This privacy statement was last updated on December 31, 2020 and applies to citizens and legal permanent residents of the United Kingdom.
In this privacy statement, we explain what we do with the data we obtain about you via https://www.kaywhite.com. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:
- we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
- we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
- we first request your explicit consent to process your personal data in cases requiring your consent;
- we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
- we respect your right to access your personal data or have it corrected or deleted, at your request.
If you have any questions, or want to know exactly what data we keep of you, please contact us.
1. Purpose, data and retention period
We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)1.1 Contact – Through phone, mail, email and/or webforms
1.1 Contact – Through phone, mail, email and/or webforms
For this purpose we use the following data:
- A first and last name
- A home or other physical address, including street name and name of a city or town
- An email address
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.2 Payments
1.2 Payments
For this purpose we use the following data:
- A first and last name
- A home or other physical address, including street name and name of a city or town
- An email address
- Financial information such as bank account number or credit card number
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.3 Newsletters
1.3 Newsletters
For this purpose we use the following data:
- A first and last name
- A home or other physical address, including street name and name of a city or town
- An email address
- IP Address
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.4 Compiling and analyzing statistics for website improvement.
1.4 Compiling and analyzing statistics for website improvement.
For this purpose we use the following data:
- IP Address
- Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
2. Sharing with other parties
We only share or disclose this data to processors for the following purposes:
Processors
Name: Kajabi
Country:
Purpose:
3. Cookies
Our website uses cookies. For more information about cookies, please refer to our Cookie Policy.
4. Disclosure practices
We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.
If our website or organisation is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.
We have concluded a data processing agreement with Google.
5. Security
We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorised access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.
6. Third-party websites
This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.
7. Amendments to this privacy statement
We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.
8. Accessing and modifying your data
If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:
- You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
- Right of access: You have the right to access your personal data that is known to us.
- Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
- If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
- Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
- Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.
Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.
9. Submitting a complaint
If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Information Commissioner’s Office:
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
10. Children
Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.
11. Contact details
Way Forward Solutions, Ltd
4th Floor, Silverstream House
45 Fitzroy Street, London W1T 6EB | UK
United Kingdom
Website: https://www.kaywhite.com
Email: support@kaywhite.com
Phone number: 0204 529 2624
Annex
WP Smush
Plugin: Smush
Note: Smush does not interact with end users on your website. The only input option Smush has is to a newsletter subscription for site admins only. If you would like to notify your users of this in your privacy policy, you can use the information below. Smush sends images to the WPMU DEV servers to optimize them for web use. This includes the transfer of EXIF data. The EXIF data will either be stripped or returned as it is. It is not stored on the WPMU DEV servers. Smush uses the Stackpath Content Delivery Network (CDN). Stackpath may store web log information of site visitors, including IPs, UA, referrer, Location and ISP info of site visitors for 7 days. Files and images served by the CDN may be stored and served from countries other than your own. Stackpath’s privacy policy can be found here.Popup Maker
Hello,
This information serves as a guide on what sections need to be modified due to usage of Popup Maker and its extensions.
You should include the information below in the correct sections of you privacy policy.
Disclaimer: This information is only for guidance and not to be considered as legal advice.
Note: Some of the information below is dynamically generated, such as cookies. If you add or change popups you will see those additions or changes below and will need to update your policy accordingly.
What personal data we collect and why we collect it
Subscription forms
Popup Maker subscription forms are not enabled by default.
If you have used them in your popups to collect email subscribers, use this subsection to note what personal data is captured when someone submits a subscription form, and how long you keep it.
For example, you may note that you keep form submissions for ongoing marketing purposes.
Suggested text: If you submit a subscription form on our site you will be opting in for us to save your name, email address and other relevant information. These subscriptions are used to notify you about related content, discounts & other special offers. You can opt our or unsubscribe at any time in the future by clicking link in the bottom of any email.Cookies
Popup Maker uses cookies for most popups. The primary function is to prevent your users from being annoyed by seeing the same popup repeatedly.
This may result in cookies being saved for an extended period of time. These are non-tracking cookies used only by our popups.
Below is a list of all cookies currently registered within your popup settings. These are here for you to disclose if you are so required.
Analytics
Popup Maker anonymously tracks popup views and conversions.
How long we retain your data
Subscriber information is retained in the local database indefinitely for analytic tracking purposes and for future export. Data will be exported or removed upon users request via the existing Exporter or Eraser. If syncing data to a 3rd party service (for example Mailchimp), data is retained there until unsubscribed or deleted.Where we send your data
Popup Maker does not send any user data outside of your site by default. If you have extended our subscription forms to send data to a 3rd party service such as Mailchimp, user info may be passed to these external services. These services may be located abroad.iThemes Security
What personal data we collect and why we collect it
Security Logs
Suggested text: The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.Who we share your data with
Suggested text: A QR code image is generated for users that set up two-factor authentication for this site. This image is generated using an iThemes hosted API. As part of generating this image, your username is sent to the API. This data is not logged. For privacy policy details, please see the iThemes Privacy Policy. When using the Remember Device for Two-Factor, a cookie (itsec_remember_2fa) will be set with a secure token that expires in 30 days. Suggested text: This site is scanned for potential malware and vulnerabilities by Sucuri’s SiteCheck. We do not send personal information to Sucuri; however, Sucuri could find personal information posted publicly (such as in comments) during their scan. For more details, please see Sucuri’s privacy policy.When running Security Check, ithemes.com will be contacted as part of a process to determine if the site supports TLS/SSL requests. No personal data is sent to ithemes.com as part of this process. Requests to ithemes.com include the site’s URL. For ithemes.com privacy policy details, please see the iThemes Privacy Policy.
In order to ensure file integrity, iThemes Security pulls data from wordpress.org, ithemes.com, and amazonaws.com. No personal data is sent to these sites. Requests to wordpress.org include the WordPress version, the site’s locale, a list of installed plugins, and a list of each plugin’s version. Requests to ithemes.com and amazonaws.com include the installed iThemes products and their versions. For wordpress.org privacy policy details, please see the WordPress Privacy Policy. For ithemes.com privacy policy details, please see the iThemes Privacy Policy. Requests to amazonaws.com are to content added and managed by iThemes which is covered by the Amazon Web Services Data Privacy policy.