Infinity Group takes your privacy very seriously and Infinity Group will comply with the obligations imposed on us by the applicable Data Protection Legislation.
The Data protection Legislation includes the UK Data Protection Act 1998, the General Data Protection Regulation ((EU) 2016/679) (GDPR) and any national laws, regulations and secondary legislation, as amended or updated from time to time, in the UK and any subsequent legislation to the GDPR or the Data Protection Act 1998.
Infinity Group is registered with the Information Commissioner’s Office:
Registration number for Infinity Technology Solutions: ZA053138
Registration number for Infinity Software Consulting: ZA356687
This policy applies to anyone who uses our website (including our portal) or who buys or uses any of the services provided by Infinity Group formed of Infinity Technology Solutions Ltd. and Infinity Software Consulting Ltd.
Infinity Group needs to collect and use certain personal information to be able to offer its range of products and services.
We will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:
With your consent, we may also use your information:
The type of information we collect may include (but is not limited to):
Periodically we may ask you to voluntarily complete surveys to provide us with information for our marketing or research purposes, although you do not have to respond to them.
Infinity Group will use your information for the following purposes:
If you have provided your explicit consent and unless and until you advise us to the contrary, we will also communicate with you about relevant information and opportunities relating to existing and new products and services which we consider suitable for you.
We will collect information via the following means:
In the standard operation of our business and to enable us to provide products and services to our customers, we may disclose your personal information to the following (who may be within or outside the European Economic Area):
We require that organisations outside of our Group of companies who handle or obtain personal information as service providers acknowledge the confidentiality of this information, undertake to respect any individual’s right to privacy and comply with the Data Protection Legislation and this policy.
We take the safeguarding of your data very seriously. All personal information in our possession is held securely. We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.
In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal information on our instructions and they are subject to a duty of confidentiality. Details of these measures may be obtained from [email protected]
When we need to store or transfer your personal data outside the European Economic Area into countries where there may not be the same protection as in the EEA, we will do what we reasonably can to ensure adequate protection. By providing your data to us, you agree to this transfer and storage. However, we will ensure that reasonable steps are taken to protect your data in accordance with this privacy notice.
Special measures such as access restrictions are in place to ensure the security of sensitive personal data.
In line with GDPR, we have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.
It is important that the personal information we hold about you is accurate and current. Please keep us informed if your personal information changes during your relationship with us.
We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
In some circumstances we may anonymise your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you. Once you are no longer a customer of Infinity we will retain and securely destroy your personal information in accordance with applicable laws and regulations.
Under certain circumstances, by law you have the right to:
If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact [email protected] in writing.
You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
In the limited circumstances where you may have provided your consent to the collection, processing and transfer of your personal information for a specific purpose, you have the right to withdraw your consent for that specific processing at any time. To withdraw your consent, please contact [email protected] Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.
We would hope to be able to deal with any complaint you may have to your satisfaction, but you have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.