Updated: 21st June 2021
Infinity Group takes your privacy very seriously and Infinity Group will comply with the obligations imposed on us by the UK Data Protection Legislation.
The UK Data protection Legislation includes the UK Data Protection Act 2018, the retained EU law version of the General Data Protection Regulation ((EU) 2016/679) (UK GDPR) and any national laws, regulations and secondary legislation, as amended or updated from time to time, and any subsequent legislation to the UK GDPR or the Data Protection Act 2018.
Infinity Group is registered with the Information Commissioner’s Office:
Registration number for Infinity Technology Solutions Limited: ZA053138
Registration number for Infinity Software Consulting Ltd: ZA356687
This policy applies to anyone who uses our website (including our portal) or who buys or uses any of the services provided by Infinity Group.
Infinity Group needs to collect and use certain personal information to be able to offer its range of products and services.
We will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:
With your consent, we may also use your information:
We may use your information to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you (we call this marketing).
You will receive marketing communications from us if you have requested information from us or purchased goods or services from us and you have not opted out of receiving that marketing.
We will get your express opt-in consent before we share your personal data with any third party for marketing purposes.
You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you OR by contacting us at any time.
Where you opt out of receiving these marketing messages, this will not apply to personal data provided to us as a result of a product/service purchase, product/service experience or other transactions.
In the event that you submit a job application to us, we may use your personal information in accordance with our Employee Privacy Notice.
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
The type of information we may collect, use, store and transfer may include (but is not limited to):
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
Periodically we may ask you to voluntarily complete surveys to provide us with information for our marketing or research purposes, although you do not have to respond to them and can opt out of receiving such communications at any time.
Infinity Group will use your information for the following purposes:
We will collect information from you via the following means:
In the standard operation of our business and to enable us to provide products and services to our customers, we may disclose your personal information to the following (who may be within or outside the UK):
We require that organisations outside of our Group of companies who handle or obtain personal information as service providers acknowledge the confidentiality of this information, undertake to respect any individual’s right to privacy and comply with the UK Data Protection Legislation and this policy.
We take the safeguarding of your data very seriously. All personal information in our possession is held securely. We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.
In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal information on our instructions and they are subject to a duty of confidentiality. Details of these measures may be obtained from [email protected]
When we need to store or transfer your personal data outside the UK, we will ensure at least one of the following safeguards is implemented:
By providing your data to us, you agree to this transfer and storage. However, we will ensure that reasonable steps are taken to protect your data in accordance with this privacy notice.
In line with UK Data Protection Legislation, we have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.
It is important that the personal information we hold about you is accurate and current.
Please keep us informed if your personal information changes during your relationship with us.
We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
In some circumstances we may anonymise your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you. Once you are no longer a customer of Infinity Group we will retain and securely destroy your personal information in accordance with applicable laws and regulations.
Under certain circumstances, by law you have the right to:
If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact compli[email protected] in writing.
You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
We try to respond to all legitimate requests within one month. Occasionally, it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
In the limited circumstances where you may have provided your consent to the collection,
processing and transfer of your personal information for a specific purpose, you have the right to withdraw your consent for that specific processing at any time. To withdraw your consent, please contact [email protected] Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.
information, or would like to make a complaint concerning any action of ours which you consider is in breach of our policy please contact our Compliance Manager directly at [email protected]
We would hope to be able to deal with any complaint you may have to your satisfaction, but you have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.