Privacy Policy
Effective January 1, 2024
At EklipX Limited, headquartered in London, UK, we prioritize the privacy of our customers. We collect personal information from you when you visit or use our website, whether it’s to browse, make transactions, access services or content, or participate in promotions or competitions. We are committed to using and disclosing your information only as described in this policy. By engaging with our website, you consent to this use of your information.
Our privacy policy may evolve, particularly in response to changes in data processing practices or new legal requirements, including those under the General Data Protection Regulation (GDPR) and other relevant legislation.
1. Data Processing Responsibility
The responsibility for data processing lies with EklipX Limited, a company registered in the UK, located at 1 Eardley Crescent, SW5 9JS London, United Kingdom. For any inquiries regarding this privacy policy or the processing of your personal data, please contact us at:
2. Scope
This policy primarily concerns our customers and any other individuals whose personal data we process. It applies to activities on our website www.eklipx.io and any digital applications we operate. It covers both existing and future data collection.
This policy does not extend to data processing by other companies. For example, data processed by third parties through social media, integrated plugins, third-party links on our website, or when we transfer personal data to external entities, including authorities. In these instances, refer to the respective company’s privacy policy.
3. Definitions
Personal data refers to any information related to an identifiable individual or entity. “Processing” encompasses all handling of personal data.
4. Processing and Use of Personal Data
We use personal data to maintain customer relationships, comply with legal obligations, and support our legitimate business interests. This includes managing payments and providing related services.
4.1 Application in Legitimate Business Activities
In the stages of contractual and pre-contractual engagement, we process personal data to establish and maintain commercial relationships with prospective and current customers, and to fulfil our commitments under existing contracts. Our activities in this regard include:
- Setting up and managing customer accounts, including creating account identifiers and assessing applications for new or expanded service use.
- Activities related to the purchase of goods and service utilization, including managing subscriptions, finalizing orders and contracts, overseeing deliveries, and handling invoicing.
- Undertaking accounting, auditing, and billing tasks.
- Processing payment transactions, managing related communications, and providing associated customer support.
For legal and regulatory compliance, we use personal data to confirm customer identities. This is essential for our responsibilities in monitoring and preventing fraudulent activity, adhering to legal requirements for reporting unlawful activities (such as anti-money laundering and “Know Your Client” or KYC regulations), and fulfilling our financial reporting duties.
Regarding legitimate commercial interests, we process personal data in line with our genuine business needs. The following points outline our legitimate interests, balanced against the rights and interests of the individuals whose data we process:
- Ensuring tracking and follow-up of our products with customers who order through our platforms.
- Monitoring, detecting, and preventing fraud and unauthorized transactions.
- Mitigating financial losses, addressing customer complaints, and reducing liabilities or other customer-related damages.
- Responding to inquiries, sending updates, and providing customer service.
- Promoting, analysing, and enhancing our products, systems, and tools, as well as developing new offerings.
- Managing, operating, and improving our platforms’ performance through performance analysis and digital asset optimization.
- Analysing and promoting our products and services.
- Conducting global analyses and developing business intelligence to sustain and protect our operations, make informed decisions, and generate activity reports.
- Sharing personal data with third-party service providers and business partners who assist in our ongoing operations and growth.
- Ensuring network and information security within our organization to maintain service quality.
4.2 Marketing and Event Communications
Subject to your consent, and according to the United Kingdom regulation, we may send marketing communications about EklipX Limited’s products and services, invite you to event or surveys, or engage for business-related purposes.
4.3 Targeted Online Advertising
Our platforms and selected third parties collect data on your online activities across various sites to deliver targeted advertisements that align with your interests. This involves using technologies like cookies and pixel tags, with your consent obtained as legally required. Our participation in advertising networks like Google AdWords, Doubleclick, and AdRoll means our ads may appear on third-party sites and apps, tailored based on factors such as demographics and browsing behaviour. These tools also help us evaluate our marketing effectiveness. For those preferring to opt out of targeted ads, the AppChoices app is available, though this might result in less relevant advertising.
5. Sharing of Personal Data
We respect your privacy and do not sell or disclose your personal data to marketers or unrelated third parties. We only share your information with trusted partners as detailed below:
- Intra-Group Sharing: We may transfer personal data among our group companies for service enhancement and internal administrative purposes.
- Service Providers: A select number of service providers have access to personal data to offer specific services on our behalf. These include payment processing, identity verification, web hosting, data analytics, IT infrastructure, customer support, email distribution, and auditing services. These providers are permitted to use or disclose personal data solely for service delivery or as required by law, and they are contractually bound to protect its confidentiality and security. Most of our service providers are based in the European Union or the United States.
- Commercial Partners: We share personal data with third-party business partners as needed to provide our services to customers.
- Customers and Authorized Third Parties: We share personal data with customers for account maintenance and service delivery. We also share data with parties who have received explicit consent from our clients for such sharing.
- Business Transactions: In events like restructuring, mergers, sales, joint ventures, transfers, or other changes to our company structure, we may share personal data with third parties to facilitate and execute these transactions.
- Legal Compliance and Harm Prevention: We disclose personal data when necessary to comply with laws or payment regulations, enforce our contractual rights, protect the rights, privacy, security, and property of EklipX Limited or others, and respond to requests from courts, law enforcement, regulatory bodies, or other public and government authorities, which may include entities outside your country of residence.
6. Cross-Border Data Transfer
Your personal data might be stored and handled in any nation where we operate or engage with service providers. This includes transferring your data to countries other than where it was originally collected, such as the United States. It’s important to note that these countries might have data protection regulations that differ from those in your home country. Nevertheless, we are committed to ensuring that any such data transfers adhere to the relevant data protection laws and that your personal data is safeguarded as outlined in our privacy policy. There might be situations where legal, law enforcement, regulatory, or security authorities in these countries are permitted to access your personal data.
We particularly focus on ensuring that third parties in countries outside the United Kingdom or the European Union meet the necessary legal standards. This includes transfers of personal data to the United States, where we ensure that the recipients comply with the American Privacy Shield framework, thus providing an adequate level of data protection.
7. Data Protection
Our commitment to data protection involves implementing security measures that are proportionate to the risks associated with processing personal data. We employ a range of organizational, technical, and administrative strategies to shield your personal data from unauthorized access, as well as from destruction, loss, alteration, or compromise. Access to your personal data within our company is limited strictly to employees who require it for their job functions. However, it’s important to recognize that no data storage or transmission system can be guaranteed to be entirely secure. If you suspect any compromise in the security of your interactions with us, such as a potential breach of your account, we urge you to contact us immediately.
For our customers, we retain your personal data for the duration of our service contract with you. Even after ceasing to provide services or if you decide to close your account, we may continue to store your personal data as necessary to fulfil legal, regulatory, and fraud prevention obligations. This includes complying with tax, accounting, and financial requirements, especially in cases where our agreements with financial partners mandate such retention. We adhere to applicable legal retention periods and storage obligations.
8. Your Rights
As a valued user of EklipX Limited’s services, you hold specific rights concerning the processing of your personal data, in line with UK data protection laws. These rights include:
- Right to Object: You can object to the processing of your personal data if it’s based on legitimate interests, including direct marketing activities like advertising emails.
- Right to Information: You’re entitled to transparent, clear, and comprehensive information about how we process your personal data and your associated rights. Feel free to reach out to us for any further details.
- Right to Access: You have the right to request, at no cost, information about all personal data we hold about you, allowing you to verify the personal data we are processing.
- Right to Rectification: If your personal data is inaccurate or incomplete, you have the right to have it corrected or completed and be informed about this correction.
- Right to Erasure: You can request the deletion of your personal data when it’s no longer necessary for the purposes it was collected for, if you withdraw consent, object to the processing, or if the processing is unlawful.
- Right to Restrict Processing: Under certain conditions, you can ask us to limit the processing of your personal data, which might mean temporarily halting data processing or removing your data from our website.
- Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, especially when the processing is based on consent or necessary for contract performance and carried out by automated means.
- Right to Withdraw Consent: If our processing is based on your consent, you can withdraw this consent at any time. This withdrawal will not affect the lawfulness of past processing based on your consent.
- Right to Lodge a Complaint: Should you believe that our processing of your data violates applicable data protection laws, you have the right to lodge a complaint with the appropriate supervisory authority.
At EklipX Limited, we’re committed to upholding these rights and ensuring your personal data is handled in compliance with UK data protection regulations (GDPR and others). For any concerns or inquiries regarding data protection, please contact us directly.
9. Use by Minors
Our services are not intended for minors. We do not knowingly collect data from individuals under the age of consent.
10. Contact Us
For any questions, please contact our data protection department at admin@eklipx.co.uk.
Copyright © 2024 EklipX Limited.