Privacy Notice Policy
LAST REVISION: 10/03/2023
Introduction
The PandaCard website ("the Website") is owned by ENSKY LTD ("We", "Us" or "Our"). We are a limited company registered in England with the office at 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ. Our registration number is: 14582106.
This policy constitutes a legally binding agreement made between you (the User), whether personally or on behalf of an entity (“You”) and ENSKY LTD (referred to as either "the Company", "We", "Us" or "Our" in this Agreement).
ENSKY LTD has an appointed data protection officer to assist us in upholding our commitment to individual rights. Our data protection officer can be contacted through email at data@ensky.co.uk for our website www.Pandacard.co.uk or www.ensky.co.uk , as well as by post 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ.
For the sake of simplicity in this Policy, all of these methods of collection will be referred to as the “Website”.
Personal Data includes your name, address, e-mail, telephone number, IP address, or any other identifier.
ENSKY LTD only uses personal data for the reasons in which we have collected. We will only ever use your personal data for another reason if we reasonably consider another purpose in which to use that data which is compatible with the original reason in which the data was collected.
Please read this policy carefully before accessing or using the Website. By accessing or using any part of the Website, you agree to become bound by the terms and conditions of this agreement. If you do not agree to all the terms and conditions of this agreement, then you may not access the Website or use any services.
If we are required to make such a decision, we will always notify you. We may also at times be required by law to process your personal data without your knowledge.
To find out more about the reasoning behind any decision ENSKY LTD has made to process your data for a new purpose, get in touch.
You may receive marketing communications from ENSKY LTD if you have:
- Requested information from us
- Purchased goods or services from us
- Provided us with explicit consent for us to send you marketing communications
- Not opted out of receiving marketing communications
Legal basis for processing personal data
To comply with Our legal responsibilities under GDPR, We are processing personal data. as outlined below:
Action | Data/Information type | Legal grounds for processing |
Processing the delivery of products or services ordered, and actively managing the payments and debt recovery processes | (1) Personal identifiable information (2) Contact information (3) Financial information | (1) To complete the contractual agreement (2) Required for our legitimate interest of recovering any funds owed to us after the delivery of products or provision of services |
Updating customers on any amendments to our terms and conditions or privacy policy | (1) Personal identifiable information (2) Contact information | (1) To complete the contractual agreement (2) Required to satisfy legal requirements |
Registering a new customer | (1) Personal identifiable information (2) Contact information | (1) To complete the contractual agreement |
Protecting our business and websites by performing website tests, applying security updates, assessing any cybersecurity threats and analysing our databases | 1) Personal identifiable information (2) Contact information (3) Website and Technical information | (1) Required to satisfy legal requirements (2) Required for our legitimate interest of protecting our websites and business from malicious usage, to prevent cybercrime, complete technical website audits and increase our network security |
Emailing customers to request feedback or participation in a prize draw | (1) Personal identifiable information (2) Contact information (3) Product usage information (4) Marketing information | (1) To complete the contractual agreement (2) Required to satisfy legal requirements (3) Required for our legitimate interest of studying how customers interact with our products and services offered, and how these can be further enhanced |
You are responsible for maintaining the security of your account and login details, and you are fully responsible for all activities that occur under the account and any other actions taken in connection with your account. You must immediately notify Us of any unauthorized uses of your account or any other breaches of security. We will not be liable for any acts or omissions by You, including any damages of any kind incurred as a result of such acts or omissions.
Marketing and Communications
ENSKY LTD may send you marketing communications if you have given us your contact details and opted-in to marketing communications.
You can opt-out of these marketing communications and manage your preferences at any time.
Our Company Obligations
As a data controller, ENSKY LTD is legally responsible for the data you provide us with. In honouring that responsibility, we pledge to uphold our commitments under GDPR and the Data Protection Act 2018.
We will only ever use your data:
- In ways that are both fair and legal
- As described within this policy
- In ways that are necessary for the purposes described
In addition, ENSKY LTD processes the personal data you submit to us or we collect as a data processor. As part of this role, ENSKY LTD takes all necessary precautions to secure the personal data we collect, process and store.
We may occasionally use the data you provide us with for marketing, relationship management or account management activities. These activities are designed to ensure you have adequate information about other products and/or services we offer, that we have reason to believe you may be interested in. You have the right to opt-out of these activities at any time.
Third-Parties
ENSKY LTD never shares your personal data with third-parties unless those parties have been explicitly mentioned within our privacy statement.
Our Security
As part of our ongoing commitment to GDPR, ENSKY LTD will report any security breaches or attempted breaches to the relevant authorities within 24 hours. We will subsequently contact all those affected by the breach within 72 hours of its occurrence.
Legitimate interests
As part of the Data Protection Act 2018, ENSKY LTD observes the right to share selected information with third-parties that use data for non-marketing purposes. This could include (but is not limited to) organisations that provide credit assessments, identification services and fraud prevention activities.
Contact us
ENSKY LTD is committed to upholding your rights. If you have any questions, comments or concerns about this privacy policy or wish to exercise your rights in relation to your personal data, please email Us at data@ensky.co.uk.