Privacy Policy

1. How we respect your privacy

Our approach at Finch and Wolf is to be as open and transparent as possible about how we collect and use your information.

First, we let you know exactly what information we collect and why. You can read all about that in the next section.

Second, we let you know what we do with your information. Who do we share it with? What do they do with it? You can read about that in section 3.

Third, we protect your information and let you know how long we keep it. Read about that in sections 4 and 5.

Finally, we let you know your choices when it comes to your personal information, including who to contact if you have questions or requests. Read about that in sections 6 and 7.

2. What information we collect and why

We may collect several types of information about you.

Read more

Type of informationSource, purpose and legal basis
Usage dataWe collect non-personal information on how you interact with the app. We use it internally for development purposes on the basis of legitimate interest.
Name and emailWhen you contact us for feedback or report an issue, we collect your name and email in order to be able to get back to you. That information is collected on basis of legitimate interest.

3. Who we share your information with

We do not sell or trade your information to third parties, but we share with others who can help us. That can be other group companies, service providers or business partners. We’re all committed to keep your information safe and secure.

We may share personal information with others:

Service providers:

We may also share your information with authorised Finch and Wolf service providers. Usually these are companies that store information or provide IT services.

Backend admin in completed using Google Drive / Docs tools. Accounting and financials are completed using Freeagent. Usage data is stored with Adobe Analytics. Relevant data is shared with those service providers.

4. How we keep your personal information safe

We protect your information from all kinds of threats: destruction, loss, alteration, unauthorized disclosure or access. We do this in a variety of ways depending on where we store and use it.

Read more

Here are some things we do to keep your personal information safe:

Security

  • Encryption of data;
  • The use of:
    • firewalls and secure servers;
    • passwords and (if necessary) extra tokens;
    • hashing techniques;
    • logging of systems.
    • a process for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring the security of the processing
  • The ability to ensure:
    • the ongoing confidentiality, integrity, availability and resilience of our organization and systems that process your data;
    • that availability and access to Personal Data can be restored in a timely manner in the event of a physical or technical incident;
  • Pseudonymisation / anonymisation of data where possible.

5. How long we keep your personal data

We don’t store your personal information longer than necessary. Name and email for customer support are stored no longer than three years after you have last been in contact with us.

We might store your information longer than stated above if it is necessary because of legal requirements.

6. Your privacy rights

You have many rights regarding your personal information. Read more about them below. If you would like to exercise them or learn more, feel free to contact us! You can find contact detail at the end of this statement. Please note that some of the rights may not be applicable to your situation.

Read more

  • Right of access
    • You have the right to know what personal information we process and why. That’s why we inform you in advance about our processing activities via this statement. If you have any questions, or would you like to learn more about what information we process from you, you are always welcome to contact us and we will provide you with further information.
  • Right to rectification
    • If you believe we store wrong information about you, such as your name or address, you can ask us to correct this.
  • Right to erasure / right to be forgotten
    • You have the right to tell us to permanently erase your personal information from our records. You can do this for example if you believe there’s no longer any need for us to keep it. Or, if you previously have given your permission, you can just decide to withdraw it.
  • Right to restrict the processing activities
    • You have the right to restrict our processing activities in certain situations. This means we will continue to store your information, but we’ll temporarily stop any other processing. Why would you want to do this? For example if you’ve asked us to fix incorrect information. In this situation you may want us to stop processing until the information is correct.
  • Right to object
    • You have the right to object to the processing of your information, even when we have a legitimate legal reason to process it. You can do this when we process your information on the basis of our legitimate interest, and you believe that your personal interest outweighs ours. If you do not want us using your information for direct marketing purposes, including profiling, we will comply in any case.
  • Right to withdraw consent
    • If we process your personal information based on your consent, you have the right to withdraw your consent anytime.
  • Right to lodge a complaint with a supervisory authority
    • If you aren’t satisfied with the way we treat your personal information, you have the right to lodge a complaint about us to the national supervisory authority.

7. Who to contact?

If you have questions about our privacy statement or practices, please feel free to get in touch. You can contact us at:

privacy@medspacesolutions.co.uk