Version: August 2018
This policy covers the processing of personal data by Awen Collective Ltd ("Awen Collective", "we", “our” or "us"). Personal data means any information about an individual from which that person can be identified, but does not include data where the identity has been removed. We try to limit the amount of personal data we collect, but we may collect, use, store and transfer the following types of personal data:
· identity data, including name, username or similar identifier, and gender;
· contact data, including billing address, delivery address, email address, and telephone numbers; and
· marketing and communications data, including your preferences in receiving marketing from us and your communication preferences.
Our correspondence address is Cardiff Eagle Labs, 1st Floor, Brunel House, Fitzalan Road, Cardiff, CF24 0EB and our registered address is 4 Ynys Bridge Court, Gwaelod-Y-Garth, Cardiff, United Kingdom, CF15 9SS. Awen Collective is committed to protecting the privacy and security of personal and corporate information.
Awen Collective is in the cyber-security sector, and thus understands the needs for high levels of privacy and security. We also understand the need to ensure that such privacy and security is sustainable, while maintaining a good level of usability in all the systems that we develop (including our public facing websites).
The following is how data privacy and security stands on our website as it is. We are always striving for continuous improvement, so if there are any suggestions then please do contact us.
Data Protection Email Address: firstname.lastname@example.org.
Address: Data Protection, Awen Collective, Cardiff Eagle Labs, 1st Floor, Brunel House, Fitzalan Road, Cardiff, CF24 0EB.
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns at the above Awen Collective DPO email address before you approach the ICO so please contact us in the first instance.
What data do we collect, why, and do we share it?
We have made privacy and security simple on our public facing website.
We collect identity data and personal data. Most commonly, we will use this data in the following circumstances:
· Where we need to perform the contract we are about to enter into or have entered into with you.
· Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
· Where we need to comply with a legal obligation.
The purpose of collecting your data is marketing. What this means in practice is that if you choose to email us then we will store your contact details and respond to you personally. By contacting us you do not automatically give us the right to put you on an automated mailing list, unless you explicitly provide us with the authorisation to do so. If you do contact us we may ask you, personally and explicitly, whether you would like to opt-in to an automated mailing list. If you do decide to opt in to our automated mailing list, you have the right to withdraw that consent and be removed from our mailing list at any time by contacting us.
We have got anonymised analytics installed on our public facing website, this is in the form of Google Analytics. This means that some anonymised data about you could be collected. This anonymised data does not constitute personal data as you cannot be identified from it. The reason for collecting such anonymised data is to ensure that the website is providing the right information to the right people at the right time. This anonymised data will be used internally at Awen Collective, and will be shared with select stakeholders for the purpose of ensuring the sustainability and growth of the business of Awen Collective. However, if shared with select stakeholders, the collected anonymised data will remain anonymised and shared under confidence with the highest level of proportional and appropriate security and privacy.
All personal data collected by us will not be stored for longer than is required for the purposes it was collected for.
If you wish to increase your levels of privacy, we highly recommend the browser plug-ins and other tools developed by the Electronic Frontier Foundation (EFF): https://www.eff.org/pages/tools.
Your Legal Rights
Under certain circumstances, you have rights under data protection laws in relation to your personal data. Please contact us at the following address to find out more about these rights:
· Request access to personal data.
· Request correction of your personal data.
· Request erasure of your personal data.
· Object to processing of your personal data.
· Request restriction of processing your personal data.
· Request transfer of your personal data.
· Right to withdraw consent.
If you wish to exercise any of the rights set out above, please contact us at email@example.com.
Links to other websites
Our website includes links to third party websites. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and, when you leave our website, we suggest that you to read the privacy notice of every website you visit. We may monetise some of these links through the use of third party affiliate programmes. We are not responsible for the content or privacy policies of third-party websites or systems, nor for the way in which they use information they collect about you.
Our website is accessible via HTTPS. Ensure you are connected to it by making sure the address bar in your browser starts with https://www.awencollective.com/ or https://awencollective.com/. You should see a lock symbol, or the word “Secure” if you are securely connected to the website. Also in the footer of our website you will see a SiteLock Secure icon, which verifies the connection to the website and checks for any spam or malware on the website.
Access to the anonymised data collected by Google Analytics is limited to the chief executive, the data protection officer and the marketing department at Awen Collective, and is done so with good security hygiene (including password hygiene).
For further information about UK data privacy regulation please visit the website of the Information Commissioners Office: https://ico.org.uk/.
For further details about the implementation of the General Data Protection Regulation (GDPR) in the UK, we recommend the guidance provided by the National Cyber Security Centre (NCSC): https://www.ncsc.gov.uk/GDPR.
Of course we are also happy to receive emails regarding data protection, privacy and security to our data protection officer at: firstname.lastname@example.org.