Privacy and Cookies Policy
This privacy and cookies policy notice is for this website [www.businessoptix.com] served by BusinessOptix Group Inc and its affiliates which governs the privacy of those who use it.
This policy reflects solely to this website and our BusinessOptix Academy and there are different policies that apply to our customers and other jurisdictions.
The purpose of this website policy is to explain to you how we control, process, handle and protect your personal information while browsing or using this website, including your rights under current laws and regulations.
We take the protection of all personal data that we work with seriously and treat all information with the same care as if it were our own.
If you do not agree to the following policy, you may wish to cease viewing or using this website.
Policy key definitions:
- “I”, “our”, “us”, or “we” refer to BusinessOptix Group, Inc., and its affiliates.
- “you”, “the user” refer to the person(s) using this website.
- DPA means the United Kingdom’s Data Protection Act 2018.
- PECR means the United Kingdom’s Privacy & Electronic Communications (EC Directive) Regulations 2003.
- ICO means United Kingdom’s Information Commissioner’s Office.
- Cookies mean small files stored on a user’s computer or device.
Processing of your personal data
Under DPA, we control and/or process any personal information about you electronically using the following lawful basis.
We are registered with ICO, Z3503835, (details can be found on the ICO register).
Lawful basis: Consent
Data retention period: Under this policy we will continue to process your information under this basis until you withdraw consent, or it is determined your consent no longer exists.
Sharing your information with third parties: Only to the extent necessary to operate our website with our service providers, or where required by law or to enforce our legal rights.
Transfers of your information outside the European Economic Area: We transfer your information outside of the European Economic Area to our EMS provider (HubSpot) in the United States. We ensure appropriate safeguards are in place with HubSpot who have self-certified themselves as compliant with the EU-U.S. Privacy Shield.
If, as determined by us, the lawful basis upon which we process your personal information changes, we will notify you about the change and any new lawful basis to be used if required. We shall stop processing your personal information if the lawful basis used is no longer relevant.
Your individual rights
Under DPA your rights are as follows.
- the right to be informed;
- the right of access;
- the right to rectification;
- the right to erasure;
- the right to restrict processing;
- the right to data portability;
- the right to object; and
- the right not to be subject to automated decision-making including profiling.
If you wish to contact us regarding personal data protection or personal data privacy please in the first instance contact us at, firstname.lastname@example.org, or call us at either +1 816 683-8282 (US) or +44 (0)20 7084 7480 (UK), where we will assist you with your enquiry or request.
You also have the right to complain to the ICO [www.ico.org.uk] if you feel there is a problem with the way we are handling your data.
We handle subject access requests in accordance with DPA.
Some cookies are required to use the full functionality of this website.
We use two distinct types of cookies:
- Google Analytics: you can opt out of this by installing the browser add-on which is available here: http://tools.google.com/dlpage/gaoptout
- Cookies provided by our EMS (HubSpot): you can opt into or out of these on first use; thereafter you can manage and delete them using your web browser as described above.
Data security and protection
We ensure the security of any personal information we hold by using secure data storage technologies and precise procedures in how we store, access and manage that information. Our methods meet our commitments under the DPA, as well as our ISO27001 conformity requirements.ISO 27001:2013 Certified
BusinessOptix provides our customers with a robust information security management system across all our technologies. To maintain conformity with ISO 27001 we have developed and maintained policies and procedures that enable us to maintain and continually improve our information security management.
Direct marketing messages & subscription
By signing up to the BusinessOptix Academy, you grant us your consent to use your information for marketing purposes, including the sending of promotional emails.
Under DPA anyone subscribing to our marketing mailing list, subscriptions, newsletters we consider to having granted us consent to store and process their information. Email marketing messages are sent through an Email Marketing Service. An EMS is a third party service provider of software / applications that allows marketers to send out email marketing campaigns to a list of users.
Email marketing messages that we send out may contain beacons, tracked clickable links or similar server technologies to understand subscriber activity within an email marketing message. Where used, such marketing messages may record a range of data such as: times, dates, IP addresses, opens, clicks, forwards, geographic and demographic data.
Any telephone, voice, or email marketing messages we send are in accordance with the DPA and the PECR.
For all direct marketing we provide a straightforward method for you to withdraw your consent (unsubscribe) or to manage your preferences. Typically instructions to unsubscribe or manage preferences will be on the footer of any marketing correspondence.
Our EMS provider is HubSpot. For direct marketing purposes we may hold the following information about you within our EMS system:
- Telephone number
- Email address
- Company Name
- IP address
- Subscription time & date
You may request a copy of or the deletion of your personal data use by submitting a subject access request. Please be aware that we only correspond with individuals whose identity we have been able to verify to purposes avoiding fraud / misrepresentation.
We share this information only with our third-party providers for the purposes of direct marketing. We do not transfer, sell, license, or release your information to any other organization, individual or service provider.
Last Updated: 9th May 2023