We are committed to maintaining the trust and confidence of our clients and suppliers. In particular, we want you to know that any data kept and processed by Appsecco is for business to business purposes only. We will never sell, rent or trade data with other companies and businesses for any purpose.
When someone visits our website, we use three third-party services, Google Analytics, StatCounter amd Wistia, to collect standard internet log information and details of visitor behaviour patterns via cookies. We do this to find out things such as the number of visitors to various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google, StatCounter or Wistia to make, any attempt to find out the identities of those visiting our website.
These cookies help us provide you with a better website experience, by enabling us to monitor which pages and content you find useful and those you do not. Cookies do not contain any information that personally identifies you, a cookie in no way gives us access to your computer or any information about you. We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of personal information is protected and maintained.
There are some additional cookies placed by the third-party content providers we use to embed some of the content on the site. These currently are; LinkedIn, SlideShare (A LinkedIn company) and YouTube. These are placed by our third party content providers as part of their service to us and you and we do not have access to the information that they collect other than to record things like the number of times a piece of content has been viewed.
As part of the contact form submission process for our database, we collect some personal information. We use that information for a couple of reasons; to tell you about stuff you’ve asked us to tell you about, to contact you if we need to obtain or provide additional information, to check our records are right and to check every now and then that you’re happy and satisfied if we are working with you.
Occasionally we use a third-party provider, MailChimp, for marketing purposes, to keep our clients, suppliers, people that have expressed an interest in what we do and colleagues abreast of what we’ve been up to, and also to approach individuals or businesses that may have an interest in our services.
MailChimp helps us to gather statistics around email opens and clicks using industry standard technologies to help us monitor and improve our e-communications. For more information, please see MailChimp’s privacy notice
. You can unsubscribe to general mailings at any time of the day or night by clicking the unsubscribe link in an email sent by us via Mailchimp or by emailing our data protection officer Gwilym Lewis
MailChimp will automatically ‘clean’ any data file that is inaccurate, however we are always careful to check the analytics of each email campaign we send out through MailChimp for any bounce-backs caused by inaccurate or out-of-date information and will delete or update it accordingly. Additionally, we assess our database on a bi-annual basis for any out-of-date information, or personal data that is no longer required (clients or suppliers we no longer work with for example) and ensure it is deleted from our systems.
We do not share personal information with any other organisations or individuals without prior, written consent, and only ever as part of our contractual obligations or where we are legally obliged to do so.
In the unlikely event of a data-breach, we will endeavour first to understand how and why it has happened. Personal data breaches can include:• access by an unauthorised third party;
• deliberate or accidental action (or inaction) by a controller or processor;
• sending personal data to an incorrect recipient;
• computing devices containing personal data being lost or stolen;
• alteration of personal data without permission; and
• loss of availability of personal data.
In any event, we will report the breach to the ICO within 72 hours of becoming aware of it, where feasible and necessary. If the breach is likely to result in a high risk of adversely affecting individuals’ rights and freedoms, we will also inform those individuals without undue delay.
We keep a record of any personal data breaches, including a description of the measures taken, or proposed to be taken, to deal with the personal data breach, including, where appropriate, the measures taken to mitigate any possible adverse effects.
You are entitled to view, amend, or delete the personal information that we hold about you. Simply email your request to our data protection officer, Gwilym Lewis
This policy was reviewed on 22 June 2022 and is reviewed annually as part of our ongoing data protection processes.