Photocert

Privacy Policy

Who we are

The Data Controller of Your Personal Data is Photocert Limited, a Company registered in England and Wales, having its registered address at Martlet House E1 Yeoman Gate, Yeoman Way, Worthing, West Sussex, United Kingdom, BN13 3QZ (the ‘Company’ ‘We’ ‘Us’ ‘Our’). The purpose of this Privacy Policy is to inform You of how the Company collects, processes, uses, stores and protects Your Personal Data as well as the rights You have with respect to the processing of Your Personal Data.

By visiting Our Website and using Our Services, You acknowledge reading and fully considering this Privacy Policy.

The Company acknowledges that in collecting Your Personal Data We are bound by the Laws of England and Wales and will process Your Personal Data in accordance with the GDPR. For any further request or query about how We use Your Personal Data, You may address Us through the following email address: hello@photocert.co.uk.

Any notice, demand, request or other communication which You address to the Company shall either be sent by certified mail, return receipt requested, or by e-mail. All communication done by e-mail shall be deemed received on the business day following the day of transmission.

Definitions

Capitalised terms in this Policy shall have the meaning assigned to them under the GDPR, and shall be construed accordingly. Furthermore, the following definitions shall apply:

  • Account: an account provided to You by the Company upon Your registration and acceptance of the Terms and Conditions for use of the Services.
  • GDPR: the General Data Protection Regulation (EU) 2016/679, of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data, and repealing Directive 95/46/EC, as amended, replaced or superseded and in force from time to time.
  • Services: the Services provided by the Company through the Website and Mobile Applications.
  • User: any person who registers an Account or accesses and browses the Website (‘You’, ‘Your’).
  • Company’s Client: a legal person on which behalf Photocert is collecting and processing information from the User.

Subject Matter

This Privacy Policy sets out the terms and conditions which the Company follows in order to protect the privacy of Our Users. It describes the conditions under which We make any collection and processing of Your Personal Data and ensure their security and confidentiality.
The Company reserves the right to amend and update this Privacy Policy, whenever it deems appropriate, and any changes thereof shall come in force and effect from the instance they appear online on the Website. Any substantial modifications to this Privacy Policy will communicated to You.

Principles of Data Processing

We fully respect Your fundamental rights and consider protection of Your Personal Data to be a priority. Accordingly, when processing Your Personal Data, We follow the following basic principles:

  • We submit Your Personal Data only to lawful and fair processing, and We maintain full transparency vis-à-vis the way We handle Your Personal Data.
  • We collect and process Your Personal Data only for specified, explicit, and legitimate purposes as outlined in this Privacy Policy, and We do not process it further in any manner incompatible with these purposes.
  • We process Your Personal Data only to the extent that it is necessary and appropriate to purposes for which it is collected.
  • We make reasonable efforts to ensure that Your Personal Data is accurate and, where necessary, updated with regard to the purposes of the processing, taking all reasonable steps to immediately delete or correct it in case of inaccuracy.
  • We process Your Personal Data in a manner that guarantees its security by using appropriate technical and organizational measures.

In general, We comply with all applicable laws statutory obligations, as Data Controller of Your Personal Data.

Types of Personal Data Collected

The Company collects and processes the following Personal Data:

At the point of Your Account registration:

  • Name and Surname
  • E-mail address
  • Telephone number
  • Date of birth

At the point of Your access and use of the Website, Application and /or Services:

At the point of Your access and use of the Website, Application and /or Services:

  • IP Address
  • End user device data
  • General communication data
  • Browsing data
  • Information on user preferences regarding the Website and/or Mobile Application

Any other Personal Data directly provided by You during Your interaction with Us.

Purposes and Legal Basis for Data Processing

The Company may process Your Personal Data to fulfill its obligations under the Terms and Conditions and to comply with its legal obligations, for the following purposes:

  • Administration and development of the Website, Application and/or other Services;
  • Enhancement of user experience, including the provision of personalized Services and improvement of the Website, Application and the Services;
  • Development of new products, utilities and offerings;
  • Detection, investigation and prevention of fraudulent transactions and other illegal activities and protection of Your rights and rights of the Company;
  • Collection, processing and performing statistical and other research and analysis of information for enhancement of the Website and the Services;
  • Collection, processing and performing statistical and other research and analysis of information on behalf of the Company’s Client;
  • Verifying compliance with the Terms of Use of the Website.

The Company may process Your Personal Data only with Your lawful consent for the following purposes:

  • For the purposes of commercial communication, marketing and advertising of Our Services or third-party Services via SMS, telephone, e-mail, internet, fax, mail, social media and / or any other appropriate communication channels.
  • For personified market research and/or analysis purposes to better understand Your needs, preferences, interests, experiences and / or habits as a consumer.

You have the right to withdraw Your consent at any time in writing to Our contact details mentioned in this Policy. Withdrawal of Your consent does not affect the lawfulness of the treatment of Your data prior to its revocation.

Data Recipients

For the execution of the purposes mentioned in this Privacy Policy, We may provide access or transmit Your Personal Data to the following recipients:

  • Our internet and data hosting providers for hosting purposes.
  • Our information technology maintenance and support providers for the smooth operation of Website and Our information and communication systems.
  • Third-party consultants to provide data analysis Services and Know-Your-Customer procedures.
    Photocert’s Clients.

The processing of Your Personal Data by Our Data Processors is done under a contract compelling Data Processors to the same level of data protection provided under this Privacy Policy.

We will not disclose Your Personal Data with any third parties outside of the European Union. However, in the event that such a data transfer occurs, We will take all reasonable steps possible to ensure that Your data is treated as securely as it is within the European Union and in accordance with this Privacy Policy and applicable legislation. Additionally, We will update this Privacy Policy to reflect the cross-border data transfer and the relevant safeguards for Your privacy.

In the event that We are required by a court or other administrative authority, pursuant to an investigation relating to unlawful activities such as money laundering and in any other case that We are legally bound to do so, the Company may transfer Your Personal Data to public authorities to the extent specified by law.

Data Security and Confidentiality

In order to ensure the proper use and integrity of Your Personal Data and to prevent unauthorised or accidental access, processing, deletion, alteration or other use, the Company applies appropriate internal policies and takes all appropriate organizational, technical and procedural security measures, as well as technical standards, in accordance with applicable laws and regulations.

The processing of Your Personal Data by the Company is conducted in a manner that ensures confidentiality and security, taking into account the latest developments, implementation costs and the nature, scope, context and purposes of the processing, as well as the risks for Your rights and freedoms, which are applicable in each circumstance.

Your Personal Data is processed solely by authorised personnel of the Company, bound by strict obligations of confidentiality.

Retention of Personal Data

We retain Your Personal Data for as long as is necessary to fulfill the relevant purposes of processing explained in this Policy, in accordance with the Data Minimisation and Storage Limitation principles.

Furthermore, the Company may retain Your Personal Data after the expiration of the relevant processing purposes for the following reasons:

  • In case We have a legal obligation to retain Your Personal Data under a relevant statutory provision.
  • Based on Our legitimate interest to defend the Company against any potential legal claims, before any competent court or public authority.

After the period of retention, Your Personal Data is erased from Our databases and systems.

For more information about data retention terms in relation to specific Personal Data, please contact Us at hello@photocert.co.uk.

Your Rights

You have the right:

Furthermore, the Company may retain Your Personal Data after the expiration of the relevant processing purposes for the following reasons:

  • To request access to Your Personal Data and information related to their processing and obtain a copy thereof.
  • To request for the rectification of any inaccuracies or any missing Personal Data of yours.
  • To request for the erasure of Your Personal Data.
  • To request for the restriction of the processing of Your Personal Data in cases explicitly provided for by law.
  • To request for the portability of Your Personal Data to another Data Controller in a structured, commonly used and machine-readable format.
  • To object to the processing of Your Personal Data in cases explicitly provided for by law.
  • To object to a decision taken solely on the basis of automated processing, including profiling, which has impact on You or significantly affects You.

Any requests relevant to the above Section 10.1 must be addressed in writing to hello@photocert.co.uk.

We will respond to any of Your requests within one (1) month from their receipt. Upon prior notice, this period may be extended by a further two (2) months if necessary, taking into account the complexity of the request and the number of any other pending requests. In case of rejection of Your request, We will provide relevant justification.

If Your request does not meet the requirements of applicable law, We reserve the right either to: (a) impose a reasonable fee, taking into account the administrative costs of providing the information or communicating or executing the requested action, or (b) reject Your request.

If there are any doubts as to the identity of the individual submitting the request, We reserve the right to request the provision of additional information necessary to confirm his / her identity.

If Your rights are infringed, You have the right to file a complaint with the Information Commissioner’s Office (ICO) at the following website https://ico.org.uk/make-a-complaint/ .

Your Obligations

By using Our Website, Application and/or Services and by providing Your Personal Data, You acknowledge that You are required to provide Your actual, accurate and complete data as requested by the Company. Furthermore, You must inform Us of any changes to Your information so as to ensure it is kept up-to-date and accurate.

If You are found to be in breach of Your obligations or if We have reasonable suspicion that the information You provide is false or incomplete or in any way contrary to applicable law or this Privacy Policy, We retain the right to reject Your application for registration or to suspend or terminate Your Account immediately without notice. In this case, You have no right to any compensation due to the rejection of Your application, or the suspension or termination of Your Account.

Cookies

Our Website and Application use cookies. For more information please review our Cookie Policy.

Last updated on 20/07/20222