Effective as of January 30,2022.
1) Name and contact details of company as well as company data protection officer
This data protection information applies to data processing processes at:
Phone: +44 (0) 1494 720 420
Phlexglobal has a company data protection officer who can be contacted at firstname.lastname@example.org
2) Collection and storage of personal data as well as type and purpose of data usage
When visiting our website
When you visit our website www.phlexglobal.com, the browser on your device automatically sends information to the server on our website. This information is temporarily stored in a so-called log file. The following information is recorded without your active submission thereof and stored until it is automatically deleted:
The mentioned data will be processed by us for the following purposes:
The legal basis for data processing is Art. 6 §1 of the GDPR. Our legitimate interest follows from the purposes listed above for data collection.
When registering for our newsletter
If you have expressly consented according to Art. 6 §1 of the GDPR, we will use your email address to send you our newsletter on a regular basis.
When signing up for promotional news such as newsletters (which includes service & industry news), the data you provide will be used exclusively for this purpose.
We require your name and a valid email address for an effective registration. To verify that a registration is carried out by the owner of an email address, we use the “opt-in” or “double opt-in” procedure, depending on country specific requirements. The data will only be used for sending the newsletter and will not be passed on to third parties.
You can revoke your consent to the storage of your data and its use for sending newsletters at any time. In every newsletter you will find a corresponding link. You can also unsubscribe at any time directly on our company’s homepage or send us your request via the contact details given at the end of this document.
If you no longer wish to receive advertising oriented towards your interests, you can object at any time free of charge and with effect for the future, by using the unsubscribe function or sending an email to email@example.com.
When using our contact form
If you have any questions, we offer you the opportunity to contact us using the contact form provided on the website. A valid business email address is required so that we know who has sent the request and to allow us to respond. Supplementary information can be provided voluntarily. The data will be processed for the purpose of contacting you according to Art. 6 §1 of the GDPR based on your voluntary consent.
Your business contact information which is collected by the contact form is stored and processed for promotional communication from Phlexglobal. By ticking the box on the contact form, you have given consent to use your data for promotional services. This allows Phlexglobal to store, process and use your data for promotional communication (provision of Whitepapers, Newsletters, Webinars, Promotional Materials, Events). If you no longer wish to receive advertising oriented towards your interests, you can object at any time and with effect for the future by using the unsubscribe function or sending an email to firstname.lastname@example.org.
When filling out a form on our website, the following mandatory data is collected and processed / saved:
The purpose of collecting and processing this data is to be able to process and answer your contact request.
In addition, there is an option to provide further personal data. These optional data are:
The additional data that you optionally provide serves to improve communication with you and make it more specific. We want to make sure that the information we send to you is of relevance.
When registering or downloading content
As part of our Thought leadership approach, we have made it our mission to share knowledge by providing high-quality content to our contacts. This content can be in form of webinars, trainings, whitepapers, or other resources. We ask our contacts to enter their personal credentials before accessing these files (so-called ‘gated content’). The personal data we capture is used in order to learn about a visitor’s interests and informing them of additional content that might be of relevance.
When filling out a form to access gated content, the following mandatory data is collected and processed / saved:
In addition, there is an option to provide further personal data. These optional data are:
3) Data disclosure to third parties
Your personal data will not be transmitted to third parties for purposes other than those listed below.
We will only pass on your personal data to third parties if:
We forward your personal data to the following companies for the above-mentioned purposes:
Salesforce UK Limited, Village 9, Floor 26 Salesforce Tower, 110 Bishopgate, London, EC2N 4AY, UK
Hubspot Ireland Ltd, Ground Floor, Two Dockland Central, Guild Street, Dublin 1, Co. Dublin, Ireland
Zoom Video Communications Inc, 55 Almaden Blvd, 6th Floor, San Jose, CA 95113, USA
A transfer to service providers in the USA takes place only if the purpose definition requires this and then exclusively on the basis of the standard contractual clauses in the currently valid version, as well as in compliance with further guarantees. This ensures that your data will also be processed in the USA in accordance with data protection regulations.
Duration of storage
Insofar as no explicit storage period is specified during the collection, the personal data will be deleted insofar as this is no longer necessary to fulfil the purpose of the storage, unless statutory retention obligations (e.g. commercial and tax retention obligations) prevent deletion.
Like many other websites, our company also uses “cookies”. Cookies are small text files that are transferred from a website server to your hard drive.
These are files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not damage your device nor do they contain any viruses, Trojans, or other malware.
The data processed by cookies is required for the mentioned purposes to protect our legitimate interests and those of third parties pursuant to Art. 6 §1 of the GDPR. Most browsers automatically accept cookies.
We differentiate between cookies that are essential for the technical functions of the website and optional cookies.
In order for you to be able to specify your desired data protection settings for visiting our website as individually as possible, we give you the opportunity to set your preferences according to the following categories.
Necessary cookies enable core functionality. The website cannot function properly without these cookies and can only be disabled by changing your browser preferences.
Analytical cookies help us to improve our website by collecting and reporting information on its usage.
These cookies may be used to help us build a profile of your interests. They do not store directly personal information but are based on uniquely identifying your browser and internet device. Please note no personal data is stored by Phlexglobal.
5) Analysis tools
The tracking measures listed below are used by us and carried out based on Art. 6 §1 of the GDPR. With the tracking measures used, we want to ensure that our website is designed to meet requirements and is continually optimized.
We use the tracking measures to statistically record the use of our website and to evaluate page visits for the purpose of optimizing our offer. These interests are considered justified and are in accordance with the before mentioned provision. The respective data processing purposes and data categories can be found in the corresponding tracking tools.
For the purpose of demand-oriented design and continuous optimization of our pages, we use Google Analytics, a web analysis service provided by Google Inc. (https://about.google/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter “Google”). In this context, pseudonymized user profiles are created and cookies (see section 4) are used. The information generated by the cookie about your use of this website (Browser type/version, the operating system used, Referrer URL, Host name of the accessing computer (IP address), Time of the server request are transferred to a Google server located in the U.S. and stored there. The information is used to evaluate the use of the website, to compile reports on the website activities and to provide further services associated with the use of the website and the Internet for the purposes of market research and demand-oriented design of these Internet pages.
This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf of the company. Under no circumstances will your IP address be merged with other data from Google. The IP addresses are anonymized so that an assignment to a specific individual is not possible (IP masking).
If you delete the cookies in this browser, you must set the opt-out cookie again. Further information on data protection in connection with Google Analytics can be found in the Google Analytics Help (https://support.google.com/analytics/answer/6004245?hl=en).
Google AdWords Conversion Tracking
We use Google Conversion Tracking to statistically record and evaluate the use of our website for the purpose of optimization. Google AdWords will set a cookie (see paragraph 4) on your computer if you have accessed our website via a Google ad.
These cookies expire after 30 days and are not used for personal identification. If the user visits certain pages of the AdWords customer’s website and the cookie has not yet expired, Google and the customer can recognize that the user has clicked on the ad and has been redirected to this page. Each AdWords customer receives a different cookie. Cookies can therefore not be traced via the websites of AdWords customers. The information collected using the conversion cookie is used to compile conversion statistics for those AdWords customers who have opted for conversion tracking. AdWords customers see the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive any information that personally identifies users.
The optionally provided personal data will be used to improve communication with you. For this purpose, a current profile of our visitors is created as part of progressive profiling.
You have the option to object to this at any time. The objection must be sent to email@example.com
Phlexglobal uses Tracked URLs alone or in conjunction with cookies to compile information about visitors’ usage of the websites and interaction with emails from the Phlexglobal. For example, Phlexglobal may place a tracked URL in marketing emails that notifies us when you click on a link in the email that directs you to one of our sites. Phlexglobal uses this functionality to operate and improve the website and email communications.
6) Social Media Plug-ins
We use a social plug-in for the social network Twitter and LinkedIn on our website based on Art. 6 §1 of the GDPR in order to raise the awareness of our company. The underlying advertising purpose is to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for data protection-compliant operation must be guaranteed by the respective provider.
The integration of this plug-in by us takes place in the way of the so-called two-click method in order to protect our website visitors in the best possible way.
Our website contains plugins of the short message network of Twitter Inc. integrated. You can recognize the Twitter plugins by the Twitter logo on our site. An overview of tweet buttons can be found here (https://about.twitter.com/resources/buttons).
When you access a page of our website that contains such a plugin, a direct connection is established between your browser and the Twitter server.
Our website contains plugins of the short message network of LinkedIn Inc. integrated. You can recognize the LinkedIn plugins by the LinkedIn logo on our site. An overview of LinkedIn buttons can be found here (https://brand.linkedin.com/downloads).
When you access a page of our website that contains such a plugin, a direct connection is established between your browser and the LinkedIn server.
7) Rights of the data subject
You have the right:
As a rule, you can contact the supervisory authority at your usual place of residence or workplace or at our company headquarters.
8) Right to object
If your personal data are processed on the basis of legitimate interests pursuant to Art. 6 §1 of the GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, on the grounds relating to your particular situation or the objection is directed against promotional materials. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.
If you wish to exercise your right of withdrawal or objection, simply send an email to firstname.lastname@example.org
9) Data security
All sensitive interactions on our website are encrypted in transit with TLS version 1.2, or 1.3 and 2,048 bit keys or better. HubSpot leverages several technologies to ensure stored data is encrypted at rest. Platform data is stored using AES-256 encryption. User passwords are hashed following industry best practices, and are encrypted at rest. Certain email features work by providing an additional level of both at-rest and in-transit encryption.
Encryption keys for both in transit and at rest encryption are securely managed by the HubSpot platform. TLS private keys for in transit encryption are managed through their content delivery partner. Volume and field level encryption keys for at rest encryption are stored in a hardened Key Management System (KMS). Keys are rotated at a frequency that’s dependent upon the sensitivity of the data they’re encrypting. In general, TLS certificates are renewed annually.
We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
10) Accuracy and amendment of this data protection declaration
This data protection declaration is currently valid and effective as of January 2023.
Due to the further development of our website and offers above or due to changed legal or official requirements, it may become necessary to amend this data protection declaration. You can access and print the most current data protection declaration at any time on the website at https://www.phlexglobal.com/privacy-policy.