Privacy Policy

(Updated January 2019)

*This application (hereinafter application”) collects some personal data from its users. The data are collected and processed for the purposes set out below.

This policy covers the processing of personal data by Geartek, and its associated group companies (“Geartek”, “we” or “us”). Geartek is committed to protecting the privacy of your personal information whilst striving to provide the very best user experience. We want our websites to be safe and enjoyable for everyone.

Under the General Data Protection Regulation (GDPR) and related laws, we have a legal duty to protect the personal information we collect from you. GDPR says that ‘personal data’ is any information relating to a living individual who can be identified, either directly or indirectly, from that information. This could include your name, email address, postal address or telephone number, or information collected online and used to identify you.

For the purposes of GDPR, the ‘Data Controller’ for all Geartek services based in the UK is Geartek. For all services based in the United States, the Data Controller is Geartek Online. As Data Controller we are responsible for, and control, the processing of your personal data for the purposes of Geartek’s services.

We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any comments, concerns or questions, including any requests to exercise your legal rights, you can contact our DPO.

We encourage you to read this policy in full but please click on the links below for a shortcut to the following sections:

Contact details

Geartek’s Data Protection Officer can be contacted:
By email: [email protected]

What data do we collect and how do we use it?

The information you provide to us

When you participate in, access, purchase or sign up to any of our services, activities or online content, such as magazine subscriptions, newsletters, surveys, competitions or events, we receive personal information about you which we use to provide these services. This may consist of data such as your name, email address, postal address and telephone number. You will be able to select how we use your information for marketing purposes and you can update your marketing preferences at any time.

Ordering a product or service from us

If you order a product or service from us, you will need to provide certain personal details, including payment information, so the order can be fulfilled. In some cases, we will use or direct you to a third party which will collect this information from you and fulfil your order. For example, if you order a subscription to our publications, you may be able to access those products through a digital newsstand such as Apple Newsstand.

Attending an event

If you attend one of our events, awards or conferences we may receive personal information about you, including your name and contact details and any dietary and accessibility requirements.

The content you share with us

When you choose to share comments, photos, videos and other content with us, we may receive personal information about you.

Information collected online

We may collect information about how you use our websites or other content online, and the device you use to access the services. Please see What data is collected on our websites? and our Cookies Policy for further details about how we use this data and information on opting out.

eCommerce

Some of our websites contain links to products and services offered by third party websites. If you click on those links we will use data collected about your activity on our site to direct you to the third party site. We and the third party may collect data to show us that you have clicked on the link and whether you purchased any products and services. We may receive a commission from the third party if you link to their site from a Geartek site and purchase goods and services from them.

Email communications

We use web beacons in our emails to track the success of our marketing campaigns. If you open an email from us, we can see which of the pages of our website you visited. Our web beacons don’t store any information on your computer but, by communicating with our cookies on your computer, they can tell us when you have opened an email from us. We may keep track of the emails that we send you. We also keep a record of what communications you have selected to receive or not to receive. If you would like to opt out of receiving such emails you can unsubscribe at any time or contact our DPO.

Information from other sources

We may receive information about you from other sources (for example, missing information about your postal or email addresses) and add it to the personal information we hold about you. We may also receive data from other sources, such as our business partners, and social media platforms.

What lawful bases do we rely on for processing?

In order to process your personal data, we must have a lawful reason for doing so. GDPR sets out six lawful bases under which organisations can collect, use and store personal data. We rely on four of the lawful bases:

Necessary for the performance of a contract
If you are our customer, for example, a subscriber of a magazine or an attendee at one of our events, we will process your personal data on the basis that it is necessary for us to provide our products and services to you.

Consent
In some instances, we rely on your specific consent to process your personal information. This is where you have actively agreed and ‘opted-in’, for example, to receive marketing communications from us, and you have the right to withdraw your consent at any time.

Compliance with laws
We may have to process and share your personal data in order to comply with our legal obligations or to protect our rights or the rights of others. For example, we are required to collect certain information from you when processing your subscription payment for tax or financial reporting reasons.

Legitimate interests
In some situations, we rely on our legitimate business interests in order to collect and use your personal data. In these situations, we have conducted a balancing test to carefully consider the impact of the processing on your interests, rights and freedoms. We will only undertake the processing if we are satisfied there is no negative impact on you. We rely on Legitimate Interests for the following activities:

  • providing, maintaining, improving and developing our products and services;
  • sending direct marketing communications about our products and services to customers;
  • sending marketing communications related to the products and services of carefully selected companies in a business-to-business context;
  • managing suppression and unsubscribe requests;
  • researching publicly available business contact details;
  • managing certain aspects of our events;
  • analysing the use of our products and services;
  • using analytics to identify usage trends and determining the effectiveness of campaigns;
  • allowing you to comment on our sites;
  • dealing with queries and complaints;
  • personalising your experience on our sites;
  • identifying fraudulent behaviour and ensuring our websites and systems are secure.
  • If you object to our reliance on Legitimate Interests for any purpose please contact our DPO.

Who may we share your data with?

Agents
We use third parties to perform certain functions on our behalf including fulfilling orders, sending emails, organising and managing events, running competitions and promotions, conducting surveys or polls, removing repetitive information from customer lists, comment hosting, website analysis, data analysis and processing credit card payments. They will have access to your personal information if necessary to perform their function but they cannot use it or disclose it for any other purpose unless you have specifically given them consent to do so.

Aggregate information
We may share aggregated, non-personally identifiable information, such as demographics and website usage statistics, with advertisers, sponsors and other organisations.

Option to receive marketing information from associated third parties
Throughout the website, you may be given the opportunity to receive marketing information which may be of interest to you from associated third parties. Only if you elect to receive such information, will we share your personal information with our associated third parties and they are only permitted by us to use it for the purpose of providing you with the marketing information you have requested. The use of your personal information by such third parties will be subject to their own privacy policy and practices. We are not responsible for the privacy policy or practices of any such third party. If you do not want to receive marketing information from associated companies you can notify us of this as part of the registration process. You can stop receiving this information at any time by following the unsubscribe instructions on the correspondence you receive, by amending your marketing preferences, or by emailing our DPO at [email protected] giving your email address and details of the information you no longer wish to receive.

Products or services offered in partnership with third parties
Certain products or services available through this website may be provided to you in partnership with a third party. That third party may require you to disclose personal information to them in order to receive such products or services. If you request a product or service offered in partnership with a third party, the identity of the third party will be disclosed to you and your personal information will be transferred to that third party. The use of your personal information by that third party is subject to its privacy policy and practices and we are not responsible for this.

Group Companies
We only share your personal information with our group companies if you have elected to receive marketing information from them which may be of interest to you. They are only permitted by us to use it for the purpose of providing you with the marketing information you have requested. If you do not want to receive marketing information from our group companies you can notify us and you can stop receiving this information at any time by following the unsubscribe instructions on the correspondence you receive or by emailing our DPO at [email protected], giving your email address and details of the information you no longer wish to receive.

Third-Party Ad Serving and Audience and Traffic Measurement Services

We may use a third-party network advertiser to serve the advertisements on this website or we may use an audience or traffic measurement service to analyse the traffic on this website. Network advertisers are third parties that display advertisements based on your visits to this website and other websites you have visited. Third-party ad serving enables us to target advertisements to you for products or websites you might be interested in. Audience and traffic measurement services allow us to collect traffic and behavioural information from the website by monitoring anonymous visitor activity. This website’s advertisers, sponsors and/or traffic measurement services may themselves set and access their own cookies on your computer if you choose to have your cookies enabled in your browser. Please see What data is collected on our websites? and our Cookies Policy for further details and information on opting out.

Auditing organisations
We may share your personal data with the Audit Bureau of Circulations, a third-party auditing organisation. This is so they can verify aggregated statistics about circulation and usage of our products, or review our policies, processes and procedures for compliance with relevant standards. You can view their privacy policy by following this link: www.abc.org.uk/privacy-policy

What data is collected on our websites?

‘Cookies’ are small data files which are sent to your computer, mobile phone or other devices so that the website can remember information about your browsing activity. We use cookies on our websites for a variety of purposes:

Information storage and access
The storage of information, or access to information that is already stored, on your devices such as advertising identifiers, device identifiers, cookies, and similar technologies.

Content selection, delivery, reporting
The collection of information, and combination with previously collected information, to select and deliver content for you, and to measure the delivery and effectiveness of such content. This includes using previously collected information about your interests to select content, processing data about what content was shown, how often or how long it was shown, when and where it was shown, and whether you took any action related to the content, including for example clicking on content. This does not include personalisation, which is the collection and processing of information about your use of this service to subsequently personalise content and/or advertising for you in other contexts, such as websites or apps, over time.

Measurement
The collection of information about your use of the content, and combined with previously collected information used to measure, understand, and report on your usage of the service. This does not include personalisation, the collection of information about your use of this service to subsequently personalise content and/or advertising for you in other contexts, i.e. on other services, such as websites or apps, over time.

Personalisation
The collection and processing of information about your use of this service to subsequently personalise advertising and/or content for you in other contexts, such as on other websites or apps, over time. Typically, the content of the site or app is used to make inferences about your interests, which inform Geartek selection of advertising and/or content.

Ad selection, delivery, reporting

The collection of information, and combination with previously collected information, to select and deliver advertisements for you, and to measure the delivery and effectiveness of such advertisements. This includes using previously collected information about your interests to select ads, processing data about what advertisements were shown, how often they were shown, when and where they were shown, and whether you took any action related to the advertisement, including for example clicking an ad or making a purchase. This does not include personalisation, which is the collection and processing of information about your use of this service to subsequently personalise advertising and/or content for you in other contexts, such as websites or apps, over time.

Please see our Cookies Policy for more information.

Links to other websites

Our websites may include links to third party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and, when you leave our website, we encourage you to read the privacy notice of every website you visit. We may monetise some of these links through the use of third party affiliate programmes. Notwithstanding such affiliate programmes, we are not responsible for the content or privacy policies of these websites or for third party advertisers, nor for the way in which they use the information they collect about you.

Storage and retention of data

Your information is collected and stored on our secure systems, mainly based in the UK and European Economic Area (EEA). Where we use third party service providers to store data, we have appropriate agreements in place to ensure that your personal data is protected. Your personal data may be transferred to a country outside the EEA if, for example, a supplier or service is based outside the EEA. We will take all steps reasonably necessary to ensure your data is treated securely, including ensuring the location has been granted ‘adequacy status’ by the European Commission, or using our agreement with the supplier contains model contractual clauses approved by the European Commission, or ensuring the company we are transferring the data to is certified under the EU-US Privacy Shield.

We hold personal data for a variety of different purposes and the length of time we keep your data will vary depending on the services or products we are providing. We will only keep your data for a reasonable period of time, which is based on the purpose for which we are using your data. Once that purpose has been fulfilled, we will securely delete that data or anonymise your information (so that we, or anyone else, can no longer tell that data relates to you) unless we are required to retain the data for longer, due to legal, tax or accounting reasons.

Security

We are committed to protecting the personal data we hold. In accordance with GDPR, we adopt appropriate technical and organisational measures to help prevent unauthorised access to your information and ensure data is held securely. We also require any third parties to whom we may transfer personal data to have appropriate security measures in place. We ask third parties to complete Data Security Questionnaires so we can be sure they are a safe place for your data.

Protecting children’s privacy

Our products and services are for a general audience and not aimed at children. However, we recognise that some of our publications, for example in our Knowledge and Gaming portfolios, may appeal to a younger audience. We do not knowingly collect any personal information from children under the age of sixteen or send any marketing communications to children. If we are running a competition which might be of interest to children, our competition rules specify that a parent or guardian must consent to entry. If in Geartek, we collect personally identifiable information from children in connection with our products and services, we will do so in compliance with all relevant laws and regulations including, without limitation, obtaining parental consent where necessary. The Internet offers children wonderful educational and entertainment resources. Your guidance and involvement are essential to help ensure that children have a safe and rewarding online experience. We encourage you to visit https://www.google.co.uk/intl/en/safetycenter/families/start/ for more information about keeping your family safe online. If you are a parent or guardian and are concerned that we may be processing personal data related to your child, please contact our DPO.

Your rights

You have the right to request:

  • Access to the personal data we hold about you.
  • The correction of your personal data when incorrect, out of date or incomplete.
  • The erasure of your personal data.
  • That we stop using your personal data for direct marketing if you object to it.
  • That we stop any consent-based processing of your personal data after you withdraw that consent.
  • The right to request a transfer of your data to another service provider.

Your right to withdraw consent
Whenever you have given us your consent to use your personal data, you have the right to change your mind at any time and withdraw that consent.

Where we rely on our legitimate interest
In cases where we are processing your personal data on the basis of our legitimate interest, you can ask us to stop for reasons connected to your individual situation. We must then do so unless we believe we have a legitimate overriding reason to continue processing your personal data.

Direct marketing
You have the right to stop the use of your personal data for direct marketing activity through all channels, or selected channels. We must always comply with your request. Remember, you can always stop direct marketing messages by clicking on an unsubscribe link in any of our emails or getting in touch with us.

Exercising your rights
If you wish to exercise any of your rights please contact the Data Protection Officer:
By email: [email protected].

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). If you have authorised a third party to submit a request on your behalf, we will ask them to prove they have your permission to act. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request. We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. If this is the case, we will notify you and keep you updated.

No fee usually required
You will not usually have to pay a fee to access your personal data (or to exercise any of the rights), however, we may charge a reasonable fee if your request is unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances. If we choose not to action your request we will explain to you the reasons for our refusal.

Information Commissioner’s Office
If you feel you need to, you also have the right to make a complaint at any time to the ICO, the UK data protection supervisory authority (www.ico.org.uk).

Policy changes

We may amend this Privacy Policy from time to time, so we encourage you to check it periodically. If we make material changes we will endeavour to provide you with appropriate notice before such changes take effect.

Further information

General information about data protection may be found at the Information Commissioner’s website: https://ico.org.uk/

For more information about cookies please visit http://www.allaboutcookies.org/ and for more information about how to manage cookies please refer to our Cookies Policy.

Information about direct marketing may be found at the Direct Marketing Association’s website: https://dma.org.uk/

To unsubscribe from all emails contact: [email protected]

DATA PROCESSING OWNERSHIP

KINDS OF DATA

The Data that may be collected by this application are; cookie, IP, email, various types of data, password, email, manage pages and insights.

The personal data may be freely inserted by the user or the data subject or collected automatically when using the application. Any use of cookies by the application or the owners of third party services used by the application, unless stated otherwise, serves to identify the user and remember his/her preferences for the sole purpose of providing the service required by the user.
Failure to provide certain personal data, in particular, navigation data, by deactivating the browser’s cookies may make it impossible to surf or for the website to provide its services.

The personal data collected may regard both the user and third parties whose data the user provides.
The user assumes responsibility for the personal data of third parties published or shared through the application and declares that (s)he has the right to communicate or broadcast them, thus relieving the owner of all responsibility towards third parties.

MODE AND PLACE OF PROCESSING THE DATA OBTAINED

Method of processing

The data controller processes the data of the interested parties and users in a lawful and proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of the data. Processing is carried out using computers and/or telematic means, with organizational methods and logics strictly related to the stated purposes.

In addition to the owner, in some cases, access to the data may be available to external parties (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies). The updated list of managers may be requested by the owner at any time.

Place

The Data are processed at the headquarters of the data controller unless stated otherwise in the rest of this document.

Conservation time

The data are kept for the time necessary to perform the service requested by the user, and the user can always ask for their suspension or removal.

THE USE OF THE COLLECTED DATA

The data concerning the user or the data subject are collected for the following purposes: analytics, mailing list/newsletter, comment services, social networks, email management, social applications, handling payments, interaction with external social networks and platforms, Interaction with support and feedback platforms, monitoring the application, registration and authentication and traffic optimization and distribution.

The kinds of personal data used for each purpose are given in the specific sections of this document.

The use of Data for additional purposes by the owner, may in some cases, and for legal purposes, require specific consent by the user or the data subject.

DETAILED INFORMATION ON THE PROCESSING OF PERSONAL DATA AND THE SERVICES PROVIDED BY THIRD PARTIES

GOOGLE ANALYTICS

Google analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the data collected to track and examine application use, to prepare reports on an application’s activities and share them with other Google services.
Google may use the data collected to contextualize and personalize the ads of its own advertising network.

Place of Data Processing: USA
More information: www.google.com/intl/en/analytics/privacyoverview.html
Personal data collected: Cookie and browsing and usage data.

MAILING LIST / NEWSLETTER (THIS WEBSITE)

Following registration to the mailing list/newsletter, the user’s e-mail address is automatically added to the contact list of recipients of the newsletter and information of a commercial or promotional nature concerning the website.

Personal data collected: Email.

CONTACT FORM (THIS WEBSITE)

By filling in the contact form with his/her data, the user authorizes the application to use these details to reply to requests for information, quotes or any other kind of request as indicated by the form’s header.

Personal data collected: First Name, Last Name, Email, Address and Phone number.

ADDTHIS (ADDTHIS INC.)

AddThis is a service provided by Clearspring Technologies Inc., which displays a widget that allows interaction with social networks and external platforms as well as sharing the contents of the application.
Depending on the configuration, this service can display widgets belonging to third parties such as the managers of social networks where interactions are shared. In this case, also the third parties that provide the widget will be informed of interactions and navigation data on the pages where this service is installed.

More Information: http://www.addthis.com/privacy/privacy-policy
Personal data collected: cookie and browsing and usage data.

FACEBOOK SOCIAL BUTTONS/WIDGETS (FACEBOOK)

Facebook Social button is a service run by Facebook Inc., a company that complies with the Safe Harbor Privacy Policy Framework initiative, guaranteeing the handling of personal data in compliance with European security standards. The service makes it possible to interact with the social network via this website. Facebook, through the user click, acquires information about his/her/its visit to the site. Facebook does not share any information or data in its possession with the site or the data controller.

Place of Data Processing: USA
More information: www.facebook.com/privacy/explanation.php
Personal data collected: Cookie and IP.

TWITTER SOCIAL BUTTONS/WIDGETS (TWITTER)

This is a service supplied by Twitter, a company that complies with the Safe Harbor Privacy Policy Framework initiative, guaranteeing the handling of personal data in compliance with European security standards. By simply clicking on the Twitter push-button on the site (“Twitter Button”), the service makes it possible to share a liking of the site on Twitter.com, without having to exit the website’s page. In this way, the user links his/her/its Twitter profile to the website and makes this information accessible to anyone on the web.

Place of Data Processing: USA
More information: twitter.com/privacy
Personal data collected: Cookie and IP.

GOOGLE+ +1 BUTTON AND SOCIAL WIDGETS (GOOGLE)

The Google+ +1 button and social widgets are services allowing interaction with the Google+ social network provided by Google Inc.

Personal data collected: cookie and browsing and usage data.

ADDITIONAL INFORMATION ABOUT DATA PROCESSING

Legal protection

The user’s personal data may be used for legal purposes by the owner of the application in court or in the stages leading to possible legal action arising from its improper use or that of related services by the user.

Additional information

Specific information may be shown on the pages of the site concerning particular services or the processing of data provided by the user or by the data subject.

Maintenance

The user’s personal data may be further used in ways and for purposes required for application maintenance.

System logs

For operation and maintenance purposes, this application and any third party services it uses may collect system logs, i.e., files that record interaction – including navigation. They may also contain personal data, such as IP addresses.

Information not contained in this policy

More information on processing personal information may be requested from the owner at any time.

The Rights of Data Subjects

Those persons to whom the data refer have the right, at any time, to know whether their data has been stored and can consult the data controller to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the owner of the processing system.

Changes to this privacy policy

The application reserves the right to make changes to this privacy policy at any time by giving notice to its users on this page, and by ensuring analogous protection of the personal information in all cases. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom.

DEFINITIONS AND LEGAL REFERENCES

Personal information or Data

Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.

Browsing and Usage Data

Information collected automatically from the site, including the IP addresses or domain names of the computers utilized by the users who connect to the site, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the visitor, the various time details per visit (e.g., the time spent on each page) and the details about the path followed within the site with special reference to the sequence of pages visited, and other parameters about the operating system and the user’s IT environment.

User

Means the individual user of the application’s services or products.

Data subject

The legal or natural person to whom the personal data refer.

Data processor

The natural person, legal person, public administration or any other organization, association or organization designated by the data controller for the personal data processing system.

Data controller

The natural person, legal person, public administration or any other body, association or organization with the right, also jointly with another data controller, to make decisions regarding the purposes, and the methods of processing of personal data and the means used, including the security measures concerning the operation and use of this site.

Email

Provides access to the user’s primary email address

Manage pages

Enables the application to retrieve access tokens for pages and applications that the user administrates.

Insights

Provides read access to the Insights data for pages, applications, and domains the user owns.

LEGAL INFORMATION

Notice to European users: this privacy statement has been prepared in fulfilment of the obligations under Art. 10 of EC Directive n. 95/46/EC, and under the provisions of Directive 2002/58/EC, as revised by Directive 2009/136/EC, on the subject of cookies.

This privacy policy exclusively regards this application.

HOW DO I DISABLE COOKIES?