This policy sets out how Intrinsic (‘us’, ‘we’) collects and uses data that is submitted when you use our website.
- Why we collect your data
We only collect personal data that is submitted with a user’s consent through one of our online forms for the purposes of marketing or communication.
We do not collect sensitive data such as information on health, race, sexual orientation, religion or political beliefs. The information we collect will be limited to that required for the function that we collect the data for and that helps us to serve you as a user.
We also collect anonymised data on your navigation and interactions on out site for the purposes of tracking usage and performance information about our website. This data is used by us to improve our website, and it does not identify you as an individual.
- How we collect your data
3.1 Cookies and analytics
Our website makes use of Google Analytics to track and monitor how visitors use our site. As a user navigates between web pages, Google Analytics records information about the page a user has seen, for example the URL of the page.
We have enabled IP anonymisation and have disabled User ID tracking, to ensure no personally identifiable data is included in these cookies.
Most internet browsers will give you the option of disabling all cookies but this can have a negative impact on your browsing experience. It will also limit our ability to track user behaviour and make future improvements to our site.
Please refer to support pages for your particular browser for more details. To opt out of Google Analytics, you may use this tool provided by Google.
Our newsletter sign up form collects your email address, and is stored locally on our website database before being added to our mailing list. We gather statistics around email opening and click rates to help us monitor and improve our newsletter.
3.3 Contact Form
We collect your name, phone number and email address with your consent through our contact form. This is stored locally on our website database.
- How we use your data
We do not share your personal data with any third parties.
For newsletter subscriptions, your email address will be added to our Campaign Monitor mailing list and will be used for this purpose only.
Information you provide through our contact form(s) is used to ensure we are able to contact you in response to your enquiry in the most appropriate manner. We will not use this data for any other purposes.
- Who is responsible for your personal data
Internally, we make use of reasonable security measures to protect your personal information both physically and digital (where applicable) against loss or theft as well as unauthorised access or disclosure. Our data controller is Kathryn Mitchell and any enquiries related to personal data can be submitted to firstname.lastname@example.org.
- Your data rights
6.1 Right to access
You may contact us at any time to request a copy of the personal data we have on record. This should be done by emailing us at email@example.com. There is no charge for this service.
6.2 Right to update
You may contact us to update the personal information we hold if it is no longer correct by emailing firstname.lastname@example.org.
6.3 Right to data portability and access
You may request a copy of any personal data we store so that you may confirm its accuracy or reuse the data for your own purposes, as well as to enquire how your data is being processed. Please contact us at email@example.com to make your request.
6.4 Right to opt-out or restrict processing
All direct marketing communications will be done through email, and will only be sent to those users who have given their consent for us to do so. All email newsletters will contain an unsubscribe link, which you may use to opt-out of any further marketing communications.
You may also request that we restrict processing of your data. This means we are able to continue to store your data, but can no longer make use of it. You may make this request verbally or by emailing us at firstname.lastname@example.org.
6.5 Right to erasure
You have the right to request we delete all personal data from our systems at any time. In some circumstances, outlined by the GDPR we can refuse this request. In all other cases we will ensure your data is removed within one month. You may make this request verbally or by emailing us at email@example.com.
6.6 Right to be informed
If there is ever a security breach of our data storage systems, we will inform all users of the level of risk that their personal data has been obtained.