Cookie and Privacy Policy

1. Information We Collect

1.1 Information You Provide

  • Account Information: Name, email address, phone number, job title, and company details.
  • Payment Information: Billing address, payment card details (processed securely via third-party processors).
  • Communication Data: Messages, feedback, or inquiries submitted via email, chat, or support tickets.

1.2 Information Collected Automatically

  • Usage Data: IP address, device type, browser type, operating system, and pages visited.
  • Cookies and Tracking Technologies: See Section 4 for details.
  • Log Data: Timestamps, actions taken on the platform, and error logs.

1.3 Information from Third Parties

  • Integration Data: Data from third-party services integrated with our platform.
  • Marketing Data: Information from marketing partners or publicly available sources for lead generation.

2. How We Use Your Information

  • To Provide and Improve the Service: Deliver the SaaS platform, process payments, and enhance functionality.
  • To Communicate with You: Respond to inquiries, send service-related notices, and provide customer support.
  • For Marketing: Send promotional emails (with your consent) and analyze campaign performance.
  • For Security: Protect against fraud, unauthorized access, and ensure data security.
  • To Comply with Legal Obligations: Meet regulatory requirements and enforce our terms of service.

3. Legal Basis for Processing

Under UK GDPR, we rely on the following legal bases to process your personal data:

  • Contractual Necessity: To fulfill our obligations under the terms of service.
  • Consent: For marketing communications and non-essential cookies.
  • Legitimate Interests: To improve the Service, prevent fraud, and ensure security.
  • Legal Obligations: To comply with applicable laws and regulations.

4. Cookies and Tracking Technologies

4.1 What Are Cookies?

Cookies are small text files stored on your device when you visit our website or use our Service. They help us recognize you, remember your preferences, and analyze usage patterns.

4.2 Types of Cookies We Use

  • Essential Cookies: Necessary for the Service to function.
  • Analytics Cookies: Track usage to improve performance.
  • Marketing Cookies: Used for targeted advertising and campaign tracking.

4.3 Managing Cookies

You can manage or disable cookies through your browser settings. However, disabling essential cookies may affect the functionality of the Service.

5. Data Sharing and Transfers

5.1 Third-Party Service Providers

We may share your data with:

  • Payment Processors: To handle transactions securely.
  • Cloud Hosting Providers: To store and process data.
  • Analytics Providers: To analyze usage and improve the Service.
  • Marketing Platforms: To manage campaigns and communications.

5.2 International Transfers

If we transfer data outside the UK, we ensure adequate safeguards are in place, such as Standard Contractual Clauses (SCCs) or UK adequacy decisions.

5.3 Legal Disclosures

We may disclose your data if required by law or to protect our rights, property, or safety.

6. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Our standard retention periods are:

  • Account Data: Up to 3 months after account closure for audit purposes
  • Financial Records: 5 years as required by financial regulations
  • Marketing Data: Until you withdraw consent or opt out

7. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  • Access: Request a copy of your data.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your data.
  • Restriction: Limit how we use your data.
  • Portability: Receive your data in a machine-readable format.
  • Objection: Object to processing based on legitimate interests.
  • Withdraw Consent: Withdraw consent for marketing or cookies.

To exercise these rights, contact us at [Insert Contact Email]. We will respond within one month.

8. Data Security

We implement technical and organizational measures to protect your data, including encryption, access controls, and regular security audits. However, no system is completely secure, and we cannot guarantee absolute security.

9. Children's Privacy

Our Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware of such data, we will delete it promptly.

10. Changes to This Policy

We may update this policy from time to time. The updated version will be posted on our website with the effective date. We encourage you to review this policy periodically.

11. Contact Us

If you have questions or concerns about this policy or our data practices, please contact our Data Protection Officer:

Email: dpo@opworkz.com

OpWorkz will respond to all legitimate data protection requests within one month as required by UK GDPR.