Need to write an internal communication strategy? Start yours today >

Privacy Notice

Privacy is integral to what we do.

Communicating securely, whilst protecting your personal data is paramount.

This privacy notice provides you with details of how we collect and process your personal data through your use of our site www.allthingsic.com including any information you may provide through our site when you purchase a product or service or sign up to our newsletter.

All Things IC is the data controller is responsible for your personal data (referred to as “we”, “us” or “our” in this privacy notice). We also are a data processor on behalf of our respected clients and protecting this information is at the heart of what we do.

In short, we only collect information that enables you to do something – purchase a job advert, book a Masterclass, or subscribe to newsletter/ blog posts or access a download. We never sell this information on or use it for any other purpose than the reason you’ve provided it.

By providing us with your data, you warrant to us that you are over 13 years of age. We do not knowingly provide services to children under this age.

Contact details

Our full details are: All Things IC Limited. We have a Virtual DPO, Greig Ferguson, who can be reached at privacy@allthingsic.com.

Registered company address: Sunny Lodge, 39A Gifford Gardens, London, W7 3AS, UK.

If you are not happy with any aspect of how we collect and use your data, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).

You can also write to, or call the ICO;

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Telephone: 0303 123 1113
Fax: 01625 524510

We should be grateful if you would contact us first if you do have a complaint so that we can try to resolve it for you.

It is very important that the information we hold about you is accurate and up to date. Please let us know if at any time your personal information changes by emailing us at contact@allthingsic.com

You are able to opt out of our communications at any time.

What data do we collect?

Personal data means any information capable of identifying an individual. It does not include anonymised data.

We may process certain types of personal data about you as follows:

  • Identity Data may include your first name, last name, username, title.
  • Contact Data may include your billing address, delivery address, email address and telephone numbers.
  • Financial Data may include your bank account and payment card details. (This is if you are purchasing a Masterclass or Job Advert. They are processed securely by STRIPE – https://stripe.com/gb/privacy).
  • Transaction Data may include details about payments between us and other details of purchases made by you.
  • Technical Data may include your login data, internet protocol addresses, browser type and version, browser plug-in types and versions, time zone setting and location, operating system and platform and other technology on the devices you use to access this site. (This is generated by WordPress).
  • Profile Data may include your username and password, purchases or orders, your interests, preferences, feedback, and survey responses. (We cannot see your password via WordPress, the only time you’d create an account is if you’re booking a Masterclass).
  • Usage Data may include information about how you use our website, products, and services. (E.g. visitor stats via WordPress).
  • Marketing and Communications Data may include your preferences in receiving marketing communications from us and your communication preferences.

We may also process Aggregated Data from your personal data, but this data does not reveal your identity and as such in itself is not personal data. An example of this is where we review your Usage Data to work out the percentage of website users using a specific feature of our site. If we link the Aggregated Data with your personal data so that you can be identified from it, then it is treated as personal data. (But we don’t do this).

Sensitive data

We may collect any Sensitive Data (also known as Special Category Data) about you. This would be in the form of biometric data (voice recordings, podcasts, photos, and videos). Where we do this, we have specific retention periods for this and an additional lawful bases for this collection. We will always inform you of this collection type before we carry any form of this processing out.

We do not however, collect any sensitive data refers including details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic data.

We do not collect any information about criminal convictions and offences.

How we collect your personal data

We collect data about you through a variety of different methods including:

  • Direct interactions: You may provide data by filling in forms on our site (or otherwise) or by communicating with us by post, phone, email or otherwise, including when you:
  • order our products or services;
  • create an account on our site;
  • subscribe to our service or publications;
  • request resources or marketing be sent to you;
  • give us feedback.
  • Automated technologies or interactions: As you use our site, we may automatically collect Technical Data about your equipment, browsing actions and usage patterns. We collect this data by using cookies, server logs and similar technologies. We may also receive Technical Data about you if you visit other websites that use our cookies. Please see our cookie policy for further details.
  • Third parties or publicly available sources: We may receive personal data about you from various third parties and public sources as set out below
  • Technical Data from the following parties: analytics providers such as Google based outside the UK. Contact, Financial and Transaction Data from providers of technical, payment and delivery services STRIPE based outside the UK.

How we use your personal data

We will only use your personal data when lawfully permitted. The most common uses of your personal data are:

  • Where we need to perform the contract between us.
  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
  • Where we need to comply with a legal or regulatory obligation.

Generally, we do not rely on consent as a legal ground for processing your personal data, other than in relation to sending marketing communications to you via email. You have the right to withdraw consent to marketing at any time by emailing us at privacy@allthingsic.com

Lawful bases for processing your data

Set out below is a description of the ways we intend to use your personal data and the legal grounds on which we will process such data. We have also explained what our legitimate interests are where relevant.

We may process your personal data for more than one lawful ground, depending on the specific purpose for which we are using your data. Please email us at privacy@allthingsic.com if you need details about the specific legal ground, we are relying on to process your personal data where more than one ground has been set out in the table below.

Purpose/ Activity Type of data Lawful basis for processing
To register you as a new customer. 1.    Identity

2.    Contact

Performance of a contract with you.
To process and deliver your order including:

1.    Manage payments, fees, and charges.

2.    Collect and recover money owed to us.

1.    Identity

2.    Contact

3.    Financial

4.    Transaction

5.    Marketing and Communications

1.    Performance of a contract with you.

2.    Necessary for our legitimate interests to recover debts owed to us.

To manage our relationship with you which will include:

1.    Notifying you about changes to our terms or privacy policy.

2.    Asking you to leave a review or take a survey.

1.    Identity

2.    Contact

3.    Profile

4.    Marketing and Communications

1.    Performance of a contract with you.

2.    Necessary to comply with a legal obligation.

3.    Necessary for our legitimate interests to keep our records updated and to study how customers use our products/services.

To administer and protect our business and our site (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data). 1.    Identity

2.    Contact

3.    Technical

1.    Necessary for our legitimate interests for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise.

2.    Necessary to comply with a legal obligation.

To deliver relevant website content and advertisements to you and measure and understand the effectiveness of our advertising. 1.    Identity

2.    Contact

3.    Profile

4.    Usage

5.    Marketing and Communications

6.    Technical

Necessary for our legitimate interests to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy.
To use data analytics to improve our website, products/services, marketing, customer relationships and experiences. 1.    Technical

2.    Usage

Necessary for our legitimate interests to define types of customers for our products and services, to keep our site updated and relevant, to develop our business and to inform our marketing strategy.

 

Retention of data

We retain information (including personal information) for the minimum reasonable time period to allow us to provide our services and will delete it after that time except where we need to keep any personal information to comply with our legal obligations, resolve ongoing disputes, or enforce our agreements.

Should you require more detail about our retention timescales for a specific category of data or information please contact us at privacy@allthingsic.com

Your rights

In order to comply with the requirements of the legal framework of data protection in the UK and EU, which confers a number of defined rights onto the owners of personal data, the data subjects, we have created a separate policy and framework. The policy details how we will ensure that it services the rights of the data subjects as they arise during the course of its business. The data subject rights are;

  • The right to be informed (Article 13)
  • The right of access (Article 15)
  • The right to rectification (Article 16)
  • The right to erasure (“right to be forgotten”) (Article 17)
  • The right to restrict processing (Article 18)
  • The right to data portability (Article 20)
  • The right to object (Article 21)
  • The right not to be profiled or subject to automated decision making (Article 22)

If you wish to evoke any of these rights, please contact privacy@allthingsic.com

In short, we take the information you provide very seriously and only use it for the intended purpose e.g. to receive blog posts or newsletter or book a Masterclass place.

You are able to opt out of our communications at any time.

Do get in touch privacy@allthingsic.com if you have any queries.

Get in touch...

Would you like to work with All Things IC? Do get in touch below. Please note we only accept guest post ideas from in-house IC pros who have read the blogging guidelines.

Asking for advertising, back links or pitching services? We do not offer these and will not reply. Thank you.