Privacy Policy

Introduction

Back to Work is owned by Devstars Limited. Devstars Limited (We) are committed to protecting the privacy and security of your personal information. We take care to protect the privacy of our customers and users of our products that communicate (online and/or offline) with us, over the phone, through our mobile applications, websites and social media platforms.

We have therefore developed this privacy policy to inform you of the data we collect, what we do with your information, what we do to keep it secure as well as the rights and choices you have over your personal information.

For the purpose of the General Data Protection Regulation (GDPR), Devstars Limited of Unit 168, 30 Red Lion St, Richmond TW9 1RB is a “data controller”.  This means that we are responsible for deciding how we hold and use personal information about you.

Information we may collect from you

We only collect information that we know we will genuinely use and in accordance with the General Data Protection Regulation (GDPR).

The type of information that we will collect on you, and you voluntarily provide to us by filling in a form on our website: www.backtowork.store or by corresponding with us by phone, e-mail or otherwise includes:

  • Name
  • Address
  • Email address
  • Phone number
  • Credit card information
  • Photographs

We may, in further dealings with you, extend this information to include your purchases, services used, records of conversations, agreements, payment transactions, subscriptions, discussion boards or other social media functions, and when you report a problem with our website, mobile application or other Back to Work product or service.

With each of your visits to our website we may automatically collect the following information:

  • Technical information
  • Internet protocol (IP) address
  • Login information
  • Browser type and the current version
  • Time zone setting
  • Browser plug-in types and versions
  • Operating system and platform

Information about your visit to our site may also include:

  • Full Uniform Resource Locators (URL)
  • Clickstream to, through and from our site (including date and time)
  • Products you viewed or searched for
  • Page response times
  • Download errors
  • Length of visits to certain pages
  • Page interaction information (such as scrolling, clicks, and mouse-overs)
  • Methods used to browse away from the page
  • Phone number used to call our customer service number

Information we receive from other sources. We may receive information about you if you use any of the other websites we operate or the other services we provide.

You are under no statutory or contractual requirement or obligation to provide us with your personal information; however, we require at least the information above for us to deal with you as a customer or prospective customer in an efficient and effective manner.

The legal basis for processing your data is based on your legitimate interest or specific consent that we will have requested or stated at the point the information was initially provided, therefore we will not store, process or transfer your data outside the parties detailed below unless we have an appropriate lawful reason to do so. 

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

How we use your information

We use information held about you in the following ways:

  • To carry out our obligations arising from any communications or contracts entered between you and us and to provide you with the information, products and services that you request from us.
  • To provide you with information about other goods and services we offer that are like those that you have already purchased or enquired about.
  • To notify you about changes to our service or products.
  • To ensure that content from our site is presented in the most effective manner for you and for your computer.
  • To power our security measures and services so you can safely access our website and mobile apps.
  • Help us understand more about you as a customer, the products and services you consume, so we can serve you better.

Information we collect about you.

We will use this information:

  • To administer our site and services for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes.
  • To improve our site and services to ensure that content is presented in the most effective manner for you and for your computer.
  • To allow you to participate in interactive features of our service when you choose to do so.
  • As part of our efforts to keep our site safe and secure.
  • To measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you.
  • To make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them.

Information we receive from other sources

We may combine this information with information you give to us and information we collect about you.

We may use this information and the combined information for the purposes set out above (depending on the types of information we receive).

Disclosure of your information

We may share your personal information with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.

We also use third-party platforms to manage and deliver our services which include:

  • Website hosting
  • App hosting
  • Customer support including our careline function
  • Customer analytics
  • Fulfilment of orders
  • IT Services
  • Email marketing campaigns
  • Business partners, suppliers and sub-contractors for the performance of any communications or contracts we enter with them or you
  • Advertisers and advertising networks that require the data to select and serve relevant adverts to you and others. We do not disclose information about identifiable individuals to our advertisers, but we may provide them with aggregate information about our users (for example, we may inform them that 500 women aged under 30 have clicked on their advertisement on any given day). We may also use such aggregate information to help advertisers reach the kind of audience they want to target (for example, women in SW1). We may make use of the personal data we have collected from you to enable us to comply with our advertisers’ wishes by displaying their advertisement to that target audience.
  • Analytics and search engine providers that assist us in the improvement and optimisation of our site.

We will ensure that all third parties provide sufficient guarantees regarding the confidentiality and security of your personal information.

We will have written contracts with all third parties to ensure the required security assurances are obtained in relation to your personal information.

We may disclose your personal information to third parties:

  • In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
  • If Devstars Limited or substantially all its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use or other agreements, or to protect the rights, property, or safety of Devstars Limited, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

Where we store your personal data

The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing.

We are committed to ensuring that adequate safeguards are in place when transferring Personal Data outside the EEA.  As such, we will take reasonable steps to ensure that your personal information is adequately protected in accordance with the requirements of UK data protection law.

All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

How we keep you informed

We retain a record of your personal information in order to provide you with a high quality and consistent service. We will always retain your personal information in accordance with the General Data Protection Regulation (GDPR) and never retain your information for longer than is necessary. Unless otherwise required by law, your data will be stored for a period of 2 years after our last contact with you, at which point it will be deleted.

Your rights

Right to Access Your Personal Information

You have the right to access the personal information that we hold about you in many circumstances, by making a request. This is sometimes termed ‘Subject Access Request’. If we agree that we are obliged to provide personal information to you (or someone else on your behalf), we will provide it to you or them free of charge and aim to do so within 30 days from when your identity has been confirmed.

We would ask for proof of identity and sufficient information about your interactions with us that we can locate your personal information.

If you would like to exercise this right, please contact us as set out below.

Right to Correction Your Personal Information

If any of the personal information we hold about you is inaccurate or out of date, you may ask us to correct it.

If you would like to exercise this right, please contact us as set out below.

Right to Stop or Limit Our Processing of Your Data

You have the right to object to us processing your personal information if we are not entitled to use it any more, to have your information deleted if we are keeping it too long or have its processing restricted in certain circumstances.

If you would like to exercise this right, please contact us as set out below.

For more information about your privacy rights

The Information Commissioner’s Office (ICO) regulates data protection and privacy matters in the UK. They make a lot of information accessible to consumers on their website and they ensure that the registered details of all data controllers such as ourselves are available publicly.

You can access them here https://ico.org.uk/for-the-public.

You can make a complaint to the ICO at any time about the way we use your information. However, we hope that you would consider raising any issue or complaint you have with us first. Your satisfaction is extremely important to us, and we will always do our very best to solve any problems you may have.

How long we retain information

We retain a record of your personal information in order to provide you with a high quality and consistent service. We will always retain your personal information in accordance with the General Data Protection Regulation (GDPR) and never retain your information for longer than is necessary. Unless otherwise required by law, your data will be stored for a period of 2 years after our last contact with you, at which point it will be deleted.

Security

Data security is of great importance to Devstars Limited and to protect your data we have put in place suitable physical, electronic and managerial procedures to safeguard and secure your collected data. 

We take security measures to protect your information including:

  • We use appropriate procedures and technical security measures (including strict encryption, anonymisation and archiving techniques) to safeguard your information across all our computer systems, networks, websites, mobile apps, offices and stores.
  • Never asking you for your passwords;
  • Advising you never to enter your account number or password into an email or after following a link from an email.

When using our websites or mobile applications, you may be able to share information through social networks like Facebook or Twitter. For example, when you ‘like’, ‘share’ or review our products or services. When doing this, your personal information may be visible to the providers of those social networks and/or their other users. Please remember it is your responsibility to set appropriate privacy settings on your social network accounts so you are comfortable with how your information is used and shared on them.

Changes to our privacy policy

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy policy.

Contact

If you would like to exercise one of your rights as set out above, or you have a question or a complaint about this policy, the way your personal information is processed, please contact us by one of the following means:

By email:

info@backtowork.store

By post:

Data Processing Manager
Devstars Limited 
Unit 168, 30 Red Lion St, 
Richmond 
TW9 1RB

Thank you for taking the time to read our Privacy Policy.

Devstars Limited

This Policy was last updated on Jun 2020