Unify Hosting & unifyhosting.co.uk is committed to protecting your personal information and being transparent about what information we hold.
Developing a better understanding of our customers through their personal information allows us ensure our services are meeting our customers needs. We have made improvements to this Policy so that transparency is at the core of what we do.
We ensure that we use your personal information in accordance with the law. This Policy explains:
What information unifyhosting.co.uk may collect about you;
- How we will use that information;
- Whether we disclose your details to anyone else;
- Your choices regarding the information you provide to us; and
If you have any queries about this privacy and cookies policy please contact the Data Protection Officer by emailing: firstname.lastname@example.org
The Policy may change from time to time. For example, we have recently updated it to reflect new legal requirements of the EU General Data Protection Regulation (also known as the ‘GDPR’). Please visit this website section periodically in order to keep up to date with the changes in our Policy.
- Who We Are:
Unify Hosting & unifyhosting.co.uk is a small family business with one goal:
To provide easy and affordable website to the public and small to medium sized businesses. In this Policy ‘we’, ‘us‘, ‘our‘ means both unifyhosting.co.uk, Unify Hosting and its subsidiaries.
The legal phrase that’s used to describe an organisation that makes these decisions is ‘data controller’.
We collect information about you in the following ways:
We collect, store and use the following kinds of personal information:
- Your name and contact details, including postal address, telephone number, email address and, where applicable, your social media profile
- Your date of birth
-Financial information you provide where you make a payment, such as bank details or credit/debit card details, although we don’t store credit or debit card details (see below)
-Information about your computer/mobile device and your visits to and use of this website, including for example your IP address and geographical location
-Information about our services which you use/which we consider of interest to you
-Any other personal information you share with us as described above
Certain categories of personal information are regarded by the law as more sensitive than others.
This is known as ‘special category’ or ‘sensitive personal data’ and covers things like information about your health, ethnic origin, religious beliefs, political opinions or any genetic or biometric data that is used to identify you.
We currently do not collect or process this information.
We do not store your debit card or credit card information on our servers. We use a payment gateway such as PayPal or Stripe and all payments are handled securely using SSL (secure socket layers) through their gateways.
We use your personal information for a number of purposes including the following:
- To provide you with the services, products or information you have requested;
- To process payments we may receive from you;
- To create an account for you if you register with us;
- To deliver products or services you;
- To process orders from our shops or provide after-sales service;
- To invite you to participate in interactive features on our website when you choose to do so;
- For administration purposes (for example we may contact you regarding a new feature or to inform you of a service upgrade);
- For internal management, such as record keeping of enquiries, feedback or complaints;
- To invite you to participate in surveys ;
- To use IP addresses to identify your approximate location, to block disruptive use, to record website traffic or to personalise the way our information is presented to you;
- To analyse and improve the online services we offer, to make them as user-friendly as possible;
- Where collecting and holding your information is required or authorised by law;
- We may use your personal information for the purposes of credit risk reduction or fraud prevention (using external specialist agencies to help us); and
- Other specific purposes that you may agree to from time to time.
The law requires us to set out the lawful grounds on which we collect and process your personal information as described in this Policy. Depending on the purposes for which we use your data, one or more of the grounds listed below may be relevant:
In certain instances, we collect and use your personal information by relying on the legitimate interest legal basis. In broad terms, our “legitimate interests” means our interest in being able to run the British Heart Foundation as a charitable entity effectively in pursuit of our aims and ideals. This includes:
Sending direct marketing material to customer for information purposes.
Measure and understand how our customers respond to a variety of marketing activity so we can ensure our activity is well targeted, relevant and effective;
However “legitimate interests” can also include your interests, such as when you have requested information or certain goods/services from us.
If we rely on the “legitimate interests” basis to use your personal information, we will only use the information in accordance with the purposes described in this Policy.
When we legitimately process your personal information in this way, we also consider and balance any potential impact on you (both positive and negative), and your rights under data protection laws. We will not use your personal information for activities where our interests are overridden by the impact on you, for example where collection and use of your information would be excessively intrusive (unless, for instance, we are otherwise required or permitted to by law)
In many instances, we will rely on obtaining your consent to our use of your personal information in a certain way (for example, asking for your consent to use your personal information to send you direct marketing information, and we may ask for your explicit consent to share sensitive personal information with us)
We may need to collect, process and disclose personal information to comply with a legal obligation. For example, where we are ordered by a court or regulatory authority or we are legally required to hold payment transaction details for accounting/tax purposes.
For example if you purchase something from our online shop we need to be able to process your information for the purpose of meeting our contractual obligations.
You have the following legal rights in relation to our collection and processing of your personal information:
Right to be informed – you have the right to be told how your personal information will be used. This Policy and other policies and statements used on this website and in our communications are intended to provide you with a clear and transparent description of how your personal information may be used.
Right of access – you can write to us to ask for confirmation of what information we hold on you and to request a copy of that information (and other related information). Provided we are satisfied that you are entitled to see the information requested and we have successfully confirmed your identity, we will provide you with your personal information subject to any exceptions that apply.
Right of erasure – at your request we will delete your personal information from our records as far as we don’t have an overriding legitimate reason for holding on to it (e.g. to comply with a legal obligation).
Right of rectification – if you believe our records of your personal information are inaccurate, you have the right to ask us to update those records. You can also ask us to check the personal information that we hold about you if you are unsure whether it is up to date or not.
Right to restrict processing – you have the right to ask us to restrict the processing of your personal information if there is disagreement about its accuracy or whether our use is legitimate or not.
Rights related to automated decision-making – where we take automated decisions in relation to your personal information with no human involvement (i.e. such as credit scoring) you have the right to ask us for human intervention or to challenge any such decision.
Right to object – you have the right to object to processing where we are: (i) processing your personal information on the basis of the legitimate interests ground (see ‘Legal basis for processing’ above) and we have no compelling reason we can demonstrate to continue with that processing; (ii) using your personal information for direct marketing, or; (iii) using your personal information for statistical purposes.
It is always your choice as to whether you want to receive information about our work, how we raise funds and the ways you can get involved. If you do not want us to continue to contact you, you have the right to object or change your mind at any time.
You may opt-out of our marketing communications at any time by clicking the ‘unsubscribe’ link in at the end of our marketing emails or by sending us an “opt-out” text message, following the instructions we provide you in our initial text.
You can also change or edit any of your contact preferences at any time (including telling us that you don’t want us to contact you for marketing purposes by telephone, or by post) by contacting us at email@example.com
If you have indicated that you do not wish to be contacted by us for marketing purposes, we will retain your details on a ‘do not contact’ list to help ensure that we do not contact you accidentally. However, we may still need to contact you if you carry on dealing with us, including (but not limited to):
Processing a payment you make or any continuing direct debit;
Providing you with information you need in order to use our services effectively and safely.
Explaining and apologising where we have made a mistake; and
Dealing with future legal claims in connection with a contract we have with you
To exercise any of these rights, please send a description of the personal information in question to our firstname.lastname@example.org. Please note that some of these rights may be subject to legal restrictions, which we’ll tell you about if they apply.
You can also access the data we hold about you from your Unify Hosting Client Panel by logging in to your account and navigating to 'Account Management' which can be found to the top left of your screen. From the 'Account Management' page, you can download a list of Microsoft Excel files which will detail the information we hold. You can also request your account to be deleted from the 'Account Management' page, once a request like this has been made, your account will be automatically deleted in ten days.
For more information about your rights or if you are not happy with our response to your request, you can contact the Information Commissioner’s Office (ICO) – for more details, see https://ico.org.uk/.
We do not share, sell or rent your information to third parties for marketing purposes. However, we may disclose your personal information in the following circumstances:
To other unifyhosting.co.uk, Unify Hosting entities, trading subsidiaries, suppliers or service providers to provide the products or services you’ve requested from our website(s). Where you have agreed to receive email or SMS marketing communications from us, we may provide your email address or mobile phone number in an encrypted format to social media companies, such as Facebook, Instagram, Twitter or YouTube, or to digital advertising networks that are providing services to us by displaying our advertising to you on those social media platforms and other websites, as well as identifying audiences with interests similar to yours. You can opt out of your data being used to display advertising to you by contacting us at dataprotection.unifyhosting.co.uk. However, this will not prevent our advertisements being shown to you without targeting you personally. Opting out in this way may mean that you stop receiving marketing communications from us generally. Where we are under a duty to disclose your personal information in order to comply with any legal obligation (for example, where ordered by government bodies and law enforcement agencies), or in order to enforce or apply our rights (including in relation to lawful operation of our website or enforcing applicable terms and conditions) or to protect unifyhosting.co.uk or unifyhosting.co.uk for example in cases of suspected fraud or defamation.
If you post or send any content that we believe to be inappropriate, offensive or in breach of any laws, such as defamatory, abusive, or hateful content on our forums or social media pages, if necessary, we may use your personal information to inform relevant third parties such as your internet provider or law enforcement agencies.
For financial and technical reasons we may, on occasion decide to use the data hosting or data processing services of a supplier who is based outside the UK and European Economic Area (EEA), which means that your personal information may be transferred to that supplier and processed and stored outside the UK and EEA. This includes countries that are not considered to have the same standards for legal protection of personal information that you enjoy in the UK. We will always take steps to choose highly reputable suppliers, who respect your security and will put in place suitable legal safeguards with that supplier to protect your personal information, so that it is subject to the same privacy standards that you have in the UK.
If and when this occurs, the supplier is usually based in the USA and we always ensure that they have adopted the EU-US Privacy Shield Framework or are subject to EU-approved contract clauses which offer a mechanism for the non-EU based supplier to comply with EU data protection requirements in respect of your personal information.
We keep your personal information only for as long as we need to use it for the purposes set out in this Policy.
We have adopted a data retention policy that sets out the different periods we retain personal information for in respect of these relevant purposes. The criteria we use for determining these retention periods is based on various legal requirements; the purpose for which we hold data and whether there is a legitimate reason for continuing to store it (such as in order to deal with any future legal disputes); and guidance issued by relevant regulatory authorities including, but not limited to, the Information Commissioner’s Office (ICO).
Personal information that we no longer need is securely disposed of and/or anonymised so you can no longer be identified from it. Some personal information may be retained by us in archives for statistical or historical research purposes although we will do this in a manner that complies with applicable data protection law.
We continually review what personal information and records that we hold, and delete what is no longer required. We never store payment card data after the transaction has been completed.
- Reviewed 07-2018
- Reviewed 07-2019
- Reviewed 10-2021