This Policy is effective from 25th May 2018
- We collect your opinions which can be anonymous
- These opinions are only shared with the business you are feeding back on
- If you give your email address it is only given to the business you are feeding back on
- We enable you to share your email so the business may contact you to either thank you for your response, or endeavour to rectify an issue you may have experienced.
- If you have ticked a box to join a mailing list or similar and supplied your email, you have given the company you are feeding back on authority to send you communications in line with GDPR.
- That is it.
---------------------Now the legal--------------------
Who are we?
Critiquie is a unique feedback service designed to help customers communicate their opinions considerably easier than ever before with the businesses they have opinions on. We collect -on behalf of businesses- their customers opinions on all aspects of their business. Critiquie.com Limited, (“Critiquie”, “we” or “us”) is committed to preserving and respecting the privacy of all visitors to:
Our Website - www.Critiquie.com (“Our Site”)
Our hosted solutions – insight.critiquie.com and subdomains thereof
Our Mobile App (“App”), once downloaded onto your mobile device and
Any of our other services available via our site or app (our “Services”)
This policy, in addition to our General Terms of Service is applicable to the usage of the above site, app and services. Please read the following Policy to understand how we use and protect the personal information you provide us, that we collect from you and that we processed and use.
Our Data processor details
Critiquie is the Data Controller responsible for the safety of your personal information. We are registered as a Data Controller with the Information Commissioners Office (ICO), registration number ZA294177 refers.
Our registered address is: 457 Southchurch Road, Southend-on-Sea, Essex. SS1 2PH
1 Who's in control? 1.1 It is important that you understand who is responsible for keeping your data safe. We are the "processor" of all personal data collected and used for the purposes of providing opinions on a business. The business we collect the data on behalf of is the “controller” they too have an equal legal obligation to you to ensure they use your data ethically, securely and legally.
2 The data we collect from you is all voluntary data, that is to say none of it is mandatory:
2.1.1 your full name; (personal data) 2.1.2 your email address; (personal data) 2.1.3 your opinions on products, services, staff and environments (can be anonymous)
2.2 We collect information about how you use our service using cookies and similar technology. This includes your IP addresses, device identifiers and information about how long you have stayed on certain pages or (Behavioural Data). This helps us refine our services to you, and also ensure the data we collect is true, as oppose to artificially created.
3 What do we use your data for (legal rationale)? 3.1 Any personal data collected is shared only with the business you gave your opinions on. The personal data is collected so either the business may identify you from other customers who have given their feedback, or if you have volunteered your email address, for the business to be able to contact you.
4.1 Critiquie captures a copy of its services database to archive data, this is to ensure the integrity and reliability of the data is maintained.
5 How do we use your data for marketing and advertising purposes?
5.1 We don’t – it’s that simple.
6 Freedom of information
6.1 We are required under the Freedom of Information Act 2000 to provide certain information in response to Freedom of Information requests. You can make a request by emailing email@example.com and entitling the email FOI. We will use any personal data to respond to your request and will retain it for administrative purposes in line with the section headed How long do we keep your data for? below.
7 Who do we share your data with?
7.1 We only share the data we collect with the business you have given your opinion on.
8 What rights do you have?
8.1 You have a number of rights under data protection law. These rights and how you can exercise them are set out in this section. We will normally need to ask you for proof of your identity before we can respond to a request to exercise any of the rights in this section and we may need to ask you for more information, for example to help us to locate the personal data that your request relates to.
8.2 We will respond to any requests to exercise your rights as soon as we can and in any event within one month of receiving your request and any necessary proof of identity or further information. If your request is particularly difficult or complex, or if you have made a large volume of requests, we may take up to three months to respond. If this is the case we will let you know as soon as we can and explain why we need to take longer to respond.
8.3 A right to access your information
8.3.2 You also have a right to ask us to send you a copy of your Data and all other personal data that we hold about you (subject to some exceptions). A request to exercise this right is called a "subject access request" and must be made in writing to: firstname.lastname@example.org entitled Data Protection Officer
8.4 A right to object to us processing your information
8.4.2 If we have compelling legitimate grounds to carry on processing your personal data, we will be able to continue to do so. Otherwise, we will cease processing your personal data.
8.4.3 You can exercise this right by emailing email@example.com
8.5 A right to have inaccurate data corrected
8.5.1 You have a right to ask us to correct inaccurate data that we hold about you. If we are satisfied that the new data you have provided is accurate, we will correct your personal data as soon as possible. Please contact us at firstname.lastname@example.org to request this.
8.6 A right to have your data erased
8.6.2 If you would like to make a request to exercise this right. Please contact us at email@example.com to request this.
8.7 A right to have processing of your data restricted
8.7.1 You can ask us to restrict processing of your personal data in some circumstances, for example if you think the personal data is inaccurate and we need to verify its accuracy, or if we no longer need the data but you require us to keep it so that you can exercise your own legal rights. Please contact us at firstname.lastname@example.org to request this.
8.7.2 Restricting your personal data means that we only store your personal data and don't carry out any further processing on it unless you consent or we need to process the data to exercise a legal claim or to protect a third party or the public.
9 How can you contact us?
10 What if you have a complaint?
10.1 You have a right to complain to the Information Commissioner's Officer (ICO), which regulates data protection compliance in the UK, if you are unhappy with how we have processed your personal data.
10.2 You can find out how to do this by visiting www.ico.org.uk.
11 What if this policy changes?