
Sensitive Data. This is personal data such as biometric data for unique identification, health information and medical records, racial or ethnic origin, political orientation or beliefs, religious or philosophical beliefs, trade union membership, data concerning sex life or sexual orientation, genetic data. We do not collect any sensitive personal data and we do not want you to give us sensitive data.
Information about other individuals. If you give us information on behalf of someone else, you confirm that the other person has appointed you to act on his/her behalf and has agreed that you can:
- give consent on his/her behalf to the processing of his/her personal data;
- receive on his/her behalf any data protection notices; and
We do place cookies (small text files with information on visits to the website which are temporarily saved on your hard disc) These help us to calculate the user frequency and numbers of users of our website.
Most browsers are set up to accept cookies automatically. But you can deactivate the storage of cookies or set your browser to notify you as soon as cookies are used and you can refuse the storage of cookies.
Uses Made of the Information
We use information held about you in the following ways:
- to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products
andservices that you request from us;
- to process payments that you make for the products and services you purchase from us;
- to provide you with information about other goods and services we offer that are similar to those that you have already purchased or enquired about;
- to notify you about changes to our service;
- to ensure that content from our site is presented in the most effective manner for you and for your computer;
- to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- to allow you to participate in interactive features of our
service,when you choose to do so;
- as part of our efforts to keep our site safe and secure;
- to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;
- to make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them.
Information we receive from other sources. We will combine the information we receive from the third parties that we are working with, with
Marketing and Opting Out
We do use your data to provide
We only rely on our legitimate interests, where these are not outweighed by your interests or fundamental rights and freedoms. The legitimate interests we rely on for this processing are: to promote our products and services to you and to issue our direct marketing materials to you. You have a right to object and to seek to restrict such processing. See the ‘Your Rights’ section for more information on how to exercise your right to object.
We will consider several factors when assessing an objection
Opting out or Unsubscribing
Where you have given your permission and you change your mind and you no longer wish to receive marketing and promotional communications from us, you may unsubscribe or opt-out of receiving them by following the instructions included in each newsletter or communication or by contacting us. See the ‘Contact’ section below.
We will also offer you the opportunity to choose (opt-out) whether your personal data is (a) to be disclosed to a third
See further ‘Your Rights’, below for more information about what you can do in relation to your personal data collected and used by us.
Disclosure of Your Information
You agree that we have the right to share your personal information with:
- Selected third parties including:
- business partners (such as resellers of our products and services), service providers, suppliers, agents and sub-contractors for the performance of any contract we enter into with them or you;
- analytics and search engine providers that assist us in the improvement and
- card payment service providers to process payments made by you using a credit or debit card.
We will disclose your personal information to third parties:
- In the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets.
- If Ziflow Limited or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
- If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our Terms of Service or any other terms and conditions of supply or
other contractwe have entered into with you; or to protect the rights, property, or safety of Ziflow Limited, our customers, or others. This includes exchanging information with other companies and organisationsfor the purposes of fraud protection and credit risk reduction.
Data Storage and Transfers
We Do Not Store Your Credit Card Data
We will use technical and
- access to your account is controlled by a password and username that are unique to you;
- we store your personal data on secure servers;
- no credit card data is stored
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent
How Long We Keep Your DataWe only keep your information for so long as it is necessary to fulfill the purpose for which it was collected.
We use the following criteria to determine whether or not we need to keep your data:
- fulfillment of an order,
- if you or we close your customer account,
- if you unsubscribe from direct marketing, newsletter or other material which we send to you,
- if we are required to keep a copy of your data by law or statutory regulation.
You also have the ability to request that we delete your personal data at any time. See the section below on ‘Your Rights’.
Information that is archived is
Right to ask us to stop contacting you with direct marketing. Even if you have accepted the processing of your personal data for marketing purposes (by ticking the relevant box), you have the right to ask us to stop processing your personal data for such purposes. Let us know what method of contact you are not happy with if you are unhappy with certain ways of contacting you only (for example, you may be happy for us to contact you by email but not by telephone).
Right to request a copy of your information. You can request a copy of your information which we hold (this is known as a subject access request). If you would like a copy of some or it, please contact us and let us know the information you want a copy of, including any account or reference numbers, if you have them. Any subject access request may be subject to a reasonable fee to cover the cost of providing you with details of the information we hold about you.
Right to correct any mistakes in your information. You can require us to correct any mistakes in your information which we hold free of charge. If you would like to do this, please contact us and let us know the information that is incorrect and the information you want it replaced with.
Right to request we cease processing your information. You may request that we cease processing your personal data. If you make such a request, we shall retain only the amount of personal data
Right to request deletion of your information. You can ask us to erase all your personal data (also known as the “right to be forgotten”) in the following circumstances:
- it is no longer necessary for us to hold that personal data with respect to the purpose for which it was originally collected or processed;
- you wish to withdraw your consent to us holding and processing your personal data;
- you object to us holding and processing your personal data (and there is no overriding legitimate interest to allow us to continue doing so);
- the personal data has been processed unlawfully; or
- the personal data needs to be erased in order for us to comply with a particular legal obligation.
Unless we have reasonable grounds to refuse to erase your personal data, all requests for erasure shall be complied with.
Changes to Our Policy
If you have any complaints about the way in which we collect, store and use your information, and these have not been addressed by contacting us first, you can contact the supervisory authority in the United Kingdom, the Information Commissioner’s Office: https://ico.org.uk/concerns/
Links to Other Websites
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over other websites and their content. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.