Policy key definitions
- "I", "our", "us", or "we" refer to Inward Strange and / or its business related company Rise Against Robots.
- "you", "the user" refer to the person(s) using this website.
- GDPR means General Data Protection Act.
- PECR means Privacy & Electronic Communications Regulation.
- ICO means Information Commissioner's Office.
- PII means personally identifiable information
- Cookies mean small files stored on a users computer or device.
Key principles of GDPR
Processing of your personal data
Under the GDPR (General Data Protection Regulation) we control and / or process any personal information about you electronically. We will continue to process your PII (Personally Identifiable Information) until you withdraw consent, or it is determined your consent no longer exists. We do not share your information with third parties, unless necessary for functionality.
All PII controlled or processed by us is for the purpose of functionality, communication and transaction between us and you, as well as the processing of information for the purposes of providing a better user experience. Under no circumstance is your PII used for marketing or advertising purposes outside of Inward Strange activities, or outside of what is given consent for.
Your individual rights
Under the GDPR your rights are as follows. You can read more about your rights in details here.
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- The right not to be subject to automated decision-making including profiling
You also have the right to complain to the ICO www.ico.org.uk if you feel there is a problem with the way we are handling your data. We handle subject access requests in accordance with the GDPR.
- Session id, used to associate a logged in user with their data
- Saving the responses to consent requests for non-logged in visitors
- A security cookie used to identify the user and prevent cross site request forgery attacks
- Recording the time of the last page load. Used in calculating active sessions
- Date of the user’s last visit, used to notify the user of missed content
- To log the last 5 pages viewed, encrypted for security. Typically used for form or error message returns
- Basic user information used to autofill forms
Inward Strange uses its own internal analytics to collect and process information on its visitors to this site. All information collected is anonymous, and no PII is controlled or processed by Inward Strange, other than your IP address used. We place a tracking cookie with a randomly-generated ClientID in your browser. This ID is anonymised and contains no personal or identifiable information (such as name, email etc).
We use analytics to track aggregated website behaviour, such as what pages you look at and for how long. This information is important to us for improving the user experience and determining site effectiveness. No data collected is shared with any third party. We do not use any third party analytic tracking, such as Google Analytics, or allow any third party to collect and process data from this website.
We store and process information provided by you which is associated with your user account. This information is used to provide services, and transactions, such as; the purchasing of products, contests and direct interaction. All provided information is securely stored, and no information is passed to any third party unless where necessary for functionality (e.g postal service), and where explicit consent is given by you. User information may include;
- your name
- your email address
- your home address
You have the right and means to edit or retract this information at any time managed through your user account. Additional information may be stored and processed that is associated with your user account, but not directly provided or editable by you. This may include;
- account status
- account activity
You have the right and means to delete your account at any time at your discretion. Deleting your account will remove all stored information associated with your account from our database.
No credit card or other payment information is processed or stored by Inward Strange. Payment processing is undertaken by our Payment Gateways using secure encryption. This process bypasses our system and we do not have access to your credit card or other payment information.
Under the GDPR we use the consent lawful basis for anyone subscribing to our newsletter. The data collected and stored is used only for the purpose of serving communication from us to you. We do not share your information with any third party, allow any third party to contact you, or send you any communications on behalf of any third party. Inward Strange processes emails internally, and do not use a third party EMS (email marketing service) to store mailing list data. Inward Strange uses a third party SMTP server that sends email over an encrypted connection and which does not permanently store email addresses or other PII of its users.
Email marketing messages that we send may contain tracking beacons, tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages record data such as; times, dates, opens, clicks, forwards. Such data, within its limitations will show the activity each subscriber made for that email campaign. We do not however collect and store your IP address and cannot personally identify you. The purposive of this data is to track the effectiveness of email marketing and is not accessible to or shared with any third party.
Any email marketing messages we send are in accordance with the GDPR and the PECR. We provide you with an easy method to withdraw your consent or manage the information we hold about you at any time. Unsubscribing from our mailing list will remove your information from our database. See any email marketing messages for instructions on how to unsubscribe or manage your preferences. We hold the following information about our mailing list subscribers.
- Email address
- Subscription time & date
Data security and protection
We ensure the security of any personal information we hold by using secure data storage technologies and precise procedures in how we store, access and manage that information. Our methods meet the GDPR compliance requirement.