Geolang Limited is committed to safeguarding the privacy of personal and sensitive personal data and is bound to comply with the UK Data Protection Act 1998 and EU General Data Protection Regulation (GDPR), along with similar and applicable laws in other countries around the world. This Privacy Notice forms part of Geolang’s obligation to be open and fair with all individuals whose personal and sensitive personal data Geolang processes and to provide details around how it processes such personal data and what it does with it.
Geolang processes the personal data of its clients and partners such as names, contact details and email addresses, amongst other things. Processing of this data implies collecting, storing, using, disclosing or disposing of individuals’ personal data.
Individuals’ of existing or prospective clients and partners who leverage Geolang’s solutions and services, or use the Geolang website, may be provided with further privacy notices which may be contained in a separate supplemental notice. These additional privacy notices shall supplement this Privacy Notice.
This Privacy Notice relates to the processing of personal data by Geolang. Unless otherwise stated, all references to “we” or “our” shall imply all Geolang lines of business that process personal or sensitive personal data.
None of the lists, or examples provided in this Privacy Notice, are intended to be exhaustive or fully representative of every individual.
The scope of this Privacy Notice covers clients (existing and prospective) and partners (existing and prospective) personal data in respect of the following: –
- Collecting Personal Data
- Using Personal Data
- Disclosing Personal Data
- Retaining Personal Data
- Securing Personal Data
- International Data Transfers
- Subject Access Requests
- Updates / Amendments
- Third Party Websites
- Opt-in / Opt-out
- Our Details
3 COLLECTING PERSONAL DATA
We may collect and store the following kinds of personal data: –
- Information about your computer and about your visits to the Geolang website, including your IP address, geographical location, browser type and version.
- Information that you provide to us when you request one of our whitepapers though our website.
- Information that you provide to us for the purpose of subscribing to our marketing communications and newsletters.
- Information that you provide to us when using any of the solutions and services we provide, or that is generated during the course of using those solutions and services.
- Information that you post on our social media platforms.
- Information contained in, or relating to, any communication that you send to us through our website, email or in writing.
- Information to help us comply with our legal and regulatory obligations, including reporting to and being audited by regulators and external auditors.
- Information to help us comply with court orders and to exercise and defend our legal rights.
- Any other personal information that may be sent to us and which we use for legitimate business purposes.
Before you disclose to us the personal data of another person, you must obtain that person’s consent to both the disclosure and the processing of that personal data in accordance with this Privacy Notice.
4 USING PERSONAL DATA
We may use your personal information to:
- Administer, personalise and secure our website.
- Enable your use of any solution or service that we may provide through our website.
- Supply you with our solutions and services.
- Send you marketing communications.
- Deal with enquiries and complaints.
- Comply with our legal and regulatory obligations.
5 DISCLOSING PERSONAL DATA
We only disclose your personal data in the ways set out in this Privacy Notice or subject to any agreements in place between us. The following circumstances may apply:
- Across our different lines of business, as part of a need to know or as part of improving our existing solutions and services or as part of providing new solutions and services.
- To third parties who process personal data on our behalf, such as systems providers.
- To any prospective buyer in the event we sell any part of our business, or its assets, or if substantially all of our assets are acquired by a third party.
- To any regulator, external auditor or applicable body or court where we are required to do so by law or regulation or as part of any investigation.
We do not sell, rent or trade any of your personal data.
We will not, without your consent, disclose or supply your personal data to any third party for the purpose of their or any other third party’s direct marketing.
6 RETAINING PERSONAL DATA
Personal data that we process, for any purpose or purposes, shall not be kept for longer than is necessary. Geolang bases its record retention on any legal, regulatory or contractual obligations.
You have the right to request we erase your data, where we do not have any overriding legal, regulatory or contractual obligations.
7 SECURING PERSONAL DATA
Geolang takes the security of your personal data seriously. Geolang is certified against ISO27001 information security standard. Where Geolang acts as the controller of personal data, it will ensure that necessary and adequate safeguards (e.g. encryption) are in place to prevent unauthorised access, loss, misuse or alteration of your personal data.
Where data is stored electronically we store all personal information on secure servers with relevant access and firewall controls.
Where data is stored on paper, or forms, all personal data is locked away when not in use, and disposed of securely after use either using document shredders or third-party disposal organisations who have been contracted to dispose of documents appropriately.
Any personal data sent to Us, either in writing or email, may be insecure in transit and we cannot guarantee its delivery.
8 INTERNATIONAL DATA TRANSFERS
Personal data that we collect, is stored in the UK and not outside the European Economic Area. Should we establish operations outside of the UK, or Economic Area in the future, personal data will be covered by binding corporate rules or contractual arrangements to ensure it is processed appropriately.
When data is processed outside of the UK or European Economic Area, we will notify you.
9 SUBJECT RIGHTS
You may instruct us to provide you with any personal data we hold about you as part of a Subject Access Request. We may ask you to provide appropriate evidence of your identity in order to fulfil the request.
In certain instances, where exemptions exist, we may withhold personal data that you request, and which are permissible by law.
You may wish to contact us if the personal data that we hold about you needs to be corrected or updated.
You may instruct us at any time not to process your personal data for marketing and communications purposes by means of ‘opting-out’.
We do not perform any auto-profiling of individuals.
10 UPDATES / AMENDMENTS
In order to remain compliant with any legal and regulatory obligations, or as part of our evolving business practices, we may update this Privacy Notice from time to time by publishing a new version. In certain instances, we may notify you.
11 THIRD PARTY WEBSITES
We are not responsible for the practices employed by Third Party Websites linked to or from our Website nor the information or content contained therein. Often links to other websites are provided solely as reference points to information on topics that may be useful to the users of our Website. Please remember that when you use a link to go from our Website to a Third-Party Website, our Privacy Notice will no longer apply. Your browsing and interaction on any other Website, including Third Party Websites, which have a link on our Website, are subject to that Website’s own Privacy Notice.
13 OPT IN / OPT OUT
You have the right, at any time, to ask us not to process your personal data for marketing purposes.
You can opt-out of receiving email communications simply by clicking the unsubscribe link, which is contained within marketing emails.
Please note it can take up to 30 days for a request to be fulfilled because of pre-planned or ongoing marketing activity.
14 DATA PROTECTION REGISTRATION
Geolang is registered as a data controller with the UK Information Commissioner’s Office. Our data protection registration numbers are ZA306210 (Geolang Limited) and ZA306210 (Geolang Holdings Limited).
15 OUR DETAILS
Geolang Limited is registered in England and Wales under company number 05719222. Geolang Holdings Limited is registered in England and Wales under company number 08424352
The registered office of all of these companies is at 22 Great James Street, London, England, WC1N 3ES.
You can contact us as follows: –
Data Protection Manager
Cardiff Business Technology Centre,
Cardiff, CF24 4AY
+44 (0) 292 064 7012
If you feel your rights have not been respected, or do not feel a situation was resolved satisfactorily, you have the right to raise a complaint with the UK Information Commissioner.
You can contact them as follows: –
Information Commissioner’s Office
Wycliffe House, Water Lane
+44 (0)303 123 1113
Got a Query?
Please fill out the form opposite and we will forward your query to a relevant member of staff who will get back to you as soon as possible. Thank you.