Genius Finder Privacy Policy
Introduction
At Genius Within we believe that the privacy of visitors to our digital properties is very important. We know that you may want to keep your neurotype private. This privacy policy sets out the different areas where user privacy is concerned and outlines the obligations and requirements of the users of the Genius Finderâ„¢ digital platform. It will also outline the types of personal data received and collected by Genius Within and how our platform processes, stores and protects user personal data and information. Genius Within is a "data controller" in relation to the collection and processing of personal data in connection with these activities.
If you have any questions in relation to our use of your personal data or this digital privacy policy, please contact us using the following contact details:
DPO officer
DPO@Geniuswithin.org
By visiting any of Genius Finder digital platform, and by providing personal data to us, you are accepting and consenting to the practices described in this digital privacy policy.
Personal data we collect
We may collect and process the following data about you:
Information provided by you
You may give us information about yourself by filling in forms on our web platform or by corresponding with us by phone, email or social media. The information you give us may include your name, address, email address and phone number.
Information we might collect about you
Each time you visit the Genius Finder digital platform, we may automatically collect the following information:
- Technical information, including the internet protocol (IP) address used to connect your computer to the internet, browser type and version, time zone setting, browser plug-in types and versions, operating systems and platform.
- Information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through, and from our sites (including date and time); products you viewed or searched for; page response times, scores and question responses, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs) and methods used to browse away from the page.
We may also obtain personal data about you that is in the public domain, for example contact details presented on websites of potential customers.
Information we receive from other sources
We work with third parties such as business partners, sub-contractors, advertising networks, analytics providers, search information providers and credit reference agencies. We may receive information about you from them.
Special Category Data
We may collect special categories of personal data about you, including details about your health, such as information related to neurodiversity. We process this data to provide our services effectively and ensure appropriate accommodations and support are in place.
If you fail to provide personal data
Where we need to collect personal data by applicable law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or trying to enter into with you (for example to provide you with our services).
How we use personal data
We DO NOT sell personal data.
Our mailing list addresses are not sold, rented, leased, traded, swapped or exchanged.
Depending on how you engage with us, we may use your personal data for the following purposes:
- To deliver agreed products and services to you.
- To facilitate your use of our digital properties and the services available through them – also see our Cookies Statement
- For internal accounting and regulatory purposes.
- For statistical analysis to assess our business performance and to improve our products and services.
- To improve our website(s) and services.
- To keep you informed of our products and services you might be interested in.
- To send you a festive greeting.
We are committed to ensuring you can manage the privacy and security of your personal data yourself. This includes ensuring that we have in place appropriate technical and organisational security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. You can verify the details you have submitted to Genius Within CIC by contacting our Client Services Team on info@geniusfinder.com. Our security procedures mean that we may request proof of identity before we reveal information, including your email and home addresses before we give you access to data held by Genius Within CIC.
Your Rights
You have a number of rights surrounding your personal data that we hold. These rights include:
- Right to access to your data. You have the right to obtain specific information about the processing of your personal data, as well as a copy of such personal data free of charge.
- Right to rectification: You have the right to correct inaccuracies or supplement inaccurate personal data without undue delay, unless request is excessive or unfounded.
- Right to have your personal data erased without undue delay if the personal data is no longer necessary for the purposes it was originally collected and processed. Please note that if you have shared any information with others through social media channels, that information may remain visible, even though your account is deleted.
- Right to object to direct marketing through opting out of direct marketing at any time by clicking "unsubscribe" on any marketing email we send you or contacting us at the contact details provided above.
- Right to restricting the processing of your information (including automated decision-making) in certain circumstances.
- Right to data portability. You have the right to obtain your personal data on a machine readable format and to request a transfer of this personal data to another service provider but only to the extent that the processing is carried out by automated means. A request for data portability may be rejected or a fee may be charged when the request is manifestly unfounded or excessive. A reasonable fee may also be charged based on administration costs.
- Right to withdraw consent at any time when we are relying on consent to process your personal data.
If you wish to exercise any of these rights, please contact The DPO officer at DPO@Geniuswithin.org
Legal Bases
Our legal bases for processing your personal data are:
- Consent you have given.
- Processing necessary to enter into a contract, or for the performance of a contract with you.
Disclosures
We may share your personal data with selected third parties including:
- Business partners, suppliers and subcontractors for the performance of any contract we enter into with them or you.
- Analytics and search engine providers that assist us in the improvement and optimization of our site.
We may disclose your personal data to third parties:
- In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business assets.
- To our professional advisors (e.g. lawyers, accountants, auditors etc).
- To protect our legal rights, property or safety, or the rights, property, or safety of others, or to defend against legal claims.
- If Genius Within CIC or substantially all of its assets are acquired by a third party, in which case personal data held by it will be one of the transferred assets.
- If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or to protect the rights, property or safety of Genius Within CIC, our customers or companies and organisations for the purposes of fraud protection and credit risk reduction.
We will not transfer the personal data we collect about you outside the UK. In the event that we do transfer personal data overseas we will ensure it is to a country which has received an adequacy decision by UK authorities or upon reliance upon appropriate safeguards, such as the Information Commissioner's Office international data transfer addendum.
How long do we keep your personal data for?
Genius Within will retain personal data for no longer than is necessary. What it is necessary to retain will depend on the circumstances of each case, taking into account the reasons that the personal data was obtained, but should be determined in a manner consistent with our data retention guidelines.
We may also retain some of your personal data for a limited period of time if legally required, or if it is necessary to meet regulatory requirements, resolve disputes, prevent fraud and abuse, or enforce our Terms and Conditions. This may be the case even after we have closed your account, or it is no longer needed to provide our services to you.
Making a complaint
You have the right to make a complaint to the Information Commissioner's Office by visiting www.ico.org.uk.
Please note. We are constantly reviewing how we process and protect personal data. Therefore, changes to our policy may occur at any time. We will endeavour to publicise any changes as soon as they are made.