Privacy Policy
Say goodbye to outdated,
insecure authentication methods
BACKGROUND:
Authentiq8 Me Limited understands that your privacy is important to you and that you care about how your personal data is used and shared online. We respect and value the privacy of everyone who visits this website www.authentiq8.me (“Our Site”) and uses the Authentiq8 Me services. We will only collect and use personal data in ways that are described here in order to provide the Services and in a manner that is consistent with our obligations and your rights under the law. Please read this Privacy Policy carefully and ensure that you understand it. Your acceptance of our Privacy Policy is deemed to occur upon your first use of our Site and Services. If you do not accept and agree with this Privacy Policy, you must stop using our Site immediately.
- Definitions and Interpretation
In this Policy the following terms shall have the following meanings:
Cookie, means a small file placed on your computer or device by Our Site when you visit
certain parts of Our Site and/or when you use certain features of Our Site.
Data Protection Regulations, means the Data Protection and Privacy Electronic
Communications (EU Exit) Regulations 2019, which incorporates the EU Regulation
2016/679 General Data Protection Regulation into (“UK GDPR”).
Personal data, means any and all data that relates to an identifiable person who can be
directly or indirectly identified from that data, as defined in the Data Protection and
Privacy Electronic Communications (EU Exit) Regulations 2019, which incorporates the
EU Regulation 2016/679 General Data Protection Regulation into UK law (“UK GDPR”).
We/Us/Our, means Authentiq8 Me Limited, a limited company registered in England
under company number 16486522, whose registered office is at 167-169 Great Portland
Street, London, W1W 5PF.
EU, means the European Union.
UK, means the United Kingdom. - Information About Us
2.1 Our Site is owned and operated by us.
2.2 Our Data Protection Officer can be contacted by email at info@authentiq8.me, by
telephone on +44 (0)207 048 0470, or by post at Authentiq8 Me Limited, 167-169 Great
Portland Street, London, W1W 5PF. - What Does This Policy Cover?
This Privacy Policy applies only to your use of our site and services. Our Site may contain
links to other websites. Please note that we have no control over how your data is
collected, stored, or used by other websites and we advise you to check the privacy
policies of any such websites before providing any data to them. - Your Rights
4.1 As a data subject, you have the following rights under the Data Protection
Regulations, which this Policy and our use of personal data have been designed to
uphold:
4.1.1 The right to be informed about our collection and use of personal data;
4.1.2 The right of access to the personal data we hold about you (see section 13);
4.1.3 The right to rectification if any personal data we hold about you is inaccurate or
incomplete (please contact us using the details in section 14);
4.1.4 The right to be forgotten – i.e. the right to ask us to delete any personal data we
hold about you (we only hold your personal data for a limited time, as explained
in section 6 but if you would like us to delete it sooner, please contact us using the
details in section 14);
4.1.5 The right to restrict (i.e. prevent) the processing of your personal data;
4.1.6 The right to data portability (obtaining a copy of your personal data to re-use with
another service or organisation);
4.1.7 The right to object to us using your personal data for particular purposes; and
4.1.8 Rights with respect to automated decision making and profiling.
4.2 If you have any cause for complaint about our use of your personal data, please
contact us using the details provided in section 14 and we will do our best to solve the
problem for you. If we are unable to help, you also have the right to lodge a complaint
with the UK’s supervisory authority, the Information Commissioner’s Office.
4.3 For further information about your rights, please contact the
Information Commissioner’s Office or your local Citizens Advice Bureau. - What Data Do We Collect?
Depending upon your use of our Site and/or our services, we may collect some or all of the
following personal and non-personal data
5.1 Full name
5.2 Contact information such as email addresses and telephone numbers
5.3 IP address
5.4 Cookies and tracker information from your browser and/or device
5.5 Web browser type and version
5.6 Operating system
5.7 List of URLs including referring site, your activity on our Site, and exit site
5.8 PIN, for secure user authentication within the App
5.9 Location used with User consent to enhance service personalisation, fraud prevention and security
5.10 Where you contact us by phone, email or post a record of that contact; - How Do We Use Your Data?
6.1. All personal data is processed and stored securely, for no longer than is necessary in
light of the reason(s) for which it was first collected. We will comply with our
obligations and safeguard your rights under the Data Protection Regulations at all
times. For more details on security see section 8 below.
6.2. Our use of your personal data will always have a lawful basis, either because it is
necessary for our performance of a contract with you, because you have consented
to our use of your personal data, or because it is in our legitimate interests.
Specifically, we may use your data for the following purposes:
6.2.1 replying to emails from you;
6.2.2 supplying you with emails that you have opted into (you may unsubscribe or
opt-out at any time by emailing us on [enter appropriate email address]
6.2.3 market research;
6.2.4 analysing your use of our Site and gathering feedback to enable us to
continually improve our Site and your user experience;
6.2.5 to manage your marketing preferences;
6.2.6 to manage your data processing preferences;
6.2.7 to compile anonymised data for analytical purposes.
6.2.8 to provide authentication services within the Authentiq8.me app
6.3. With your permission and/or where permitted by law, we may also use your data for
marketing purposes which may include contacting you by email, telephone, text
message, with information, news and offers on our products and/or services. We will
not, however, send you any unsolicited marketing or spam and will take all reasonable
steps to ensure that we fully protect your rights and comply with our obligations under
the Data Protection Regulations (as may be updated from time to time).
6.4 You have the right to withdraw your consent to us using your personal data at any time,
and to request that we delete it.
6.5 We do not keep your personal data for any longer than is necessary in light of the
reason(s) for which it was first collected. Data will therefore be retained for the
following periods (or its retention will be determined on the following bases):
6.5.1 As a general rule, unless we have been requested to delete your information,
Customer personal data will be kept for the duration of the provision of the services
and for a period of up to six years after the services have been terminated by you or
us. This is based upon the Limitation Act 1980 for the period in which someone can
bring a breach of contract claim;
6.5.2 Where we have not provided you with any products or services (i.e. there has
been no contract between you and us), then we will keep your data for a period of
12 months.
6.5.3 We may keep data longer than stated in 6.5.1 and 6.5.2 where we are required to
do so by law or a contractual obligation, however where we can, we will
anonymise such data so that it no longer identifies a living individual. - Legitimate Interest
7.1 Where we use legitimate interest for the basis of our processing of your personal
Data we shall ensure that we can demonstrate compelling legitimate grounds for
the processing, which override the interests, rights and freedoms of the individual.
7.2 You have the right to object to our use of your personal data where we use legitimate
interest as the basis of processing. You can do this by contacting us on the details in
section 14.
7.3 Our legitimate interests include:
1. Authentication: To verify user and client identities securely.
2. Personalisation: To tailor services and improve the user experience.
3. Communication: For notifications, support, and updates regarding the
service.
4. Compliance: To meet legal, regional, and security requirements.
5.Fraud Prevention: Location and contact details help identify suspicious
activities.
In general:
a) the maintenance of our IT/Data Security systems and processes;
b) putting in place fraud prevention mechanisms;
c) keeping our records up to date;
d) working out which of our products and services may interest you and telling
you about them (i.e. direct marketing);
e) developing products and services;
f) being efficient about how we fulfil our legal duties;
g) maintaining a marketing suppression list; and
h) complying with laws/regulations that apply to us. - How and Where Do We Store Your Data?
8.1. All collected data is securely stored in a managed SQL database environment with
restricted access.
8.2. The PIN is encrypted before being stored to protect against unauthorised access,
ensuring compliance with best practices for sensitive data storage.
8.3. We only keep your personal data for as long as we need to in order to use it as
described above in section 7, and/or for as long as we have your permission to keep
it, or for as long as we are legally required to do so. - Do We Share Your Data?
9.1 We may share your data with other companies for carrying out/putting in place the
services or solution that you require.
9.2 We may compile statistics about the use of our Site including data on traffic, usage
patterns, user numbers, sales, and other information. All such data will be
anonymised and will not include any personally identifying data, or any anonymised
data that can be combined with other data and used to identify you. We may from
time to time share such data with third parties such as prospective investors,
affiliates, partners, and advertisers.
Data will only be shared and used within the bounds of the law.
9.3 In certain circumstances, we may be legally required to share certain data held by
us, which may include your personal data, for example, where we are involved in
legal proceedings, where we are complying with legal requirements, a court order,
or a governmental authority.
9.4 We may share your data with regulators and disputes resolution bodies such as:• The Information Commissioner Office;• Advertising Standards Authority; and• Local Trading Standards.
9.5 We use the services of Facebook Ireland Limited (Facebook) to carry out certain
marketing activities on the Facebook Platform. Specifically, from time to time we
use Facebook’s Audience Insights to help us to create targeted audiences for our
advertising campaigns on Facebook. This involves sharing some of our customer
personal data with Facebook to allow it to create for us information on the types of
audiences (i.e. potential customers) on Facebook platform that would be best
suited to see our adverts. In this respect Facebook acts as our joint processor.
For such processing of your personal data we and Facebook also act as a ‘Joint
Controller’ this means that both Facebook and us can determine the reasons for
processing of your personal data. Facebook has its own privacy policy on how
Facebook processes personal data, including the legal basis which Facebook relies
on and the ways to exercise Data Subject rights against Facebook. To review
Facebook’s privacy policy, you can visit: https://www.facebook.com/about/privacy.
You can also obtain full contact details of Facebook or its representative and the
details of its Data Protection Officer from this policy.
In order to ensure the rights of data subjects (i.e. you) we have entered into a
Controller Addendum with Facebook that sets outs each parties’ respective
responsibilities in terms of this processing and our responsibility to inform you of the
details in this section 9.5.
Any data subject requests with regard to the Personal Data stored by Facebook
Ireland after the Joint Processing described in paragraph one of this section 9.5, is
the responsibility of Facebook. - How Can You Control Your Data?
10.1 In addition to your rights under the Data Protection Regulations, set out in
section 4, when you submit personal data via our Site, you may be given options to
restrict our use of your data. In particular, we aim to give you control on our use of
your data for direct marketing purposes (including the ability to opt-out of receiving
emails from us which you may do by unsubscribing using the links provided in our
emails and at the point of providing your details). - How Can You Access Your Data?
You have the right to ask for a copy of any of your personal data held by us (where such
data is held). Under the Data Protection Regulations, no fee is payable and we will provide
any and all information in response to your request free of charge. Please contact us for
more details at info@authentiq8.me or using the contact details below in section 14. - Contacting Us
If you would like to contact us, please contact us at info@authentiq8.me, by telephone on
+44(0)207 048 0470 or by post at 167-169 Great Portland Street, London, W1W 5PF.
Please ensure that your query is clear, particularly if it is a request for information about
the data we hold about you (as under section 13 above). - Changes to Our Privacy Policy
We may change this Privacy Policy from time to time (for example, if the law changes). Any
changes will be immediately posted on our Site and you will be deemed to have accepted
the terms of the Privacy Policy on your first use of our Site following the alterations. We
recommend that you check this page regularly to keep up-to-date.