(Effective May 2018 – Dec 9th 2019)
We’re committed to protecting and respecting your privacy and to complying with data protection legislation. This policy sets out how we do that, and how we support your rights concerning any personal data that we process or store.
Who are ‘we’?
CustomerSure Limited supplies customer satisfaction software to companies who want to deliver fantastic service. We’re based in Newcastle upon Tyne in the United Kingdom and our company registration number is 07120998.
What this policy covers
This policy covers the data that we process and store about:
- People who visit our website;
- Our customers (who access our software via our website) and any personal data they ask us to process for them.
Information we may collect and process about you
- Information that you provide by filling in forms on our site, www.customersure.com. For example, information provided at the time of registering to use our software via our site, (including any photographs of you).
- Your name, email address and source of contact when you sign up to request educational information or marketing communications.
- If you contact us, we may keep a record of that correspondence.
- Details of transactions you carry out through our site to set up or make payment for the products and services we provide (although we do not store full card details or other sensitive payment data).
- We may collect standard log information about your computer, including (where available) your IP address, operating system and browser type. This is statistical data about our users' browsing actions and patterns, and does not identify any individual.
- We may collect the pages you visit on our site before you opt to try or purchase our services. This data is held indefinitely in an aggregated and anonymised form.
We do not process or store any sensitive personal data of our customers, prospects, suppliers, partners or website visitors.
How we use your information
- To provide our products and services and to carry out our obligations arising from any contracts entered into between your organisation and us.
- To notify you about changes to our services or our terms and conditions.
- We may invite you to complete surveys that we use to check that we are delivering good service or for research, although you do not have to respond to them.
- To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.
Where we store your information
To provide our services and to make them resilient so that we can support recovery from system failure or natural disaster we store and process data both within and outside the European Economic Area (EEA). Some of our suppliers and partners are situated outside the EEA.
We comply with European Union data protection legislation concerning transfer of data between countries by making sure that your personal information will only be transferred on the basis of one of the following safeguards:
- the country to which we send the data is approved by the European Commission as providing an adequate level of protection for personal information;
- the data transfer is permitted under arrangements or legislation approved by the European Commission, such as the EU-US Privacy Shield;
- we have agreed standard contractual clauses approved by the European Commission in which the recipient commits to keeping the personal information safe.
How long we retain data
Our customers pass data to us for processing and our software has settings so that they can specify how long it is kept, according to their own data retention policies.
We have to keep information about our customers for a period of time specified by current legislation to comply with certain legal, tax and accounting rules.
We keep marketing data for 2 years after we have received consent to use it, and in order to provide service to our customers and partners we keep correspondence indefinitely.
We delete data sooner than this if we receive a valid request to do so.
We have a policy in place covering data protection, confidentiality and security and we review regularly the appropriateness of the measures we take to keep the data that we hold secure.
Whenever we transfer personal data we use secure connections and whenever we store personal data it is encrypted.
Our legal basis for processing data
To fulfil or enforce our contracts with our customers we:
- process and store contact information and information that our customers pass to us when we act as data processors;
- send our customers information about their use of our product and services where it is important or useful for them to receive it, such as feature updates or maintenance plans;
- process limited payment information and pass details to appropriate banks and payment processing providers.
Where we believe it is in our reasonable and legitimate business interests we use the personal data of our customers and business partners to:
- improve our products and provide good service;
- make contact from time to time to manage our business relationships with them;
- seek feedback so that we can improve their experience of dealing with us.
With the consent of recipients we:
- send educational information, marketing communications, offers and promotions; anyone who has given consent may withdraw it at any time and we make it easy for them to do this.
Sharing your information
To provide software that meets our customers’ needs we work with other service providers whose software constitutes some components of our system. They have access to personal data when they provide us with services such as technical infrastructure, email processing, and hosted software for product development, sales, marketing and analytics. In order to fulfil our own data protection obligations we impose strict conditions on how our service providers store, use and share data on our behalf.
We never sell data.
We may share information with other companies and organisations for the purposes of payment processing, fraud prevention and credit risk reduction. We do not store details of payment cards. Our current payment processing partners include Recurly, Stripe, PayPal, GoCardless and HSBC.
We may disclose your personal information to third parties in the event that we sell or buy any business or assets, in which case we may, if it is relevant, disclose your personal data to the prospective seller or buyer.
If CustomerSure Limited (or substantially all of its assets) is acquired by a third party the personal data held by the Company about its customers will be one of the transferred assets.
In exceptional circumstances, for example if we are required to by law or if it’s necessary to protect the rights, property or safety of our company or our customers or others, we may disclose personal data that we hold.
Your rights about your data
If we’re sending you educational information or marketing communications that you no longer want to receive, you can unsubscribe easily using the features and links we provide in each email we send, or by emailing us at firstname.lastname@example.org.
You may also:
- Ask us what data we hold about you and make sure it’s correct.
- Ask for a copy of your personal data or ask us to delete all your personal data.
If we do hold information about you we will:
- give you a description of it;
- tell you why we are holding it;
- tell you who it could be disclosed to;
- let you have a copy.
If you believe that any information we hold about you is incorrect or incomplete, please contact us at the below address. We will promptly correct any information found to be incorrect.
How to contact us
How to complain
If you’re unhappy with the way we have handled your personal information and we cannot resolve the matter with you directly, you may complain to the Information Commissioner's Office online at https://ico.org.uk/global/contact-us/ or write to them at Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.