At Vertigo Ventures Limited, we are committed to protecting personal data that we obtain about you.
The Website is operated by Vertigo Ventures Limited (Vertigo, we, us, our), a company incorporated in England & Wales with company number 06949326 and registered office at Albany House, Georgian Heights, Bourne End, England SL8 5NJ. Where we decide the purpose or means for the processing of the personal data that you or others provide via our Website, we are the “data controller”. As data controller, we will comply with all applicable data protection laws (including the General Data Protection Regulation 2016/679).
[Our Website may contain hyperlinks to third party websites. These websites operate fully independently from us, and we cannot accept any responsibility or liability for the privacy practices of such third parties nor the availability of these external sites or resources. The appearance of such links on our Website is not an endorsement. Should you use any of these websites, such use is at your own risk and we would advise that you review their respective privacy policies.]
What personal information are we likely to collect about you?
Not only does our Website provide visitors with information about the services that we offer, but it also functions as a platform providing our clients and other users access to our services, [as a means to upload user content or to view impact performance dashboards].
In order to provide our online services, including our VV-Impact Tracker and Impact Hub services, and other related business activities, we need to collect and process information about our Website visitors and, in particular, the users of our online services.
Information provided by you
When you use our Website, whether for browsing, to upload your own content, or to access [impact performance dashboards], you may be asked to fill in forms to create your own account. We will ask you to provide us with the following information:
- your name
- your organisation or company name
- your phone number
- your email address (work emails only)
- your username
- your password
- your free-text message (if you choose to provide one)
If you decide to purchase any of our services, we will also need you to provide:
- [your billing address?]
- [other information?]
Our [“Get In Touch”] contact function also allows our Website visitors to include a short message. Depending on your message, we may obtain additional personal data, which could include special categories of personal data (i.e. personal data of a more sensitive nature), when you voluntarily supply information through this function on our Website.
We are always trying to improve our Website and to offer the best, most accessible service possible to all of our customers.
To evaluate and make improvements, we utilise third party data analytics service providers (such as Google Analytics) to improve our visibility and to monitor website browser behaviour and navigation across the Website. These third party data analytics service providers collect this information on our behalf in accordance with our instructions and in line with their own privacy policies. We have contracts in place to protect the confidentiality of your information with all of our third party data analytics service providers.
When you visit our Website, our service providers may collect the following data, which will almost always be anonymised and aggregated before reporting back to us:
- number of visitors to our Website
- pages visited while at the Website and time spent per page
- page interaction information, such as scrolling, clicks and browsing methods
- websites where visitors have come from and where they go afterwards
- page response times and any download errors
- other behavioural information about your visit to the Website
- other technical information relating to end user device, such as IP address or browser plug-in
How do we use your personal data and on what basis?
When you visit our Website, whether to browse our content, to contact us about our services, to purchase our services or to upload or view content, we (or our third party service providers acting on our behalf) may use the personal information that you provide for the following purposes:
Providing our Services
- entering into an agreement with you to provide our services to you or that grants you the use of our services
- logging and processing your purchase order in our information systems
- providing a platform via which users may upload content
- providing online “delivery” of our services, such as access to [uploaded user content or dashboards]
If you are an end user of our Services, we will only collect and use this information where an End User Licence Agreement is in place and such processing shall be done to enable us to perform under that contract.
Customer Services & Enquiries
- replying to your enquiries or responding to concerns or complaints
- providing you with information about the services we offer, including our free e-newsletter and webinars, important announcements about your account, and other updates(where you have opted to receive these)
- sending you marketing materials
If you contact us to make an enquiry or to raise a concern about our Website or any aspect of our online services, we aim to respond to you as promptly as possible and we do so on the basis that we have a legitimate interest in replying to you.
If you have asked to be added to our mailing list, we will provide your details to a third party company called Mailchimp that helps us to produce and manage our newsletters and other updates. We provide these communications on the basis that you have asked to receive these. If you change your mind, you may opt-out at any time via the unsubscribe feature that appears in our emails or by emailing email@example.com.
You may also be asked to opt in to receive updates or information about other similar services from our network of recommended suppliers or to receive promotional material from us or our trusted third party suppliers.
Tax and other legal obligations
- reporting VAT and other company tax reporting purposes (as required by law)
- complying with regulators, law enforcement agencies or in relation to any claims that may arise
We process personal information for the legitimate interests and under the legal obligation of ensuring that use of the Website (i) is lawful and non-fraudulent, (ii) does not disrupt the operation of our services, (iii) does not harass our staff or other individuals, and (iv) to enforce our legal rights and comply with our legal obligations.
In accordance with our legal obligations, we may disclose your information to the extent required by law which may include for financial accounting and taxation purposes with our auditors, regulators or other government bodies such as HMRC. We may also disclose your information to third parties in order to enforce or apply our contractual terms, to investigate potential breaches, to protect the rights and freedoms, property or safety of our business or those of our clients, end users and other individuals.
Where we reasonably believe that you are or may be in breach of any of the applicable laws, we may use your personal information to inform relevant third parties such as your email/internet provider or law enforcement agencies about the content.
If we are involved in a merger, acquisition, or sale of all or a portion of our business or assets, the information we hold may be included as part of that sale, in which case you will be notified via email and/or a prominent notice on the Site of any changes in ownership or use of your information, as any choices you may have regarding that information.
Cookies, Analytics & other Tracking Technology
What are Cookies?
Cookies are files, often including unique identifiers, that are sent by web servers to web browsers, and which may then be sent back to the server each time the browser requests a page from the server. Cookies can be used by web servers to identify and track users as they navigate different pages on a website, and to identify users returning to a website.
Cookies may be either “persistent” cookies or “session” cookies. A persistent cookie consists of a text file sent by a web server to a web browser, which will be stored by the browser and will remain valid until its set expiry date (unless deleted by the user before the expiry date). A session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
Cookies may also be either “first-party cookies” or “third-party cookies”. First-party cookies are those that we set ourselves when you visit our Website. Third-party cookies” are those set by another website (with a different domain from ours), such as by our trusted third party service providers or selected advertisers.
- Cookies do not contain any information that personally identifies you, but personal information that we store about you may be linked, by us, to the information stored in and obtained from cookies. The cookies used on the Website include those which are strictly necessary cookies for access and navigation, cookies that track usage (performance cookies), remember your choices (functionality cookies), and cookies that provide you with targeted content or advertising.
- We may use the information we obtain from your use of our cookies to recognise your computer when you visit the Website, to improve the Website’s usability or to analyse the use of the Website.
- You may also be sent third party cookies from our advertisers and third party service providers when you use the Website, and they may use the information they obtain from your use of their cookies to track your browser across multiple websites, to build a profile of your web surfing and to target advertisements which may be of particular interest to you.
Analytics: Our Website also uses data analytics tools, such as Google Analytics. Google Analytics uses both session cookies and persistent cookies on the Website.
What does Analytics involve?
You can find out more here: How Google uses data when you use our partners’ sites or apps.
To learn how to opt out of Google Analytics, please visit https://tools.google.com/dlpage/gaoptout/ or your Google Ads Settings.
How we use Data Analytics
- We process this information to understand how visitors use our Website and to compile statistical reports regarding that activity (for example, your IP address is used to approximate the country from which you access our Website, and we aggregate this information together so we know that, for example, most of the visitors to our Website come from England).
- This processing is crucial to the running of our online business and we therefore undertake such monitoring in the pursuit of our legitimate interests in improving our Website, and providing a better service and source of information to visitors.
This information is not used to develop a personal profile of you.
All financial transactions relating to the purchase of our Services are handled directly by our payment service providers. We will not share any personal information with these third party providers, nor will we receive any of the financial information that you provide to them. The payment providers which we use are [please insert providers here, such as PayPal, Stripe, etc
Do we share your personal information with anyone else?
Personnel, Suppliers and Subcontractors
We keep your information confidential, but may disclose it to our personnel (including personnel in our group companies), suppliers or subcontractors (including our cloud-based data processing, data analytics and payment service providers) as well as to our trusted third party service providers insofar as it is reasonably necessary for the purposes set out in this policy, provided that they do not make independent use of the information and have agreed to adhere to the rules set out in this policy. In some instances, this data sharing may involve the transfer of information outside the EU. Please see our section on International Data Transfers below.
[By group company, we mean our subsidiaries, our ultimate holding company and its subsidiaries, as defined with reference to the definitions of “holding undertaking” and “subsidiary undertaking” in section 1162 of the UK Companies Act 2006.]
We will not pass your information on to third parties for marketing purposes unless you have provided your consent, in which event the advertisements that appear when you visit our Website will be targeted to provide you with more relevant advertising content and you may receive communications from third parties offering similar or related services to us.
Such third parties may include, without limitation: Microsoft, Google, Hootsuite, Citrix Systems, Amazon, DropBox, SurveyMonkey or Smartline International (where you respond to surveys that we send out from time to time), Highrise, UserVoice, Heart Internet or Hootsuite Media.
Your choices and rights in relation to personal data which we process relating to you
You have the following rights over the way we process personal data relating to you. We aim to comply without undue delay, and within one month at the latest:
- to ask for a copy of data we are processing about you and have inaccuracies corrected;
- to ask us to restrict, stop processing, or to delete your personal data;
- to request a machine readable copy of your personal data, which you can use with another service provider. Where it is technically feasible, you can ask us to send this information directly to another provider if you prefer; and
- to make a complaint to a data protection regulator. You may contact them at: https://ico.org.uk/concerns/
To make a request in relation to any of the aforementioned rights, please email us at firstname.lastname@example.org.
If you are unhappy with the way that we are processing your personal data, please let us know. The best way to bring this to our attention is by emailing us at email@example.com.
We do not knowingly use the Website to solicit data from or market to children under the age of 13.
If a parent or guardian becomes aware that his or her child has provided us with information or may be receiving communications from us without consent of a parent or guardian, we ask that this be brought to our immediate attention. We will make it our priority to address this situation and delete information relating to a child as soon as practicable. In such an event, please contact us at firstname.lastname@example.org.
We will take commercially reasonable, appropriate technical and organisational measures to ensure a level of security appropriate to the risk that could be encountered via the use of our Website and services, taking into account the likelihood and severity those risks might pose to the rights and freedoms of our customers and other individuals who might be impacted.
In particular, we will take precautions to protect against the accidental or unlawful destruction, loss, or alteration, and unauthorised disclosure of or access to the personal data transmitted, stored or otherwise processed by us.
Please be aware that, while we make the security of our Website and your personal information a high priority and we devote considerable time and resources to implementing and maintaining robust information technology security, no security system can prevent all security breaches. By choosing to share your personal information with us, you accept the aforesaid and provide your information at your own risk.
In accordance with data protection laws and good commercial practice, we do not retain data in a form that permits identification of the person(s) to whom it relates for any longer than is necessary. Once the purpose for which information has been collected has been fulfilled, we will either permanently delete your personal information or remove all identifiers within it so that it is no longer personal data. We may use such anonymised data for research and/or business analysis purposes.
Where you have provided us with personal information in order to set up an account with us, we will retain those details for as long as your account remains active.
Where we obtain your personal data in relation to the use or purchase of our services or products, including VAT or invoicing information, we are obligated by law to keep this for a minimum of 6 years.
Where you upload any user content,, this content will be kept on our servers (or those of our third party service providers) for [[XX] months from the date that you upload it on our Website/the duration of the relevant Services Agreement] and deleted thereafter unless otherwise notified.
International Data Transfers
Our servers are located in the European Union and the information that we collect directly from you will be stored in these servers. We may also transfer your personal data to our third party service providers, many of whom may be located outside of the EU, operate from multiple locations including non-EU based operations or engage sub-processors located outside the EU.
We have agreements in place with all of our third party service providers to ensure that those parties process personal data using appropriate safeguards that meet the requirements of data protection laws. Such appropriate safeguards may include standard data protection clauses adopted by a data protection regulator and approved by the European Commission, such as the European Commission’s standard contractual clauses.
If you would like to find out more about these safeguards or if you have any other queries or comments in relation to this policy, please let us know by emailing us at email@example.com.