Key things you need to know:
- We use your personal information to provide the services to you and manage your registration, complaints and queries.
- We never sell your personal information to third parties.
- We store your personal information in Europe.
- Remember that when you post to a Community, other people will be able to see it.
- What personal data does Crowdicity collect?
- Personal Information means information that identifies you personally such as your name, photo or contact details or data that can indirectly identify you or be linked with such information in order to identify you.
- Your personal information is collected:
- When you register for a Crowdicity account. We collect name, user name, email, password, city, country, time zone, language, bio information, information on skills/expertise, social media account profile URLs (Twitter, Facebook, LinkedIn, Instagram, Google+), profile image, interests, etc.
- When you register for a specific Community. Specific information may be captured by a Community Owner.
- When you submit a form to us. For example to see a web demonstration or a general enquiry.
- From your activity. For example traffic data which shows usage of the Site and Communities, ideas you are contributing, the categories you are posting ideas in, users you follow, comments you make and ideas you vote for or list as your favourite).
- From time to time through other forms we may ask you to fill in to provide additional information, for example when you sign up to a specific Community.
- What does Crowdicity use your personal information for?
- We use the personal information in the following ways:
- To maintain your account and registration which we need to do to provide the services to you. We can’t provide the services without this.
- To investigate and address queries, questions and complaints and respond to any feedback. This is necessary and for our legitimate interests in providing a responsive service to our customers.
- To update you on any changes to our platform and services this is necessary and for our legitimate interest to ensure you are kept informed about any changes to the services we provide you.
- To understand how the Site and Communities are used and for the general research purposes. We use this data in an aggregate and anonymised form.
- If you are a paying customer, for credit referencing purposes to check your details and identity with fraud protection agencies to prevent fraud, to help us make decisions about credit and credit related services, to trace debtors, recover debts and manage your accounts. This is in our legitimate interest to protect our business from fraudulent activity.
- Where we rely on legitimate interest as a ground for processing your personal information, we carry out a ‘balancing test’ to ensure that our processing is necessary and that your fundamental rights of privacy are not outweighed by our legitimate interests, before we go ahead with such processing. We keep a record of these balancing tests. You have a right to the information contained in these balancing tests on request, and can find out more by contacting us using the details below.
- How long does Crowdicity retain my personal information for?
- We only retain your information for as long as is necessary for us to use your information as described above, where it is in our legitimate interest, or to comply with our legal obligations. However, we retain some of your information after you cease to use our services, for instance if this is necessary to meet our legal obligations, such as retaining the information for tax and accounting purposes.
When determining the relevant retention periods, we will take into account factors including:
- our contractual obligations and rights in relation to the information involved;
- if you are a member of a Community;
- legal obligation(s) under applicable law to retain data for a certain period of time;
- our legitimate interest where we have carried out a balancing test;
- statute of limitations under applicable law(s);
- (potential) disputes;
- if you have made a request to have your information deleted; and
- guidelines issued by relevant data protection authorities.
Otherwise, we securely erase your information once this is no longer needed.
- Who can see and access my personal information?
- If you contribute to a Public Community, this means that your profile and what you post there (including who you choose to follow and what you have voted for) can be seen by other users including people just visiting that Community.
- If you are contributing to a Private Community, your profile and what you post there (including who you choose to follow and what you have voted for) can only be seen by the Community Owner and other users who have been granted access to participate in that Private Community.
- We pass your personal information to: (i) suppliers, such as technology services firms, in order to enable us to provide the services to you (these include our hosting provider, data analytics company, customer database provider and social media integrator); and (ii) law enforcement agencies, regulators, courts or other public authorities if we have to, or are authorised to by law.
- Does Crowdicity transfer my personal information outside the EEA?
- We store data on servers located in the UK and Ireland, which are both within the EEA. Some of our Community Owners may be based outside the EEA however and access data from their
territories. Occasionally we may also work with a service provider outside the EEA to provide
services to us. In these cases we have security measures in place and we provide EU Model
Clauses as an adequate safeguard for any transfer of EU data outside the EEA, in line with data
protection law. To find out more about how we safeguard your information (including such
safeguards) in relation to transfers outside the EEA, please contact us at
- What are my rights?
- By law, you have a number of rights when it comes to your personal data. Further information and advice about your rights can be obtained from the data protection regulator in your country. You can exercise any of these rights by writing us on the email address below in the ‘Contact us’ section:
- The right to be informed. You have the right to be provided with clear, transparent and easily understandable information about how we use your information and your rights. This is why we’re providing you with the information in this Policy.
- The right to rectification. You are entitled to have your information corrected if it is inaccurate or incomplete. You can request that we rectify any errors in personal information that we hold by writing us on the email address below.
- The right to erasure. This is also known as ‘the right to be forgotten’ and, in simple terms, enables you to request the deletion or removal of your information where there is no compelling reason for us to keep using it. This is not a general right to erasure; there are exceptions.
- The right to restrict processing. You have rights to ‘block’ or suppress further use of your information. When processing is restricted, we can still store your information, but may not use it further. We keep lists of people who have asked for further use of their information to be ‘blocked’ to make sure the restriction is respected in future.
- The right to data portability. You have rights to obtain and reuse your personal data for your own purposes across different services. For example, if you decide to switch to a new provider, this enables you to move, copy or transfer your information easily between our IT systems and theirs safely and securely, without affecting its usability. This is not a general right however and there are exceptions.
- The right to object to processing. You have the right to object to certain types of processing, including any profiling.
- The right to lodge a complaint. You have the right to lodge a complaint about the way we handle or process your personal data with your national data protection regulator.
- The right to withdraw consent. If you have given your consent to anything we do with your personal data (i.e we rely on consent as a legal basis for processing your personal information), you have the right to withdraw your consent at any time (although if you do so, it does not mean that anything we have done with your personal data with your consent up to that point is unlawful). You can withdraw your consent to the processing of your personal information at any time by terminating your account.
- The right to lodge a complaint. You have the right to lodge a complaint about the way we handle or process your personal information with your national data protection regulator.
- We usually act on requests and provide information free of charge, but may charge a reasonable fee to cover our administrative costs of providing the information for baseless or excessive/repeated requests, or further copies of the same information. Alternatively, we may be entitled to refuse to act on the request.
- Please consider your request responsibly before submitting it. We will respond as soon as we can. Generally, this will be within one month from when we receive your request but, if the request is going to take longer to deal with, we’ll come back to you and let you know.
- We may collect information about your computer, including where available your IP address, operating system and browser type. This is statistical data about our users' browsing actions and patterns and does not identify any individual. When you use a mobile or desktop device to connect to the Site or Communities, the details of the device, for example, model number or operating software version, may be sent to us.
- We use cookie files which are stored on the hard drive of your computer. We use the following types of cookies:
- Login cookies. These help to distinguish you from other users and enable us to provide you with a good experience. The information they use is your email address and an alphanumeric session key to help us recognise you when you return to the Site or relevant Community. It will typically last for two weeks from the time you log in if you remain logged in, or it will be deleted immediately when you log out.
- Statistic tracking cookie: This is used to recognise that a user has previously visited a relevant Community, so that we may distinguish them from a user visiting for the first time. No identifiable personal information is contained within this cookie. It will typically last for 12 months.
- Most internet browsers are initially set up to automatically accept Cookies. You can change the settings to block Cookies or to alert you when Cookies are being sent to your device. If you use different devices to view and access the Site (e.g. your computer, smartphone, tablet etc) you will need to ensure that each browser on each device is adjusted to suit your Cookie preferences.Click here for more information on Cookies and how to manage them.
- How can I be sure my data is secure?
We take appropriate technical and operational measures to protect the personal information it gathers and processes about you. You should always bear in mind that there is no such thing as 100% information security. For example, communications over the internet and mobile phone networks aren’t completely secure and we can’t accept responsibility for unauthorised access or loss of personal information that is beyond its control. You also need to take steps to protect your log in details, use anti-virus software and to act sensibly when providing personal information. If you have any concerns then do contact us.
- How do I Contact Crowdicity?