Skip to content

Privacy Notice: SocialOptic 

Summary of initiative/policy 


This policy explains how SocialOptic intend to use the data collected in this form. This policy also explains what will happen to the data submitted, the basis by which it is collected and the rights that possessed by data subjects.

 

Data Controller 

SocialOptic is the data controller. 


What personal data we collect 

The Survey includes a question where you can chose to submit personal information in order for us to contact you regarding your response. 


How we use your data (purposes) 

Your personal data (if submitted) will be received by SocialOptic and will be used to contact you about the Webinar. Your personal data is not shared with any other 3rd parties. 


Legal basis for processing personal data 

Article 6 of the General Data Processing Regulations: 

(f) Legitimate interests: processing is necessary for the purposes of updating you with the Webinar details.


Data Processors and other recipients of personal data 

The data will be received by SocialOptic.

Your personal data is not shared with any other 3rd parties. 

We use Azure (Microsoft) UK infrastructure for processing data.



International data transfers and storage location(s) 

As standard we do not transfer your personal data outside the United Kingdom. SocialOptic uses UK-based servers, and all data processing takes place within the UK. 


Retention and disposal policy 

Your personal data will be stored until we have finished updating you about the Webinar. Following this, all data gathered (including personal data) will be retained for 7 years. Once this time has elapsed the data will be deleted. 


How we keep your data secure 

SocialOptic is certified under the industry standard Cyber Essentials Plus certification, and has had our platform independently security tested. SocialOptic has a data security policy, data governance policy, business continuity plan and incident management process which are regularly reviewed. 

All data is held within UK-based data centres, and all data centres are ISO 27001 certified, with independently verified security accreditations covering physical access control and logical security. All data is encrypted during transfer and storage and automatically backed up.



Your rights as a data subject 


By law, data subjects have a number of rights and this processing does not take away or reduce these rights under the EU General Data Protection Regulation (2016/679) and the UK Data Protection Act 2018 applies. These rights are: 

  1. The right to get copies of information – individuals have the right to ask for a copy of any information about them that is used. 
  2. The right to get information corrected – individuals have the right to ask for any information held about them that they think is inaccurate, to be corrected 
  3. The right to limit how the information is used – individuals have the right to ask for any of the information held about them to be restricted, for example, if they think inaccurate information is being used. 
  4. The right to object to the information being used – individuals can ask for any information held about them to not be used. However, this is not an absolute right, and continued use of the information may be necessary, with individuals being advised if this is the case. 
  5. The right to get information deleted – this is not an absolute right, and continued use of the information may be necessary where it has been redacted and aggregated. 

Comments or complaints 

If you have any concerns or complaints about how we handle your personal data, we encourage you to contact us in the first instance so that we can address your concerns, using support@socialoptic.com or write to: Data Protection Officer, SocialOptic Ltd, 2 Park Court, Pyrford Road, West Byfleet, Surrey KT14 6SD  


However, if you are not satisfied with our response or believe that our processing of your personal data is not in compliance with the applicable data protection laws, you have the right to lodge a complaint with the Information Commissioner's Office (ICO). The ICO is the UK's independent authority responsible for upholding information rights and ensuring data protection compliance. You can contact the ICO through their website (www.ico.org.uk), by telephone at +44 (0) 303 123 1113, or by email at casework@ico.org.uk. You may also write to them at the following address: Information Commissioner's Office Wycliffe House Water Lane Wilmslow Cheshire SK9 5AF United Kingdom


Changes to this policy 

This privacy notice is kept under regular review, and new versions will be available on our privacy notice page on our website. This privacy notice was last updated on 01/10/24