This policy (together with the terms of service) sets out:
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
For the purposes of European Economic Area data protection law, (the “Data Protection Law”), the data controller is: Gout Scout Ltd, 78 Sutton Court Drive, Rochford, SS4 1JQ under company number 13548959.
Our Data Protection Officer is Randal Whitmore who can be contacted at email@example.com.
We are committed to the GDPR principle of data minimisation, and only collect the personal data that we need to be able to provide our services to you. We will collect and process the following personal data from you:
You give us information via the Site or the App or by corresponding with us by phone, e-mail or otherwise. It includes information you provide when you register to use the App, subscribe to our Service, participate in discussion boards or other community and social media functions on or via the Site or App, enter a survey, submit a query, and when you report a problem with the Site or App. It also includes any responses to any questionnaires that you provide.
The information you give us may include your name, e-mail address, login and password details.
To interact fully with the App you will need to provide information about your health, gout symptoms, and uric acid measurements.
Any information about your health is classed as sensitive personal data and we ensure that additional safeguarding measures are in place to protect this information. Our lawful basis for processing this sensitive personal data is your consent. You can withdraw your consent at any time – for more information please see “Your rights”. Please note that if you do not consent to our processing of your sensitive personal data, you will not be able to fully engage with the App.
We will automatically collect information from you each time you visit the Site or use the App. This includes:
Technical information may include the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform.
Information about your visit may include the full Uniform Resource Locators (URL), clickstream to, through and from the Site (including date and time), page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page, and social media handle used to connect with our customer service team.
Location data – we may collect information through the Site as to your real time location to provide location services where requested or agreed to by you in order to deliver content, advertising or other services that are dependent on knowing where you are. This information may also be collected in combination with an identifier associated with your device to enable us to recognise your mobile browser or device when you return to the Site or the App.
Delivery of location services will involve reference to one or more of the following: (a) the coordinates (latitude/longitude) of your location; (b) look-up of your country of location by reference to your IP address against public sources; and/or (c) your Identifier for Advertisers (IFA) code for your Apple device, or the Android ID for your Android device, or a similar device identifier.
This is information we receive about you:
In this case we will have informed you when we collected that data if we intend to share your data internally and combine it with data collected on this site. We will also have told you for what purpose we will share and combine your data.
We are working closely with third parties (including, for example, advertising networks, analytics providers, and search information providers). We will notify you when we receive information about you from them and the purposes for which we intend to use that information.
We use information held about you in the following ways:
Take steps in order to enter into any contract or carry out our obligations arising from any contract entered into between you and us including:
If you are an App user, with your consent, process your health data to:
We may also use the personal data that you provide to pursue out legitimate interests in optimising the App experience by:
Providing you with information about our Services and our commercial partners’ products that we feel may interest you. We will only do this if you have given your consent to receiving marketing material from us at the point we collected your information, where required by law or otherwise in our legitimate interests provided these interests do not override your right to object to such communications. See ‘Our promotional updates and communications’ section.
Ensure in our legitimate interests that:
We will use this information in our legitimate interests, where we have considered these are not overridden by your rights. Our legitimate interests are the effective running of the Site and the App.
If you have any queries or objections about any of the ways we use your personal data, please contact us at firstname.lastname@example.org.
Where permitted in our legitimate interest or with your prior consent where required by law, we will use your personal information for marketing analysis and to provide you with promotional update communications by email, SMS/iMessage or in-app about our products and services. You can object to further marketing at any time by selecting the “unsubscribe” link at the end of all our marketing and promotional update communications to you, or by sending us an email to email@example.com.
The information gathered will be used solely for marketing in connection with Gout Scout’s business and will not be shared with any other third parties.
The data that we collect from you is stored within the European Economic Area (“EEA”).
Protecting the safety of children when they use the Internet is important to us. The Site and App is intended for use only by persons who are at least 18 years of age. By using our Services, you confirm to us that you meet this requirement. If you are under the age of 18, you confirm you have received permission from your parent or guardian before using our Services or sending us personal information.
If you are under the age of 13 your parent or guardian must consent on your behalf where we ask for consent in relation to the use of your information.
If you suspect that a child under 18 is accessing the App and providing personal data without their parent or guardian’s consent, please contact us at firstname.lastname@example.org so that we can investigate and remove/delete the data where necessary.
All information you provide to us is stored on our secure servers and is encrypted between your device and any external host storage to keep it safe. Where we have given you (or where you have chosen) a password which enables you to access the App, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to the Site or App; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
The Site may, from time to time, contain links to external sites. We are not responsible for the privacy policies or the content of such sites.
We do not carry out any automated decision making using your personal data that would have a legal or similarly significant effect on you.
We retain personal data for the length of your subscription if you are an App User. We will archive your personal data one year from the date of your last login to the App, but you will still be able to reactivate your account. If you do not reactivate your account within 5 years of it being archived, we will delete all of the personal information that we hold about you. We may also retain aggregate or de-identified information beyond this time for research purposes and to help us develop and improve our Services. You cannot be identified from aggregate information retained or used for these purposes.
You have the right under certain circumstances:
Your right to withdraw consent:
Where the processing of your personal information by us is based on consent, you have the right to withdraw that consent without detriment at any time by contacting us at email@example.com. You can also change your marketing preferences at any time as described in ‘Our promotional updates and communications’ section;
You can exercise the rights listed above at any time by contacting us at firstname.lastname@example.org. We strive to respond to your requests within one month and will let you know if we are unable to meet this timeframe. If your request or concern is not satisfactorily resolved by us, you may approach your local data protection authority, (see http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.html).
The Information Commissioner is the supervisory authority in the UK and can provide further information about your rights and our obligations in relation to your personal data, as well as deal with any complaints that you have about our processing of your personal data.
© Gout Scout 2021