Privacy Policy

Purpose of this Privacy Policy

Privacy is important to us, and Unifi.id (collectively referred to as “Unifi.id,” “we,” or “us”) are committed to protecting the privacy of companies and entities who enter into services agreements and individuals who visit our Website that links to this Privacy Policy (“Visitors”). This Policy Statement describes the ways we collect information from and about you, and what we do with the information, so that you may decide whether or not to provide information to us. By Accessing the Unifi.id Website or purchasing our products/services you agree to this Privacy Statement in addition to any other agreements we might have with you.

Who We Are

Reward Technology Limited (trading as “Unifi.id”), incorporated provide Solutions with Services and is registered in England and Wales with company number 08485252, it has its registered office address at 22-24 Harborough Road, Northampton, NN2 7AZ, United Kingdom and correspondence address is Level39, One Canada Square, Canary Wharf, London E14 5AB, United Kingdom.

Data We Collect as Controllers

When you engage with us as a Client or Prospective Client or Supplier or Partner for information about us, our services, and or access/interact with our service(s) or Website(s), we may collect Personal Data.

As part of our business relationship, Clients must provide us with Personal Data necessary to establish and maintain our relationship. Otherwise, Unifi.id will not be able to provide our services.

Unifi.id may electronically store some or all of the following personally identifiable information about you:

  • Name
  • Address
  • Email address
  • Job Title
  • Telephone number
  • Business name
  • IP address
  • Demographic information
  • Any other information that can enable them to be personally identified

Data We Collect as Processors

As well as collecting Data on our own behalf, other times we may process Personally Identifiable Information on behalf of the Client making use of our Services. This is an important distinction for EU data protection law purposes.

As a Client’s representatives, contractor, customer, guest, student or other end-users (collectively referred to as “End Users”) Unifi.id may electronically store some or all of the following personally identifiable information about you:

  • Name
  • Address
  • Email address
  • Job Title
  • Telephone number
  • Business name
  • IP address
  • Demographic information
  • Any other information that can enable them to be personally identified

Clients have full control of what data is inputted and stored and can choose whether these data are shared with the End Users. The Client can also edit/delete or request deletion of these data.

Unifi.id only accesses personally identifiable data stored in the system about End Users when authorised, requested or otherwise necessitated by a Client, in order to support queries, to investigate a particular request, to monitor performance, to ensure satisfactory operations of the services, or to diagnose, troubleshoot or otherwise fix issues.

How We Collect Personal Data

We collect Personal Data from you at several different points, including but not limited to the following:

  • when we correspond with you as a Client or prospective Client;
  • when you use our services;
  • when you visit our website;
  • when you register (or are registered) as an End-User of our services and an account is created for you;
  • when you submit a contact form;
  • when you contact us for help.

Processing of Personal Data

The legal basis and purposes for processing of your Personal Data are as follows:

We will Process data that is necessary to: a) perform our contractual relationship between our Client and us as a service provider; and or b) perform our services to you as an End-User, on the legal basis of Art. 6 para. 1 lit. b of the GDPR.

We may also process Data when creating and managing a Client account, providing technical support and generally handling the contractual relationship, pricing and transaction processing, communication in relation to our business relationship, as well as providing evaluations of our systems’ data to the Client.

In an ongoing effort to understand and better serve Clients’ businesses and End-Users, we may conduct research on End-Users demographics and behaviour based on Personal Data and other information that we have collected. This research is typically conducted on an aggregate basis only that does not identify anyone. Once Personal Data is in an aggregated form, for purposes of this Privacy Policy, it becomes Non-Personal Data.

If you provide Personal Data for a particular purpose, we may use the Personal Data in connection with the purpose for which it was provided. For instance, if you contact us by e-mail, we will use the Personal Data you provide to answer your question or resolve your query and will respond to the email address from which the contact came.

Storage of Personal Data

Unifi.id uses appropriate technical and organizational security measures to protect Personal Data both online and offline from unauthorized use, loss, alteration or destruction. We use industry-standard physical and procedural security measures to protect information from the point of collection to the point of destruction. This includes but is not limited to: encryption, firewalls, access controls, policies and other procedures to protect information from unauthorized access

The Personal Data we collect is stored on Company owned or authorised computers, or on cloud computing servers that are located within the European Economic Area (“EEA”). Only these systems will be used for storing Personal Data, while Unifi.id will remain the Controller. Unifi.id will only select cloud computing providers who will guarantee their compliance with relevant EU legislation for the protection of data.

Provision of Personal Data

Where we need to collect Personal Data by law, or under the terms of a contract we have with a Client (such as when our software or services are purchased) and that necessary data is not provided when requested, we may not be able to perform the contract we have or are trying to enter into (for example, to provide you with the products required). In this case, we may have to cancel or suspend the provision of the products or service, or they may continue to be provided but may not fulfil the requirements until such data are added, but we will notify you if this is the case at the time.

Information Shared with Third Parties

When we share your information, we want you to know that we only do so in accordance with our legal data protection and privacy obligations. We will never sell Personal Data.

The individuals that may have access to Personal Data will be those that have committed themselves to confidentiality and required access to the data in order to carry out their respective task in relation to our service.

We may disclose Personal Data to third parties on other lawful grounds, including:

  • To comply with our legal obligations, regulation or contract, or to respond to an administrative or judicial process;
  • In response to lawful requests by public authorities (including for national security or law enforcement purposes);
  • If necessary, to exercise or defend against potential, threatened or actual litigation;
  • If necessary, to protect the vital interests of another person;
  • In connection with the sale, assignment or other transfer of all or part of our business; or
  • With consent.

How Long We Keep Personal Data

Unifi.id will only keep the Personal Data we collect about you or our Clients’ End Users for as long as required for the purposes set out above or as required to comply with any legal obligations to which we are subject. This will involve us regularly reviewing our files to check that information is accurate, up-to-date and still required.

Your Rights

With regard to processing Your Personal Data, You have the following rights free of charge:

  • Right to withdraw consent pursuant to Art. 7 GDPR – If You have given us Your consent to process Your Personal Data, you can withdraw such consent at any time with future effect without affecting the legality of the processing carried out based on the consent until withdrawal. This also applies to the withdrawal of declarations of consent that were given to us before the GDPR came into force, i.e. before 25 May 2018.
  • Right of access pursuant to Art. 15 GDPR- You have the right to receive information on whether or not Your Personal Data is being processed by us and about the details of any such processing (who, for what purpose, recipients, retention period, etc.) as well as the right to access Your Personal Data concerned.
  • Right to rectification pursuant to Art. 16 GDPR- You have the right to request the rectification of inaccurate or incomplete Personal Data we hold about You.
  • Right to erasure pursuant to Art. 17 GDPR- You have the right to request the deletion of any of Your Personal Data under certain conditions (e.g. data that is no longer necessary)
  • Right to Restriction of Processing pursuant to Art. 18 GDPR– You have the right to request the restriction on the processing of Your Personal Data.
  • Right to data portability pursuant to Art. 20 GDPR – You have the right to receive Personal Data that You have provided to us with Your consent in a structured, commonly used and machine-readable format and – if technically feasible – to demand that we transfer those data to a third party.
  • Right to object pursuant to Art. 21 GDPR – Under the requirements of Art. 21 GDPR You have the right to object to the processing of Your Personal Data at any time on grounds relating to Your particular situation. The aforementioned general right to object applies to all processing purposes described in this Privacy Policy, which are based on the legal basis of legitimate interest. In the event You make legitimate use of such right, we will no longer process Your Personal Data, unless we demonstrate compelling legitimate grounds for the processing, which override Your interests, rights and freedoms or for the establishment, exercise or defence of legal claims (e.g. a possible risk to life or health) . As far as we process Your Personal Data for direct marketing purposes, you may object to this at any time without giving reasons.
  • Right to lodge a complaint pursuant to Art. 77 GDPR – You have the right to lodge a complaint with a competent supervisory authority if You believe that we process your Personal Data by breaching applicable data protection law. You may, in particular, reach out to the supervisory authority that is responsible at Your place of residence or to the supervisory authority responsible for us. You can use the following link to locate the relevant authorities: http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm.

Unifi.id as a Data Controller & Data Processor

If you directly engage with Unifi.id or its services, including but not limited to representing a current or prospective Client or by using Unifi.id Website(s), Unifi.id will be the Data Controller in respect to the Personal Data that you provide. We will also be a Data Controller of the Personal Data that we have obtained about the direct use of the Unifi.id software. We may use this to conduct research and analysis to help better understand and serve our Clients and End Users.

As an End-User we collect and process your Personal Data on behalf of a Client. In these circumstances, Unifi.id is acting as a Data Processor and our Client remains the Data Controller.

Business Transfer

If we are involved in a reorganisation, merger, acquisition or sale of our assets, Personally Identifiable information may be transferred as part of that event. We will notify you of any such event and outline your choices.

Review of this Policy

This Policy is regularly reviewed and you will be notified if there are any changes made to this policy. Last reviewed 2024-07-01.

Contact

Should you have any questions, or issues relating to this Unifi.id Privacy Policy, please send an email to info@unifi.id.