Effective date: February 2019
This Policy is deemed to form part of the Agreement and should be read in conjunction with the Terms and Conditions which can be found at the following link www.faretext.co.uk/terms.
The provisions included in these terms and conditions and associated documents, apply to the FareText Services and the Oello Services. For the purpose of the General Data Protection Regulations (“GDPR”), the company in charge of your information (as known as the Data Controller) is FareText Limited (“FareText”, ”us", "we", or "our") of 9 Main Road, Bilton, Hull, East Yorkshire, HU11 4AP (no. 08379209). Our registration number with the Information Commissioner’s Office UK (“ICO”) is ZA054854.
Account Data means the data associated with the activity of an account (for example, campaign history, number data or transaction history).
Cookies are small pieces of data stored on a User’s device.
Customer Data means any Personal Data that is submitted and uploaded to our Service by you in the capacity as the Data Controller
Data Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the Controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Data Processor (or Service Providers) means any person (other than an employee of the Data Controller) who processes the data on behalf of the Data Controller.
For the purpose of you uploading Customer Personal Data to the Service, we are the Data Processor.
Lawful Basis means the legal reason for processing Personal Data.
Personal Data means any information relating to Data Subject.
Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
Data Subject is any individual person who can be identified, directly or indirectly, via an identifier such as a name, an ID number, location data, or via factors specific to the person's physical, physiological, genetic, mental, economic, cultural or social identity.
User is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data.
2 Information Collection
We collect several different types of information for various purposes to provide and improve our Service to you.
Types of Data Collected
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). Personally identifiable information may include, but is not limited to:
- Email address
- First name and last name
- Telephone number
- Mobile number
- IP address
- Cookies and Usage Data
We may also collect information how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
As you are assigned a dedicated account to use our Service, we collect information regarding the account’s activity (“Account Data”). This Account Data may include information about your previous campaigns, number data and transactional history.
Tracking Cookies Data
Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyse our Service.
3 Use of Data
You have a choice on whether to submit your Personal Data to us:
You may choose to disclose your Personal Data by seeking further information via our websites, registering a new account via email or over the phone, signing up and accessing an online account, by entering into a contract or interacting with our customer services.
Provision of this personal information is entirely voluntary but by submitting it to us, you are you affirming your consent for such information to be processed only for the purposes for which you have submitted it to us.
Your Personal Data
FareText may access and use your personal data only for the purposes for which you have disclosed it to us: (a) to make contact with you in relation to an online, email, SMS or telephone enquiry (b) to provide services to you (c) to process a payment that you have made (d) to process an order that you have submitted (e) to carry out our obligations arising from any contracts entered into by you and us (f) to maintain the operations and security of the website and services we provide to you (g) to seek your views or comments on the services we provide.
Unless we have obtained your specific consent regarding marketing communication, we will not use your Personal Data for any other purpose.
Your Customers Data
Through our services and websites, we provide you with the facility to upload, store and process Personal Data of your customers (“Customer Data”), in that situation we act as a 'Data Processor' and yourself as a 'Data Controller'. You must ensure that you also comply with the GDPR as you are responsible for your own data as well as the Personal Data you possess, upload and process through the Service offered to you by FareText. We will not use any Personal Data obtained this way for any other purpose and will not release it to anyone other than yourself, in your capacity as the Data Controller, unless we are required to do so by law.
4 Retention of Data
We will hold your Personal Data on our systems for as long as is necessary for the relevant service, as long as is set out in any relevant contract you hold with us or for as long as an account is active. If you wish to terminate your account or request that we no longer use your Personal Data, please contact us.
In the case that you wish to cancel your registration as a FareText account User or in event your account remains inactive for 12-month period we will delete the User information but will retain the account data, such as the message history for a period of 24-months, whereupon the information will be permanently deleted from our Service.
We will only ever keep data as is necessary to comply with our legal obligations, resolve disputes and enforce our agreements, contractual or otherwise.
5 Transfer of Data
The Personal Data that we collect from you as a Data Controller is stored inside the European Economic Area ("EEA") on ISO27001 accredited hosting services.
As a Data Processor, all of the Customer Data uploaded to FareText by you is stored inside the European Economic Area on secure password encrypted servers.
If you are located outside the United Kingdom and choose to provide information to us, please note that we transfer the data, including Personal Data, to inside the EEA and process it there.
Should your Personal Data be processed by any of our GDPR-compliant Service Providers, in order to fulfil our services to you, that are based outside of the EEA – your data and the transfer is protected under the EU-US Privacy Shield framework.
6 Disclosure of Data
Under certain circumstances, FareText may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
FareText may disclose your Personal Data in the good faith belief that such action is necessary to:
- To comply with a legal obligation
- To protect and defend the rights or property of FareText Limited
- To prevent or investigate possible wrongdoing in connection with the Service
- To protect the personal safety of users of the Service or the public
- To protect against legal liability
7 Security of Data
The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. However once we receive your information, we make our best effort to ensure its security on our systems.
Where we have given (or where you have chosen) a password which enables you to access certain parts of our Service, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.
8 Your Rights
You have a choice about whether or not you wish to receive information from us. If you do not want to receive direct marketing communications from us about our exciting products and services, then you can select your preferences by ticking the relevant boxes situated on the form on which we collect your information or if you have an online account, you can update your personal data preferences directly within your account settings section. If you are unable to change your preferences or do not have access to your online account, please contact us to make the required changes.
We will not contact you for marketing purposes by post, email, phone or text message unless you have given your prior consent.
FareText aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
If you wish to be informed what Personal Data, we hold about you and if you want it to be removed from our systems, please contact us.
In certain circumstances, you have the right:
- To access and receive a copy of the Personal Data we hold about you
- To rectify any Personal Data held about you that is inaccurate
- Stop the processing of your personal data, whilst an objection from you is being resolved
- To request the deletion of Personal Data held about you (there may be reasons why we may be unable to do this)
You have the right to data portability for the information you provide to FareText. You can request to obtain a copy of your Personal Data in a commonly used electronic format so that you can manage and move it.
Please note that we may ask you to verify your identity before responding to such requests.
We are committed to working with you, if FareText does not address your request in a reasonable period of time, usually within 30 days or we fail to provide a valid reason why we are unable to deliver on your request, you have the right to contact the ICO to make a complaint. They can be contacted via their website www.ico.org.uk or alternatively by telephone 0303 1231113.
9 Service Providers
FareText does not and will not sell Personal Data about our customers.
We may employ third-party companies and individuals to facilitate our Service ("Service Providers"), to provide the Service on our behalf, to perform Service-related services or to assist us in analysing how our Service is used.
We may share your information with third-parties for marketing purposes but only on behalf of FareText and only if we have your consent to receive these marketing communications. These third-parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
We may use third-party Service Providers to monitor and analyse the use of our Service.
For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: www.google.com/intl/en/policies/privacy/.
We may provide paid products and/or services within the Service. In that case, we use third-party services for online payment and Direct Debit processing (e.g. payment processors).
These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information. The payment processors we work with are:
In addition to those detailed above, we may, from time to time utilise the following third parties;
Microsoft, Google, OVH, OVH UK, PayPal, One Signal, Mailchimp, Mailjet, ZoHo, Sage
We are also permitted to share some information with third parties who use such data for non-marketing purposes (including credit and risk assessment and management, identification and fraud prevention, debt collection and returning assets to you).
This would include the data you provide to us today, at any time in the past and in the future.
10 Links to Other Sites
In addition, if you linked to our website from a third-party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third-party site and recommend that you check the policy of that third-party site.
11 Children's Privacy
We are concerned to protect the privacy of children aged 16 or under. FareText services and websites are not directed at children and we do not knowingly collect personally identifiable information from anyone under this age.
If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we will take steps to remove that information from our servers and systems.
12 Sensitive Personal Data
GDPR also specifies a set of Personal Data categories which are deemed 'sensitive' and which require special consideration by Data Controllers. FareText's websites and available services, do not knowingly collect or process any sensitive Personal Data.
14 Contact Us
- By phone: 0114 294 59
- By mail: The Data Protection Officer, FareText Ltd, 9 Main Road, Bilton, Hull, East Yorkshire, HU11 4AP