PRIVACY POLICY

See ‘Who we share your personal data with’ for further information on the steps we will take to protect your personal data where we need to share it with others.

Marketing

We may use your personal data to send you updates (by email, text message, telephone or post) about our products and/or services, including exclusive offers, promotions or new products and/or services.

We have a legitimate interest in using your personal data for marketing purposes (see above ‘How and why we use your personal data’). This means we do not usually need your consent to send you marketing information. However, where consent is needed, we will ask for this separately and clearly.

You have the right to opt out of receiving marketing communications at any time by:·

- Contacting us at [email protected]

- Using the ‘unsubscribe’ link in emails; or

- Updating your marketing preferences on our website.

We may ask you to confirm or update your marketing preferences if you ask us to provide further products and/or services in the future, or if there are changes in the law, regulation, or the structure of our business.

We will always treat your personal data with the utmost respect and never sell or share it with other organisations for marketing purposes.

For more information on your right to object at any time to your personal data being used for marketing purposes, see ‘Your rights’ below.

Who we share your personal data with

We routinely share personal data with:·

- Third parties we use to help deliver our products and/or services to you, e.g. payment service providers.·         - Other third parties we use to help us run our business, e.g. marketing agencies, resource partners, or website hosts and website analytics providers.·

- Our banks and financial institutes.

We only allow those organisations and personnel to handle your personal data if we are satisfied they take appropriate measures to protect your personal data and only to the extent necessary for them to assist us in providing you the products and/or services.

We or the third parties mentioned above may occasionally also need to share personal data with:

- External auditors, e.g. in relation to the audit of our accounts, in which case the recipient of the information will be bound by confidentiality obligations.·

- Professional advisors (such as lawyers and other advisors), in which case the recipient of the information will be bound by confidentiality obligations.·

- Law enforcement agencies, courts, tribunals and regulatory bodies to comply with our legal and regulatory obligations.·

- Other parties in connection with a significant corporate transaction or restructuring, including a merger, acquisition, asset sale, initial public offering or in the event of our insolvency—usually, information will be anonymised but this

- May not always be possible, however, the recipient of the information will be bound by confidentiality obligations.

If you would like more information about who we share our data with and why, please contact us (see ‘How to contact us’ below).

How long your personal data will be kept

We will not keep your personal data for longer than we need it for the purpose for which it is used. For example, your financial information (such as bank accounts or credit/debit cards details) will only be retained for the duration necessary for us to properly charge you for our products and/or services rendered to you pursuant to the contract signed by you with us.

Different retention periods may apply for different types of personal data.

If you stop using your account, we will delete or anonymise your account data after eight years.

Also, following the end of the relevant retention period, we will delete or anonymise your personal data.

Transferring your personal data out of the UK

Countries outside the UK have differing data protection laws, some of which may provide lower levels of protection of privacy.

It is sometimes necessary for us to share your personal data with countries outside the UK. In those cases, we will comply with applicable English laws designed to ensure the privacy of your personal data.

For example, we may transfer your personal data to our cloud services providers located outside the UK or the EU/EEA (in the USA or elsewhere).

We will also ensure all protections required by applicable English laws are in place before transferring personal data to any organisation or body (or its subordinate bodies) governed by public international law or set up by, or on the basis of, an agreement between two or more countries (International organisations).

Please note, the European Commission has made adequacy decisions in relation to the UK, basically enabling an almost unlimited flow of personal information to and from the EU/EEA and the UK. Otherwise, we will only transfer your personal data to a third country where:

- There are appropriate safeguards in place, together with enforceable rights and effective legal remedies for you,

- The information is shared between companies that belong to the same group of undertakings and there are binding corporate rules in place, or

- A specific exception applies under relevant data protection law, or

- On the basis of an adequacy decision pursuant to Article 45(1) of the UK GDPR, or

- On the basis of a legally approved standard data protection clause issued further to Article 46(2) of the UK GDPR.

In the event we cannot or choose not to continue to rely on either of those mechanisms at any time we will not transfer your personal data outside the UK (other than to the EU/EEA) unless we can do so on the basis of an alternative mechanism or exception provided by applicable data protection law.

Any changes to the destinations to which we send personal data or in the transfer mechanisms we use to transfer personal data internationally will be notified to you in accordance with the section on ‘Change to this privacy policy’ below.

Cookies (and other tracking technologies)

A cookie is a text file that is placed on your hard disk by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you and can only be read by a web server in the domain that issued the cookie to you. One of the primary purposes of cookies is to provide a convenience feature to save you time. The purpose of a cookie is to tell the Web server that you have returned to a specific page.

For example, if you register with us, a cookie helps Clinic Convert to recall your specific information on subsequent visits. This simplifies the process of recording your personal information, such as billing addresses, shipping addresses, and so on. When you return to the same Clinic Convert website, the information you previously provided can be retrieved, so you can easily use the features that you customised.

A web beacon is a small graphic image that allows the party that set the web beacon to monitor and collect certain information about the viewer of the web page, web-based document or e-mail message, such as the type of browser requesting the web beacon, the IP address of the computer that the web beacon is sent to and the time the web beacon was viewed.

Web beacons can be very small and invisible to the user, but, in general, any electronic image viewed as part of a web page or e-mail, including HTML based content, can act as a web beacon. We may use web beacons to count visitors to the web pages on the website or to monitor how our users navigate the website, and we may include web beacons in e-mail messages in order to count how many messages sent were actually opened, acted upon, or forwarded.

Third-party vendors also may use cookies on our website. For instance, we may contract with third parties who will use cookies on our website to track and analyse anonymous usage and volume statistical information from our visitors and members. Such information is shared externally only on an anonymous, aggregated basis. These third parties use persistent cookies to help us to improve the visitor experience, to manage our site content, and to track visitor behaviour. We may also contract with a third party to send email to our registered users.

To help measure and improve the effectiveness of our email communications, the third-party sets cookies. All data collected by this third party on behalf of Clinic Convert is used solely by or on behalf of Clinic Convert and is shared externally only on an anonymous, aggregated basis. From time to time, we may allow third parties to post advertisements on our website, and those third-party advertisements may include a cookie or web beacon served by the third party. This Privacy Policy does not cover the use of information collected from you by third-party ad servers. We do not control cookies in such third-party ads, and you should check the privacy policies of those advertisers and/or ad services to learn about their use of cookies and other technology before linking to an ad.

Your rights

You generally have the following rights, which you can usually exercise free of charge: