Our Privacy Notice
This Privacy Notice aims to provide you with information about how we handle information we receive from our registered ‘Network’ users (‘Members’) and everyone else who visits (‘Non-Members’) our Site. We take our responsibility seriously and will always treat this information with the utmost respect and care.
The primary purpose for processing your personal data, is to fulfil our contractual obligations towards you, the Member. The processing of personal data is required, for example, for us to be able to create our industry specific network of contacts, services and information to you.
It is important that you read this Notice together with our T&Cs and any other policies we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data.
We may update our Privacy Notice from time to time therefore we encourage you to visit our Site regularly to stay informed of the purposes for which we process your data and your rights to control how we process it.
If you have any questions about this Notice, including any requests to exercise your legal rights, please contact ONEDECOM Ltd on the details below.
Full name of legal entity: ONEDECOM Ltd
Company No. SC632517
ICO Registration No. ZA535258
Email address: firstname.lastname@example.org
If you want to make a complaint on how we have handled your personal data, please contact us as soon as possible and we’ll investigate the matter and report back to you.
If you are still not satisfied after our response or believe we are not using your personal data in line with the law, you also have the right to complain to the Information Commissioner – https://ico.org.uk/.
Data you provide us with
We obtain this data directly from you and when you publish on the platform. There are both mandatory entry fields and optional information you can provide.
- Login Data includes username or similar identifier and password
- Profile Data includes full name, first name, last name, email address, facial or avatar imagery, educational background and job history
- Billing Data includes transactional data about payments received
- Activity Data includes messages, group posts, event participation and connections made
- Marketing and Communications Data includes your preferences in receiving marketing from us and your communication preferences
Data we automatically obtain
Data about you is automatically collected when using our platform and services such as:
- Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our portal
- Usage Data includes information about how you use our portal as well as the frequency and pattern of your service use
Data we obtain about you from other sources
We also process data that we haven’t obtained directly from you. This occurs whenever a Member provides us with information, or we collect information from other sources. In such cases we process the respective data within the scope of fulfilment of our contractual obligations towards the respective Member and/or to safeguard our legitimate interests, while giving due consideration to your interests.
Who we may share your data with?
We would only ever pass your personal data on to third parties when:
- When required for us to fulfil our business purposes, e.g. when we make your profile accessible to another Member (‘connections’) as instructed by the preferences you set;
- We are obliged to do so on legal grounds or at the request of another official authority
To create a Member profile, you will be required to enter your full name, last name, email address, username and password. If an Order is placed for additional Services, you will need to provide payment (e.g., credit card) and billing information.
Once registered, our Members can:
- share their professional profile
- engage with the network through direct contact, groups and forums
- exchange industry knowledge and professional insights
- promote company, project involvement and project role
- post & view relevant content
- promote, boost or find career opportunities
Note: Content and data on some of our Services is viewable to non-members.
Our portal allows Members to directly stay in touch with sector professionals and colleagues. To do so, you will “connect” with persons through their profile, and those who also wish to “connect” with you. Subject to how you have set your privacy preferences, when you connect with other Members you will be able to view each other’s connections.
Your credit card data is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction.
After that is complete, your purchase transaction data is deleted. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by us.
Your Billing data is saved until your user account is deleted or beyond this point, until a time when the data is no longer subject to any tax-related, commercial or other statutory storage obligations.
From time to time we will send you marketing emails and newsletters to keep you updated on our products and services. You have a right to object at any time to the processing by unsubscribing to our newsletters by clicking on the link provided at the end of the respective newsletter.
We make it possible for Members to expand their network on ONEDECOM and invite Non-Members. When a Member makes use of this feature, personal data is processed on their behalf and under their responsibility. The invited Non-Member can select an opt-out link in the Invitation to Register e-mail to object to the sending of any further invitations. On receiving such notice, ONE Decom automatically deletes the Non-Member’s data – first name, last name and e-mail address.
When creating a Member profile on ONEDECOM, we require a few details from you such as your full name. This information then forms the basis of your professional profile and is always visible to others (Members. The choice is then yours to determine whether you want non-members of ONEDECOM to be able to find and access the information in your profile, e.g. via search engines. Your settings let you decide as you can narrow down who can see your profile, e.g. only registered ONEDECOM members. Privacy settings are available to you under Privacy in the Account tab.
ONEDECOM will only process your personal data where we have a lawful basis to do so. Our lawful bases include:
- contract – where processing is necessary for the performance of a contract with you (e.g. to deliver the ONEDECOM Services you have requested)
- consent (where you have given consent)
- legitimate interests – (process your personal data for the purposes of our legitimate interests provided that such processing shall not outweigh your rights and freedoms)
Where we rely on your consent to process personal data, you have the right to withdraw or decline your consent at any time and where we rely on legitimate interests, you have the right to object
We ensure that there are appropriate technical controls and security measures in place designed to protect and prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed We undertake regular reviews of who has access to information that we hold to ensure that your information is only accessible by appropriately trained staff, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Under the General Data Protection Regulation, you have legal rights available to you with regard to data access, rectification, erasure, restriction of processing and objection to processing, as well as the right to data portability.
Individuals can find out if we hold any personal information by making a ‘right of access’ request. More information can be found at https://ico.org.uk.
You may download a copy of all data you have created on our portal using the ‘Export Data’ function within the ‘Accounts’ tab under profile. An email will be sent to you to verify the request. Then the site admin will review your request and if approved, a zip file will be generated and emailed to you.
Additionally, please contact us directly if you require further assistance.
We will only retain your personal data until you either delete the data or you delete your membership with ONEDECOM or for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.