Privacy Policy


 

AZURE SKY TECHNOLOGY LIMITED trading as 1way2escape

PRIVACY POLICY

 

INTRODUCTION AND IMPORTANT INFORMATION

Azure Sky Technology Ltd trading as 1way2escape (“We” or “us”) must keep all of your personal information safe. This policy describes how we do this. We comply with the laws on data protection including but not limited to the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR).

We know that many of our customers are under the age of 18. This document has therefore been drafted so that those under 18 can understand it easily. 

 

This policy also applies to adults, who may wish to read further information. Any information targeted at adults will be displayed in a textbox like this. If you are under 18, please don’t feel like you have to read all of the information in these boxes – the most important information for you to know will be outside the box. However, if you do read something in a textbox which you don’t understand, please feel free to ask an adult to explain it to you or contact us using our contact details below.

For the avoidance of doubt, any information contained within a textbox forms part of this privacy policy.

 

WHO WE ARE AND HOW TO CONTACT US

Azure Sky Technology Ltd

35 Ballards Lane

London

United Kingdom

N3 1XW

Email: info@1way2escape.com

Telephone: 07786 912 558 and ask to speak to the Privacy Officer.  

 

WHAT IS PERSONAL INFORMATION?

Personal information (your data) is anything that would allow us to know who you are, like your;

  • name;
  • shipping address;
  • billing address;
  • payment information, for example card number;
  • email address; or
  • telephone/mobile number.

We may also need to use or have access to other information about you, like:

  • information about your device, for example what sites and products you look at;
  • any personal information about you that you send us via the message box on our website;
  • your purchases and orders;
  • your interests, preferences, feedback and answers to any surveys you complete for us; and
  • your preferences in receiving marketing from us and our third parties and your communication preferences.

 

We also collect, use and share aggregated data, such as statistical or demographic data for any purpose. Aggregated data could be derived from your personal data, but is not considered to be personal data in law as it will not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate a percentage of users accessing a specific feature of our services. However, if we combine or connect your aggregated data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used solely in accordance with this policy.

We do not collect any information about criminal convictions and offences.

  

 IF YOU FAIL TO PROVIDE PERSONAL DATA

Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with our services). In this case, we may have to cancel all or part of a service you have with us but we will notify you if this is the case at the time.

 

HOW WE USE YOUR DATA

Whenever your personal information is shared with us it is kept confidential. But sometimes we will have to share it with someone else. This might happen when:

  • you buy a product from us and we share your information with someone who will help us to complete your order;
  • you ask us to; or
  • we share your data to comply with the law.

We never sell your personal information.

We only share your personal information with others where there is a legal obligation for us to do so or we have identified a valid lawful basis (this is explained below).

 

LAWFUL BASIS FOR PROCESSING

We only process (use) your personal information (which may include sharing it with people or organisations) where we are allowed to by law. There are 5 ways that this might happen. These are:

  1. Consent – where you say it’s ok.
  2. Legal obligation – where there is a law that says we can or have to.
  3. Legitimate Interest - where we use your personal information without asking you, but only if it doesn’t affect you in a bad way and we can’t find another way to do it.
  4. Public Authority – where we are asked to use your personal information by someone like the Police.
  5. Vital Interests – where processing has to happen to protect someone’s life (e.g. reported missing, mental health services, safeguarding).

 

Legitimate Interest – detailed definition

Legitimate Interest – means in the interest of our business in conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. Where we use legitimate interest we will record our decision on making this decision.  We rely on legitimate interest where processing of the data we hold on you does not, in our opinion, affect your rights or freedoms and is proportionate to our interests e.g. keeping you up to date with our latest services or obtaining your feedback on our service.

 

SHARING INFORMATION WITH OTHERS

We will keep your information within Azure Sky Technology Ltd except where we need help from others and we know exactly who they are.

They should not share your information with anyone unless we ask them to. They will hold your information securely and only keep it for as long as we say.

The others are listed below.  

 

TYPES OF PEOPLE/ORGANISATIONS WE MIGHT SHARE YOUR PERSONAL INFORMATION WITH

IT Support Services

Email Provider

Website Provider

Secure document disposal service

Banks

Online payment providers

Accountants

Insurers

Solicitors

Software Providers

Feedback aggregators and collectors

Couriers

Marketing Agencies

  

 MARKETING

We may use your personal information to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you (we call this marketing).

You will receive marketing communications from us if you have requested information from us or purchased services from us and you have not opted out of receiving that marketing.

We strive to provide you with choices regarding certain personal data uses, namely around marketing and advertising. In particular:

  • We will always obtain your express opt-in consent before we share your personal data with any third party for marketing purposes; and
  • You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you or by contacting us at any time.

 

WHERE YOUR DATA IS HELD

Your personal information is stored by us and some of the people we work with (our processors, including Shopify) in the UK, Europe or in a country where it will be safe.

Several of our external third parties are based outside the European Economic Area (EEA). Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented. We will either:

Transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission; or

Ensure that standard contractual clauses (SCCs) are in place and we have received assurances that an adequate level of protection of the personal data is achieved (based on a case by case assessment of the circumstances of the transfer), including adequate technical and operational measures in place to protect the personal data.

Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.

 

DATA SECURITY

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

 

HOW LONG WILL WE KEEP YOUR DATA

We will only keep your personal information for as long as we need it. For more information about this please contact us.

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

By law we have to keep basic information about our customers for 6 years after they cease being customers.

In some circumstances you can ask us to delete your data (see below for further information).

We may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

 

YOUR RIGHTS

Under the data protection laws your rights are:

  1. To be informed – We must make this privacy policy (sometimes referred to as a privacy notice) available to you.
  2. Access – You are allowed to find out what personal information we may hold about you and why.
  3. Rectification – if you ask us to we must correct or update your details.
  4. Erasure – Sometimes you can ask us to delete your details.
  5. Restrict processing – You can ask us to stop processing your personal information.
  6. Portability – You can reuse your personal information that you have given us.
  7. Object – You have the right to stop us marketing to you.
  8. Rights in relation to automated decision making and profiling – We do not use automatic decision making or profiling.

 

APPLICATIONS TO WORK FOR US

If you apply to work for us (directly or indirectly) in any role we may receive data about you from third parties. In addition, we will keep the details of your application and any additional information provided to us by you or others during your application so that we can keep you informed of future opportunities that you may be interested in. If you do not wish for us to keep your details for this reason, please let us know by contacting us using the details provided in this policy.

 

CHANGES

Sometimes we may need to change this document. When we do we will put a notice on our website.

 

COMPLAINTS

If we are doing something you don’t like with your information you can tell us. If you think that we have not listened or done anything you can tell someone else. The best person to tell is the Information Commissioner's Office.

Last updated 12 November 2021.