Privacy Policy

Privacy Notice – Last updated on 27.04.2023

This is the Privacy Notice for Verve Partners Ltd. Privacy.   This explains how we process and protect your data and how we manage your privacy.

This policy is made for and applies to anyone who is a Verve Partners Ltd client, or interested in services we provide, or just anyone who is visiting our website www.addverve.com

Verve’s Co-operate website (this site) is hosted in the UK and supported by our trusted 3rd party 20i https://www.20i.com/ and is connected to our version of the CRM platform Hubspot https://legal.hubspot.com/privacy-policy

 

Our Contact Details

If you have any questions about privacy at Verve, please contact:

Verve Partners Ltd,
115 Southwark Street
London, SE1 0JF

Or email privacymanagement@addverve.com

Company no: 06663787
ICO Registration number: Z2243429

 

Privacy and Data protection statement

In using and submitting forms on this website you agree that Verve may use any personal data of yours which you supply via the forms. Verve respects your privacy and seeks to protect your personal data and privacy online. It is our intent to ensure confidentiality when you visit our Site. We may collect and store information obtained via the Site from visitors who voluntarily provide information when in contact with us. However, please be assured that any personal information that you choose to submit via the internet – such as your name or address – will not be sold to 3rd parties as a mailing list.

When it comes to processing data, the lawful grounds that are usually applied are one of the following: Legitimate Interests, Contract, Consent or Legal Obligation.   However, depending on the situation, the consent of the concerned individual may be required. It is important to understand the concept of data processing, as well as what is meant by ‘legitimate interests’:

Data processing is essentially the collection, storage, and use of data. It is the act of gathering data and using it to achieve a certain purpose or to produce a certain outcome.

The main lawful ground for data processing is “Legitimate Interest”. This is when a company or organization has a legitimate reason for collecting, storing, and using your data. This generally includes activities that are necessary for the running of the business, such as marketing and customer service. But it can also involve using the data to assess the performance of the organization or to ensure the safety of the people involved.

The second lawful ground for data processing is “Contract”. This is when an individual has agreed to share their data with a company or organization in exchange for some form of compensation. This could involve signing up for a service or product or providing data in exchange for a reward.

The third lawful ground is “Legal Obligation”. This is when a company or organization is required to process data due to legal requirements. For example, if a company is obligated to keep records of its customers or employees in order to comply with tax or other regulations, then they would be required to process the data.

Finally, the fourth lawful ground is “Consent”. This is when an individual has given their consent to have their data processed. This could involve signing a form to provide their consent it is important to ensure that the individual is aware of how their data will be used and what their rights are.

In most cases, the lawful ground that is used for processing data will depend on the situation and the goals of the company or organization. But, regardless of the situation, it is important to be aware of the different lawful grounds and to ensure that the processing of data is transparent, fair, and in accordance with the law.

By understanding the purpose of data processing, the lawful grounds that can be used, and the importance of transparency and fairness, organizations and individuals can be sure that their data is being used in an ethical and lawful manner.

This policy sets out how we will use and share the information that you give us. This privacy policy relates to personal data collected by us via:

– Our website(s)
– Email correspondence
– Telephone calls
– Social media
– Visiting our office hubs
– Enquiring about or buying products or services from us
– Providing products or services to us
– Industry or Trade events such as conferences or exhibitions

 

Personal information we may collect from you

Categories of Personal Information

We may collect and process the following personal categories of information about you:

  • information such as your name, email address, postal address, and telephone number
  • communications you send to us, for example to report a problem or to submit queries, concerns or comments regarding the Website or its content
  • technical information including IP address, browser type
  • information generated by visiting our website or engaging with us on social media
  • location data

Purpose of Processing

This information may be used by any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries or professional partners, who support our processing of personal data under this policy.

How we may use your personal information; we will use the personal information you provide to:

  • provide you with the services and information as requested
  • send you information we think you may find useful
  • comply with any legal obligations that apply to us
  • if you submit an employment application, to administer and evaluate your application and comply with legal obligations we have in relation to your application
  • improve our products and services
  • secure, optimize and customize your experience on the Site
  • collaborate with selected third parties. We may disclose your personal information to trusted third parties. For example, to suppliers that support our business including IT and communication suppliers, outsourced business support, marketing and advertising agencies, data back-up service providers.

You can tell us not to contact you with information regarding our products and services, either at the point such information is collected on the Website or, where you do not wish us to continue to use your information in this way, by following the unsubscribe instructions on any communications sent to you. You can also exercise the right at any time by contacting us using the ‘Contact us’ details at the end of this privacy policy.

At our company, we prioritize the protection of our users’ personal data. We do not ask for ‘sensitive’ or ‘special categories of personal data’, such as information about your health, political opinions, racial origins or sexual orientation. We strongly urge our users to not send us any of the aforementioned sensitive information.

 

Cookies and other Technologies

As described in our Cookie Policy, we use cookies and similar technologies (e.g. web beacons and device identifiers) to recognise you and/or your device(s). You can control cookies through your browser settings and other tools. You can also opt out from our use of cookies and similar technologies that track your behaviour. Details of the cookies we use can be found in our Cookie Policy.

 

Public forums

The Website may, from time to time, make blogs and/or other public forums available to its users. Any information that is disclosed in these areas becomes public information and you should exercise caution when using these and never disclose your personal information.

 

Security

Verve is certified to ISO27001, the international security standard, and we place great importance on the security of all personally identifiable information associated with our users. We have security measures in place to attempt to protect against the loss, misuse and alteration of personal information under our control. For example, our security and privacy policies are periodically reviewed and enhanced as necessary and only authorised personnel have access to personal information. Whilst we cannot ensure or guarantee that loss, misuse or alteration of information will never occur, we use all reasonable efforts to prevent it.

You should bear in mind that submission of information over the internet is never entirely secure. We cannot guarantee the security of information you submit via the Site whilst it is in transit over the internet and any such submission is at your own risk.

At Verve, we strive to ensure that our customers’ personal information is secure and protected. We and our trusted third parties are committed to using commercially acceptable measures designed to protect the privacy and security of all personal information we receive. This includes measures to protect the data we collect, store, process, and otherwise handle, as well as the data we transmit and share with our partners.

We understand that security of personal information is a top priority for our customers. We have taken a number of steps to ensure that the data you entrust to us is safe and secure, including but not limited to:

  • Establishing internal policies, procedures, and processes to ensure that data is securely processed and stored.
  • Implementing industry-standard security protocols such as encryption, data integrity checks, and access control for personal information.
  • Regularly reviewing our security policies, procedures, and practices to ensure that they are up to date and in compliance with applicable laws, including the General Data Protection Regulation (GDPR).
  • Using secure techniques and technologies such as firewalls and data encryption to protect personal information.

While we have taken these and other measures to protect personal information, we cannot guarantee its absolute security. As such, we may request proof of identity before we disclose personal information to you, before we process your requests, or when we believe it is necessary to ensure the security of your account or data.

 

Anonymised data

Verve, in some circumstances, may create anonymised data, Anonymisation is the process of removing or obscuring information that could be used to identify individuals from a dataset. By using anonymised data, organisations can achieve their goals without infringing on the privacy and rights of individuals.

The UK Information Commissioner (UK ICO) has issued a set of guidelines that organisations must follow when anonymising data. These include:

  • Ensuring that any personal data is securely and irreversibly removed from the dataset.
  • Making sure that no individual can be identified from the dataset. This includes removing any direct identifiers such as name, address, or even IP address.
  • Taking appropriate steps to reduce the risk of individuals being re-identified from the dataset.
  • Using appropriate techniques, such as data aggregation, to ensure that personal data is anonymised.

Organisations can use anonymised data for a variety of purposes, such as to analyse customer behaviour or trends, or to develop new products or services. For example, a company may use anonymised data to analyse website traffic, understand which web content is working well and which could be improved, or to improve the user experience.

Although anonymised data does not allow for the identification of any individual person, organisations still need to take care when processing and analysing such data. It is important to ensure that any anonymisation is carried out in accordance with all applicable laws and the relevant guidance from regulators, such as the UK ICO.

By using anonymised data, organisations can process data while still protecting the privacy of individuals. This can help ensure that the rights of individuals are respected while still enabling organisations to carry out their desired activities.

 

Third Party Services

When you access the services of a third-party provider through our websites and services, for example through a link on the website, it’s important to remember that your use of those services is entirely at your own risk and is governed by the terms and privacy policy of the third-party provider.

Similarly, if we resell a service or software that’s provided by a third-party, it’s the third-party’s privacy policy that will apply to your personal data and your use of the Third Party Service and Third Party Software. Therefore, it’s important to read and understand the privacy policy of any third-party services and software you use before using it.

At the end of the day, it’s important to remember that your privacy and safety is your responsibility. By staying mindful of the third-party privacy policies, and the terms and conditions of the providers you access, you can help ensure the safety of your personal data.

 

Storage of your information

At Verve, we understand how important it is for you to have confidence in how your personal data is stored and handled. We take the protection and security of your data very seriously and ensure that it is processed in accordance with applicable laws and regulations.

We use a range of measures to ensure that your data is stored securely. Your data is securely stored in the data centres of our service providers which are located in the UK.

We use SCC (Standard Contractual Clauses) and IDTA (International Data Transfer Agreement) to ensure that your data is handled and transferred securely. We also use reasonable and necessary procedural and technical security features to IOS27001 to prevent unauthorised access to your data.

We understand that data breaches can have serious consequences, so if we become aware of one, we will take immediate steps to contain the breach and minimise its potential effect. We will also notify the Information Commissioner’s Office and notify you in accordance with our legal obligations.

As well as having technical measures in place to protect your data, we also have a range of policies and procedures in place to ensure that your data is handled responsibly and securely. These include policies on data security, data retention and data deletion.

We are committed to ensuring that your data is handled in a secure and responsible manner. If you have any questions about how we store and protect your data, please don’t hesitate to contact us

 

How long your personal data will be kept

When it comes to how long your personal data will be stored and retained, it’s important to understand the purpose behind why we need to keep it. At its core, we collect and store your personal data for the purposes of providing a service to you and complying with our legal and accounting obligations.

To ensure we are compliant with data protection regulations, we have established strict guidelines and processes for data retention. The length of time we keep your data will depend on the purpose for which it was collected and can range from a few months up to several years.

For example, we may store and process your personal data for the duration of an order or service you have requested, or the duration of your contractual agreement with us. Alternatively, we may keep it longer if it is necessary to fulfil our legal obligations, such as for tax or accounting purposes.

Data which is no longer required will be securely deleted or anonymised, meaning it can still be used for research and statistical purposes, but without any method of identifying you as an individual. This is in line with GDPR regulations and is intended to protect your privacy.

If you have any further questions or concerns about how long your personal data is kept, please don’t hesitate to contact us at the details provided. We are committed to ensuring that all personal data is processed and stored securely and in accordance with data protection regulations.

 

Sharing Data & International Transfers

Sharing data and allowing international transfers of data is a necessary part of running a successful business in today’s digital world. As such, businesses must take the necessary steps to ensure that personal data is shared, stored and transmitted securely, while also adhering to any applicable laws and regulations.

For many businesses, this means transferring data to third party providers, such as contractors and advisors, in order to help with the operation and security of the business, as well as for disaster recovery and business continuity purposes. When transferring personal data in this way, businesses must ensure that they are doing so lawfully, usually on the basis of a legitimate interest or contract.

Businesses may also be required to disclose personal data in order to comply with a law, order or request from a court, government authority, other competent legal or regulatory authority or any applicable code of practice or guideline. In these cases, businesses must ensure that they are doing so on the basis of a legal obligation.

Finally, if a business is engaging in negotiations with a third party for the sale or purchase of all or part of the business, it may be necessary to disclose personal data to that third party. In this case, the personal data must only be disclosed to the extent that it relates to the business, and the third party must be made aware of, and bound by, the privacy policy that applies to that data. This must be done on the basis of a legitimate interest.

By taking the necessary steps to ensure that personal data is shared, stored and transmitted securely, and in accordance with applicable laws and regulations, businesses can ensure that they are doing their best to protect the privacy of all of their customers.

When it comes to sharing data and making international transfers, we always ensure that the minimum amount of personal data necessary is shared. We have also written contracts in place that include relevant wording to ensure that any personal data shared is done so securely and in line with applicable laws. We will also only share such data as is necessary for the purpose in question.

Where possible, we also make sure to keep personal data within the European Economic Area (‘EEA’) for US and outside UK. When it comes to making international transfers, we use standard contractual clauses (SCCs) and international data transfer agreements (IDTAs) to ensure that any data shared is done so securely and in line with applicable laws.

 

Your rights

Data protection law gives us all several important rights when it comes to our personal information. It is important to know what these rights are and how you can use them.

Your right of access is your right to request copies of your personal information.

Your right to rectification is your right to ask for any of your information to be corrected if it is inaccurate. You can also ask for any incomplete information to be completed.

Your right to erasure is your right to ask for your personal information to be erased in certain circumstances.

Your right to restriction of processing is your right to limit how your personal information is used. This could be an instruction to limit its use to a certain purpose, or to stop further processing.

Your right to object to processing is your right to stop your personal information from being processed. This could be in the case of automated decision-making or profiling.

Your right to data portability is your right to ask that your personal information be transferred to another organisation, or to you, in certain circumstances. Such as the processing is by automated means.

You can also exercise the rights listed above at any time by contacting us at privacymanagement@addverve.com,

 

Complaints

At all times, You have the right to notify a complaint to a regulator such as the UK Information Commissioner

The Information Commissioner is responsible for ensuring data protection laws are followed, and can help consumers if their data rights are infringed.  we’d like to offer the opportunity to discuss and try to resolve any complaint you have with us first.

We are committed to providing excellent customer service and would like to have the chance to put things right.

https://ico.org.uk

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Helpline number: 0303 123 1113

If your request or concern is not satisfactorily resolved by us, you may approach your local data protection authority, (see http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.html ).

 

Object to direct marketing

We provide the option to unsubscribe in every communication that we send. If you click to unsubscribe in our communication, If you wish to unsubscribe to events, direct email or all communications email us here: privacymanagement@addverve.com

 

Children’s Data

This site is not intended for or directed at children, and we do not knowingly collect personal information from any person under the age of 13. If we discover that we have inadvertently collected personal information from a person under 13 years of age, we will promptly take commercially reasonable measures to delete such information from our systems.

We may process personal data of minors (individuals aged 13 to 18 years old) in connection with the provision of our Services. We rely on the lawful bases set out above to process such personal data and where legally required we will obtain parental consent in order to process such personal data.

 

Contact us

Please submit any questions, concerns or comments you have about this privacy policy or any requests concerning your personal data writing to us at:

Verve Partners Ltd,
115 Southwark Street 
London, SE1 0JF

Or email privacymanagement@addverve.com