These updates were effective November 1st 2021.
Do you collect my personal information?
When you use this website or our Services, we may collect certain Personal Data about you. The type of Personal Data we collect is information:
- you provide to us
- we collect from you
- we observe about you (e.g. from your interaction with our website)
- we obtain from other sources, including third parties;
What data do you collect from me?
Typically this may include the following:
- When you make an inquiry or download a brochure or white paper from our website we log your name, your company’s name and your email address.
- If you contact support to report a problem with any Ito World Services, we will collect your name and contact details and keep a record of your email or relevant correspondence.
- If you are a registered user of our Services, a name, username and password is also recorded on our internal system.
We collect Personal Data about you from the following categories of sources:
Personal information you provide to us:
This is information about you that you give to us by entering information via our website www.itoworld.com, our Services, social media platforms and corresponding with us by phone, email or otherwise and is provided entirely voluntarily.
If you apply for a job with us we will use your personal information in accordance with our Candidate Data Privacy Notice.
We never collect or store any sensitive information.
Personal information we collect about you:
We automatically collect data about visitors to our website and Services by using cookies. Cookies are small pieces of text sent by your web browser by a website you visit. A cookie file is stored in your web browser and allows the site to recognise you and make your next visit easier and the site more useful to you.
We use the following types of Cookies:
- Essential Cookies. Essential Cookies are required for providing you with features or services that you have requested. For example, certain Cookies enable you to log into secure areas of our Services. Disabling these Cookies may make certain features and services unavailable.
- Functional Cookies. Functional Cookies are used to record your choices and settings regarding our Services, maintain your preferences over time and recognise you when you return to our Services. These Cookies help us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
- Performance/Analytical Cookies. Performance/Analytical Cookies allow us to understand how visitors use our Services such as by collecting information about the number of visitors to the Services, what pages visitors view on our Services and how long visitors are viewing pages on the Services. Performance/Analytical Cookies also help us measure the performance of our advertising campaigns in order to help us improve our campaigns and the Services’ content for those who engage with our advertising.
You can decide whether or not to accept Cookies through your internet browser’s settings. Most browsers have an option for turning off the Cookie feature, which will prevent your browser from accepting new Cookies, as well as (depending on the sophistication of your browser software) allow you to decide on acceptance of each new Cookie in a variety of ways. You can also delete all Cookies that are already on your device. If you do this, however, you may have to manually adjust some preferences every time you visit our website and some of the Services and functionalities may not work.
To explore what Cookie settings are available to you, look in the “preferences” or “options” section of your browser’s menu. To find out more information about Cookies, including information about how to manage and delete Cookies, please visit http://www.allaboutcookies.org/.
How we use your personal information
We process Personal Data to operate, improve, understand and personalise our Services. We use Personal Data for the following purposes:
- To meet or fulfill the reason you provided the information to us.
- To communicate with you about our Services, including product announcements, updates or offers.
- To provide support and assistance for our Services.
- To create and manage your user account or other user profiles.
- To personalise website content and communications based on your preferences.
- To process orders or other transactions.
- To respond to user inquiries and fulfill user requests.
- To improve and develop the Services, including testing, research, analysis and product development.
- To protect against or deter fraudulent, illegal or harmful actions and maintain the safety, security and integrity of our Services.
- To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
- For any other business purpose stated when collecting your Personal Data or as otherwise set forth in applicable data privacy laws, such as the General Data Protection Regulation ((EU) 2016/679) (UK GDPR).
We will not collect additional categories of Personal Data or use the Personal Data we collected for materially different, unrelated, or incompatible purposes without providing you notice.
As noted in the list above, we may communicate with you if you’ve provided us the means to do so. For example, if you’ve given us your email address, we may send you promotional email offers or email you about your use of our Services.
You have a choice about whether or not you wish to receive information from us. If you do not want to be contacted by us about the work we do and our products and services, then simply tick the relevant checkbox situated on the form where we collect your information. If you ever change your mind, you can unsubscribe using the link at the bottom of our marketing emails or by contacting us by email: [email protected] or by writing to The Data Protection Officer, 2nd Floor, Deanland House, 160 Cowley Road, Cambridge, CB4 0DL.
Who has access to my information?
We may disclose your Personal Data to the following categories of service providers and other parties:
- Service Providers – these are third parties that help us provide our Services, including security and fraud prevention providers, hosting and other technology and communications providers, analytics providers (Ito World uses Google Analytics), and staff augmentation and contract personnel.
- Acquirers – these are parties who acquire your Personal Data through an acquisition or other change of control. Personal Data may be transferred to a third party if we undergo a merger, acquisition, bankruptcy or other transaction in which that third party assumes control of our business (in whole or in part).
- Selected Recipients – third parties that we share your Personal Data with at your direction, including other parties authorised by you.
We may disclose your Personal Data to service providers and other parties for the following business purposes:
- Auditing related to a current interaction and concurrent transactions, including, but not limited to, auditing compliance with this specification and other standards.
- Detecting security incidents, protecting against malicious, deceptive, fraudulent or illegal activity, and prosecuting those responsible for that activity.
- Debugging to identify and repair errors that impair existing intended functionality.
- Short-term, transient use of Personal Data that is not used by another party to build a consumer profile or otherwise alter your consumer experience outside the current interaction.
- Performing services on our behalf, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, providing analytic services, or providing similar services on behalf of the business or service provider.
- Undertaking internal research for technological development and demonstration.
We may disclose your information to our third party service providers, agents, subcontractors for the purposes of providing services to us or directly to you on our behalf. Such third parties may include cloud service providers (such as hosting and email management), marketing agencies and administrative services.
When we use third party service providers, we only disclose to them any personal information that is necessary for them to provide their service and we have a contract in place that requires them to keep your information secure and not to use it other than in accordance with our specific instructions.
How do you secure my data?
We seek to protect your Personal Data from unauthorised access, use and disclosure using appropriate physical, technical, organisational and administrative security measures based on the type of Personal Data and how we are processing that data. For example, the Services use industry standard Transport Layer Security (TLS) technology to allow for the encryption of Personal Data you provide to us. We implement other access controls to our Services, such as firewalls, ID verification and logical segmentation and/ or physical separation of our systems and information.
You should also help protect your data by appropriately selecting and protecting your password and/or other sign-on mechanism; limiting access to your computer or device and browser; and signing off after you have finished accessing your account. Although we work to protect the security of your account and other data that we hold in our records, please be aware that no method of transmitting data over the Internet or storing data is completely secure. We cannot guarantee the complete security of any data you share with us, and except as expressly required by law, we are not responsible for the theft, destruction, loss or inadvertent disclosure of your information or content.
How long does Ito World keep my information for?
We retain Personal Data about you for as long as you have an open account with us or as otherwise necessary to provide you with our Services. In some cases we retain Personal Data for longer, if doing so is necessary to comply with our legal obligations, resolve disputes or collect fees owed, or is otherwise permitted or required by applicable law, rule or regulation. We may further retain information in an anonymous or aggregated form where that information would not identify you personally.
How do I access and update my information?
You have a number of rights in relation to your Personal Data under data protection law. In relation to certain rights, we may ask you for information to confirm your identity and, where applicable, to help us to search for your personal information. Except in rare cases, we will respond to you within one month from either (i) the date that we have confirmed your identity or (ii) where we do not need to do this because we already have this information, from the date we received your request.
Accessing your personal information
You have the right to ask for a copy of the information that we hold about you by emailing or writing to us at the address at the end of this policy. We may not provide you with a copy of your personal information if this concerns other individuals or we have another lawful reason to withhold that information.
Correcting and updating your personal information
The accuracy of your information is important to us and we are working on ways to make it easier for you to review and correct the information that we hold about you.
In the meantime, if you change your name or address/email address, or you discover that any of the other information we hold is inaccurate or out of date, please let us know by contacting us in any of the details described at the end of this policy.
Withdrawing your consent
Where we rely on your consent as the legal basis for processing your personal information, you may withdraw your consent at any time by contacting us using the details at the end of this policy. If you would like to withdraw your consent to receiving any direct marketing to which you previously opted-in, you can do so by unsubscribing from our emails or by contacting us as described at the end of this policy.
Objecting to our use of your personal information and automated decisions made about you
Where we rely on your legitimate business interests as the legal basis for processing your personal information for any purpose(s), you may object to us using your personal information for these purposes by emailing or writing to us at the address at the end of this policy. Except for the purposes for which we are sure we can continue to process your personal information, we will temporarily stop processing your personal information in line with your objection until we have investigated the matter. If we agree that your objection is justified in accordance with your rights under data protection laws, we will permanently stop using your data for those purposes. Otherwise we will provide you with our justification as to why we need to continue using your data.
Erasing your personal information or restricting its processing
In certain circumstances, you may ask for your personal information to be removed from our systems by emailing or writing to us at the address at the end of this policy. Unless there is a reason that the law allows us to use your personal information for longer, we will make reasonable efforts to comply with your request.
You may also ask us to restrict processing your personal information where you believe it is unlawful for us to do so, you have objected to its use and our investigation is pending or you require us to keep it in connection with legal proceedings. In these situations we may only process your personal information whilst its processing is restricted if we have your consent or are legally permitted to do so, for example for storage purposes, to protect the rights of another individual or company or in connection with legal proceedings.
Transferring your personal information in a structured data file (“data portability”)
Where we rely on your consent as the legal basis for processing your personal information or need to process it in connection with your contract, you may ask us to provide you with a copy of that information in a structured data file. We will provide this to you electronically in a structured, commonly used and machine readable form, such as a CSV file.
You can ask us to send your personal information directly to another service provider, and we will do so if this is technically possible. We may not provide you with a copy of your personal information if this concerns other individuals or we have another lawful reason to withhold that information.
Complaining to the UK data protection regulator
You have the right to complain to the Information Commissioner’s Office (ICO) if you are concerned about the way we have processed your personal information. Please visit the ICO’s website for further details.