Our Commitment to Privacy
Your privacy is important to us. To better protect your privacy, we provide this policy explaining our online information practices and the choices you can make about the way your information is collected and used. To make this Policy easy to find, we make it available via the Resources link at the bottom of all pages.
Along with our business and internal computer systems, this website is designed to comply with the following national and international legislation with regards to data protection and user privacy:
The Information We Collect:
This Policy applies to all information collected or submitted on the Xigen website. On some pages, you can order products, make requests, and register to receive materials. The types of personal information collected at these pages are:
- Email address
- Phone number
- Credit/Debit Card Information – We are PCI DSS compliant with Worldpay (see third-party data processors below)
The Way We Use Information:
We use the information you provide about yourself when placing an order only to complete that order. We do not share this information with outside parties except to the extent necessary to complete that order.
We use the information you provide about someone else when placing an order only to ship the product and to confirm delivery. We do not share this information with outside parties except to the extent necessary to complete that order.
We use return email addresses to answer the email we receive. Such addresses are not used for any other purpose and are not shared with outside parties. We undertake not to retain any of your personally identifiable data any longer than necessary. Data will be retained for the purposes already mentioned in this policy until such time as it becomes no longer valid or you specifically request it’s removal.
Finally, we never use or share the personally identifiable information provided to us online in ways unrelated to the ones described above without also providing you an opportunity to opt-out or otherwise prohibit such unrelated uses. We will always provide you with a simple way to later opt out later should you change your mind.
We never transfer any of your personally identifiable information outside of the EU.
Personal information that this website collects and why we collect it:
This website collects and uses personal information for the following reasons:
Site visitation tracking
Our website uses software that tracks your IP data. This information is supplied to us from Whoisvisiting.com. Whoisvisiting.com is a service offered by Whoisdata Limited and uses only information available from the public domain.
When you visit our site, we may automatically log your IP address, a unique identifier for your computer or other access device. We will not use your IP address to identify you, the individual, in any way
Hotjar.com – The following information may be collected related to the End User’s device and browser. For a sampling of visitors, our servers automatically record information which is collected from Hotjar Enabled Sites.
This data includes:
- device’s IP address (captured and stored in an anonymized format as described on Hotjar website for more information please click this link: Technical Information);
- device screen resolution;
- device type (unique device identifiers),operating system, and browser type;
- referring domain;
- pages visited;
- geographic location (country only);
- preferred language used to display the webpage;
- Mouse events (movements, location and clicks)
- date and time when website pages were accessed;
Like most websites, this site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website.
Although GA records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer’s IP address which could be used to personally identify you but Google do not grant us access to this. We consider Google to be a third-party data processor (see Third Part Processors below).
The legal basis for processing personal data
These are the following legal reasons for processing personal data:
- For the performance of a contract with You or our Client
- For the purpose of furthering Xigen’s legitimate interests including providing better products, services, websites and applications, to operate our websites other applications
- For marketing purposes where you opted in to receive marketing communications from us. We will process your personal data and provide you with marketing communications in line with the preferences you have provided
Contact forms and email links
Should you choose to contact us using the contact form on our Contact Us Page, none of the data that you supply will be stored by this website or passed to / be processed by any of the third-party data processors defined in section below. Instead the data will be collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). Our SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted using SHA-2, 256-bit cryptography before being sent across the internet. The email content is then decrypted by our local computers and devices.
We will report any unlawful data breach of this website’s database or the database(s) of any of our third-party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.
Our Third-Party Data Processors:
The data controller of this website is: Xigen Limited, a UK Private Limited Company with company number: 4418380
Whose registered and operating office is:
Our Commitment to Data Security:
To prevent unauthorized access, maintain data accuracy, and ensure the correct use of information, we have put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information we collect online.
Our Commitment to Children’s Privacy:
Protecting the privacy of the young is especially important. For that reason, we never collect or maintain information at our website from those we actually know are under 16, and no part of our website is structured to attract anyone under 16.
How You Can Access or Correct Your Information:
You can access all your personally identifiable information that we collect online and maintain by logging in to the client area. To have your information removed from our system please contact firstname.lastname@example.org from the email used to login to the site. We use this procedure to better safeguard your information.
To protect your privacy and security, we will also take reasonable steps to verify your identity before granting access or making corrections.
How to Contact Us:
Should you have other questions or concerns about these privacy policies, please call us at 01234 619001 or send us an email at email@example.com.
In the extremely unlikely event that you are dissatisfied with any way that we handle your data requests, you are able to raise your issue with the ICO.
We will never use or retain this information in order to send marketing communications to you.