Privacy Notice and Cookies Policy
We understand the importance of protecting children's privacy. Our website is not designed for, or intentionally targeted at, children. It is not our policy to intentionally collect or store information about children.
What information we collect
We may collect and process personal data about you because you give it to us, because other people give that data to us (for example, third party service providers that we use to help operate our business) or because it is publicly available.
The personal data that we collect or obtain may include:
business details (for example, business name and registration number);
your IP address;
your browser type and language;
your access times;
details of how you use our products and services;
details of how you like to interact with us and other similar information.
1. You provide Information to us by filling in forms on our website, it may include information provided at the time of registering, subscribing to any of our services, posting material, downloading files, watching videos, making payments, and booking services with experts via our website. Managing your account or requesting further services.
2. Details of transactions you carry out via our website.
3. Details of bookings and projects you carry out via our website.
4. We may ask you for information when you report an issue or concern or we have or receive a complaint or query about you (whether or not a formal dispute is raised).
5. We may keep a record of correspondence between you and us.
We may collect and process personal data about you from other sources as follows:
2. We sometimes supplement the information that you provide with information received from third parties. For instance, PayPal and our independent experts.
3. Where we are provided with personal data about you by any third party such as a service provider, we take steps to ensure that that third party has complied with the privacy laws and regulations relevant to that information; this may include, for example, that the third party has provided you with notice of the collection (and other matters) and has obtained any necessary consent (if applicable) for us to process that information as described in this privacy statement. We may use your personal data to gather feedback regarding your experience you may have with our platform.
Use of Personal Data
We will use your personal data to fulfil your requests and we will ask only for data that is adequate, relevant and not excessive for those purposes. Where we send you information for any purpose, it may be sent by e-mail or post. When we ask you for personal data it may include the following purposes:
1. We may contact you occasionally to inform you of new products and services we will be providing;
2. We may send you regular updates on issues we think will be of interest to you;
3. We may send you requested information on our products and services;
4. We may use your personal data for marketing purposes and market research;
5. We may use your personal data internally to provide you with the services offered by us via this website, to administer this website and to help us improve our services.
6. We may use your personal data for managing and making information available to third party service providers (e.g. providers of due diligence services or in order to support our information technology) and our experts.
7. We may use your personal data to notify you about changes to our services, terms and conditions, policies or website.
8. We may use your personal data to manage risk, or to investigate, detect, prevent, and/or remediate fraud, suspected fraud or other potentially illegal or prohibited activities.
9. We may use your personal data pursuant to applicable legal or regulatory requirements or to respond to requests and communications from competent authorities (including courts and tribunals).
10. We may use your personal data for the services we receive from our professional advisors, such as lawyers, accountants and consultants.
11. We may use your personal data for protecting our rights, those of our clients, or protecting those of our experts.
None of the information that we request from you is mandatory. However, where such information is not provided to us, we may be unable to identify, protect, or return your money.
The legal grounds we use for processing personal information
We are not allowed to process personal information if we do not have a valid legal ground. Therefore, we will only process your personal information for the purposes outlined above because:
of our legitimate interests in the performance of activities that form part of the operation of our business;
of our legitimate interests in the effective and lawful operation of our business so long as such interests are not outweighed by your interests or fundamental rights and freedoms;
of the legal and regulatory obligations that we are subject to, such as keeping records for tax purposes or providing information to a public body or law enforcement agency; or
the information is required in order to carry out the activities that form part of the operation of our business (e.g. the processing is necessary to perform our contractual obligations towards you).
Examples of the ‘legitimate interests’ referred to above are:
1. to benefit from cost-effective services (e.g. we may opt to use certain IT platforms offered by suppliers);
2. to verify the accuracy of information provided by a third party;
3. to prevent fraud or criminal activity;
4. to safeguard the security of our IT systems, architecture and networks; and
5. to exercise our rights under Articles 16 and 17 of the Charter of Fundamental Rights, including our freedom to conduct a busines.
To the extent that we process any sensitive personal data relating to you for any of the purposes outlined above, we will do so because either: (i) we are required by law to process that data in order to ensure we meet our ‘know your client’ and ‘anti money laundering’ obligations (or other legal obligations imposed on us); (ii) the processing is necessary to carry out our obligations under employment, social security or social protection law; (iii) the processing is necessary for the establishment, exercise or defence of legal claims; or (iv) you have made the data manifestly public.
We may, from time to time, e-mail or post you information to make you aware of our other similar products and services which may be of interest to you. If you do not wish to receive emails or post from us for these purposes, or if you want to be removed from our electronic mailing list you can either select “unsubscribe” from any of the marketing emails that we send or alternatively contact us.
Anonymous data collected through this website
In addition to the information we collect as described above, we use technology to collect anonymous information about the use of our website. For example, our web server automatically logs which pages of our website our visitors view, their IP addresses and which web browsers our visitors use. This technology does not identify you personally, it simply enables us to compile statistics about our visitors and their use of our website.
Our website contains hyperlinks to other pages on our website. We may use technology to track how often these links are used and which pages on our website our visitors choose to view. Again this technology does not identify you personally - it simply enables us to compile statistics about the use of these hyperlinks.
Links to other websites
In order to collect the anonymous data described in the preceding paragraph, we may use temporary "cookies" and similar technologies (e.g. web beacons, pixels, ad tags and device identifiers) to recognise you and/or your device(s) that remain in the cookies file of your browser until the browser is closed. For example, we use Google Analytics to help us take and analyse visitor information such as browser usage and new visitor numbers. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited. Please note that the names of cookies, pixels and other technologies may change over time.
Cookies by themselves cannot be used to discover the identity of the user. A cookie is a small piece of information which is sent to your browser and stored on your computer's hard drive. Cookies do not damage your computer. You can set your browser to notify you when you receive a cookie. This enables you to decide if you want to accept it or not. We also use your IP address to help diagnose problems with our server and to administer our website. An IP address is a numeric code that identifies your computer on a network, or in this case, the internet. Your IP address is also used to gather broad demographic information. Cookies are useful because they allow a website to recognise a user’s device, preferences and generally help to improve your online experience. You can find more information about cookies at: www.allaboutcookies.org and www.youronlinechoices.eu.
By using our website, you agree that we can place cookies on your device. If you want to restrict or block any cookies, you should do this through the web browser settings for each browser you use and on each device you use to access the internet. Please be aware that some areas of our website may not function if your web browser does not accept cookies. However, you can allow cookies from specific websites by making them "trusted websites" in your web browser.
Our website may also contain plugins and other features that integrate third party social media platforms into our website so that we can improve our offer and make it more interesting for you as a user. You will be able to activate them manually. If you do so, the third party companies who operate these platforms may be able to identify you, they may be able to determine how you use this website and they may link and store this information with your social media profile. Please consult the data protection policies of these social media platforms to understand what they will be doing with your personal data. If you activate these plugins and other features, you will be doing so at your own risk as we do not have any influence on the data collected and data processing operation, nor are we aware of the full extent of data collection, the purposes and the storage periods.
Disclosure of your Personal Data
In connection with one or more of the purposes outlined in the “Use of personal data” section above, we may disclose details about you to: our affiliates; third parties that provide services to us and/or our affiliates, such as our lawyers; competent authorities (including courts and supervisory or other authorities); your advisers; credit reference agencies or other organisations that help us make decisions and reduce the incidence of fraud; and other third parties that reasonably require access to personal data relating to you for one or more of the purposes outlined in the “Use of personal data” section above.
Where you have chosen to connect your What if HR account to your Facebook account we may share, disclose, and transfer personal data to Facebook, as applicable. This permission will be requested when you connect your account. If you have given this permission you may then disable this function at any time by changing your Facebook or What if HR account settings (as applicable).
Where appropriate, before disclosing personal data to a third party, we contractually require the third party to take adequate precautions to protect that data and to comply with applicable law.
Where you have consented, we may also share your personal data with other companies within our group of companies who may contact you about their products or services that may interest you.
Protection of your personal data
Everyone who is employed by What if HR must comply with the internal rules and processes in relation to the processing of personal data to protect them and ensure the confidentiality of such information.
Although we use appropriate security measures once we have received your personal data, the transmission of data over the internet (including by e-mail) is never completely secure. We endeavour to protect personal data, but we cannot guarantee the security of data transmitted to us or by us.
How long we keep your information for
We will hold your personal data on our systems for the longest of the following periods: (i) as long as is necessary for the relevant activity (which is typically 7 years); (ii) any retention period that is required by law or regulation; or (iii) the end of the period in which litigation or investigations might arise in respect of our activities.
You have various rights in relation to your personal data. In particular, you have a right to:
1. request a copy of personal data we hold about you;
2. ask that we update the personal data we hold about you, or correct such personal data that you think is incorrect or incomplete;
3. ask that we delete personal data that we hold about you, or restrict the way in which we use such personal data;
4. object to our processing of your personal data;
5. ask that we restrict our processing of your personal data; and
6. ask for the portability of personal data - receive the Personal Data you have provided to us in a structured, commonly used and machine-readable form and transmit it to another data controller.
To exercise any of your rights, or if you have any other questions about our use of your personal data, please contact us at email@example.com
Right to complain
If you are unhappy with the way we handled your personal information or any privacy query or request you have raised with us you also have a right to complain to a data protection authority in the place where you live or work, or in the place where you think an issue in relation to your data has arisen. A list of national data protection authorities can be found here.
We may modify or amend this privacy statement from time to time.
To let you know when we make changes to this privacy statement, we will amend the revision date at the end of this page. The new modified or amended privacy statement will apply from that revision date. Therefore, we encourage you to periodically review this statement to be informed about how we are protecting your information.
Last Updated: 7th December 2020