This Policy (together with our terms and conditions and any other documents referred to on it) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting www.onionring.cloud you are accepting and consenting to the practices described in this Policy.
For the purpose of the General Data Protection Regulation (“GDPR”), the data controller is Onionring Limited, 4th Floor, Silverstream House, 45 Fitzroy Street, Fitzrovia, London, W1T 6EB. The information and data you provide in connection with registration of the services provided by Onionring (the "Services"), will be processed in accordance with the provisions of the GDPR.
We will comply with data protection law. Personal information we hold about you will be:Used lawfully, fairly and in a transparent way.Collected only for valid purposes that we have clearly explained to you and not used in any way that is incompatible with those purposes.Relevant to the purposes we have told you about and limited only to those purposes.Accurate and kept up to date.Kept only as long as necessary for the purposes we have told you about.Kept securely.
WHAT INFORMATION DO WE HOLD ABOUT YOU?
Onionring collect certain personal data to enable us to provide our service to customers, we may collect a variety of information, including:Information you give us. When registering or making a purchase with us we will collect your contact information including name, postal address, email address, and telephone number, as well as payment information.
The legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter into such a contract.
Information we collect about you. Each time you visit our site we may automatically collect the following information:
technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.
The legal basis for this processing is our legitimate interests, namely monitoring and improving our website and services.
If you contact us, we keep a record of that correspondence, for the purposes of communicating with you and record-keeping.
The legal basis for this processing is our legitimate interests, namely being able to support and respond to you accurately and for record-keeping.
Information we receive from other sources. We may receive information about you from third parties (including business partners providing technical and payment services, advertising networks and analytics).
The legal basis for this processing is our legitimate interests, namely the proper administration of our website and business. This data will be collectively referred to as "personal data".
Onionring will only process personal data where it is strictly necessary to provide the Services.
HOW DO WE USE YOUR PERSONAL INFORMATION?
We may use the information held about you in the following ways:To allow us to identify you and the accounts you hold with usTo help us to develop and improve our services and websiteTo provide customer supportTo carry out our obligations arising from any contracts entered into with usTo carry out marketing and keep you updated on the services that we offerTo inform you of changes to our services which may affect youTo ensure that content from our site is presented in the most effective manner for you and for your computer.For internal auditing, statistical analysis or research to help us improve our products, services, marketing or customer service
WHO IS THIS INFORMATION SHARED WITH?
We limit the sharing of your personal data so far as is practical for us, it is shared internally to meet sales, support and billing requirements. Your personal data may in some circumstances be shared with external parties when:A cardholder has purchased services on your behalfYou have added secondary contacts to your accountIt is required by business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or youIn the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets if required as a condition of the contract.If Onionring Limited. or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.We are under a duty to disclose your personal data in compliance with any legal obligation; or to protect the rights, property, or safety of Onionring, its staff, clients or others; or in order to enforce or apply our terms and conditions and other agreements. This includes exchanging information with other companies and organisations for the purposes of fraud protection, credit risk reduction and dispute policies.
WHERE DO WE STORE YOUR PERSONAL DATA?
If we have provided you with a password or you have chosen one that lets you access certain parts of our website, you are responsible for keeping the password confidential. You should not share this password with anyone else unless you trust them to have full access to your account. Any action taken by a password holder on your account will be treated as though it were the primary account holder unless this was fraudulently obtained.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
HOW LONG DO WE KEEP YOUR PERSONAL DATA?
We will retain your personal information no longer than is necessary for the purpose we obtained it for thereby reducing the risk that it will become inaccurate, out of date or irrelevant. At the end of the retention period the data will either be deleted or anonymised so it can no longer be linked back to an individual. We may also be required to retain certain information by law and/or for legitimate business purposes, personal data linked to purchases or any other financial transaction are kept for a minimum of 6 years as required by UK law.
You may instruct us to provide you with any personal data we hold about you, provided your request is not found to be unfounded or excessive, in which case a charge may apply.
We may withhold personal information that you request to the extent permitted by law.
You may instruct us at any time not to process your personal information for marketing purposes by contacting us via support ticket or email to [email protected]
The rights you have under the GDPR are:Your right to access your data
You have the right to ask us to confirm whether or not we process your personal data and, to have access to the personal data, and any additional information. That additional information includes the purposes for which we process your data, the categories of personal data we hold and the recipients of that personal data. You may request a copy of your personal data. The first copy will be provided free of charge, but we may charge a reasonable fee for additional copies.Your right to rectification
If we hold any inaccurate personal data about you, you have the right to have these inaccuracies rectified. Where necessary for the purposes of the processing, you also have the right to have any incomplete personal data about you completed.Your right to erasure
In certain circumstances you have the right to have personal data that we hold about you erased. This will be done without undue delay. These circumstances include the following: it is no longer necessary for us to hold those personal data in relation to the purposes for which they were originally collected or otherwise processed; you withdraw your consent to any processing which requires consent; the processing is for direct marketing purposes; and the personal data have been unlawfully processed. However, there are certain general exclusions of the right to erasure, including where processing is necessary: for exercising the right of freedom of expression and information; for compliance with a legal obligation; or for establishing, exercising or defending legal claims.Your right to restrict processing
In certain circumstances you have the right for the processing of your personal data to be restricted. This is the case where: you do not think that the personal data we hold about you is accurate; your data is being processed unlawfully, but you do not want your data to be erased; it is no longer necessary for us to hold your personal data for the purposes of our processing, but you still require that personal data in relation to a legal claim; and you have objected to processing, and are waiting for that objection to be verified. Where processing has been restricted for one of these reasons, we may continue to store your personal data. However, we will only process it for other reasons: with your consent; in relation to a legal claim; for the protection of the rights of another natural or legal person; or for reasons of important public interest.Your right to object to processing
You can object to us processing your personal data on grounds relating to your particular situation, but only as far as our legal basis for the processing is that it is necessary for: the performance of a task carried out in the public interest, or in the exercise of any official authority vested in us; or the purposes of our legitimate interests or those of a third party. If you make an objection, we will stop processing your personal information unless we are able to: demonstrate compelling legitimate grounds for the processing, and that these legitimate grounds override your interests, rights and freedoms; or the processing is in relation to a legal claim.Your right to object to direct marketing
You can object to us processing your personal data for direct marketing purposes. If you make an objection, we will stop processing your personal data for this purpose.Your right to data portability
You have the right to request that your personal data be moved, copied or transferred from one database, storage or IT environment to another.Automated data processing
To the extent that the legal basis we are relying on for processing your personal data is consent, and where the processing is automated, you are entitled to receive your personal data from us in a structured, commonly used and machine-readable format. However, you may not have this right if it would adversely affect the rights and freedoms of others.Complaining to a supervisory authority
If you think that our processing of your personal data infringes data protection laws, you can lodge a complaint with a supervisory authority responsible for data protection. You may do this in the EU member state of your habitual residence, your place of work or the place of the alleged infringement.Right to withdraw consent
To the extent that the legal basis we are relying on for processing your personal data is consent, you are entitled to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal.
If you wish to:Request access to, deletion of or correction of, your personal data. Please contact us to arrange this at [email protected]Request that your personal data be transferred to another person. You can exercise this right by contacting us at [email protected] and requesting that your personal data be transferred.Complain to the Information Commissioners Office (ICO). The ICO website which contains the processes for raising a complaint can be found here: https://ico.org.uk/. We would ask that where possible You contact us at [email protected] in the first instance so we can attempt to resolve any issues You may have.
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If You follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before You submit any personal data to these websites.
HOW WE PROTECT YOUR PERSONAL DATA
We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of your information. Our security procedures mean that we may occasionally request proof of identity before we disclose personal information to you.
Wherever we collect sensitive information, that information is encrypted and transmitted to us securely over SSL. You can verify this by looking for a lock icon in the address bar and looking for "https" at the beginning of the address of the Web page.
While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job are granted access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment.
Although we will do our best to protect your personal data through the use of SSL, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
HOW TO CONTACT US