Effective Date: 7 November 2024
Last Updated: 7 November 2024
This Privacy Policy explains how we collect, use, store, protect, and share your personal data when you use any of our Applications, our website (goautomate.io), and/or our Community Forum (community.goautomate.io) (collectively referred to as "our Services"). We are committed to protecting your privacy and handling your data in an open and transparent manner. This policy applies to all users of our Services.
This Privacy Policy should be read in conjunction with our Terms of Use, our Cookies Policy, our Acceptable Community Conduct Policy and, if you are a user of one of our Applications, our Terms of Service.
We are committed to protecting your privacy and processing all personal data in accordance with the UK Data Protection Act 2018 and the UK GDPR (being the retained law version of the General Data Protection Regulation ((EU) 2016/679) as it forms part of the law of England and Wales).
Workflow Science Limited (trading as GoAutomate) of 29 Wood Street, Stratford-Upon-Avon, Warwickshire, CV37 6JG, United Kingdom (referred to as "we," "us," or "our" in this policy) is the data controller responsible for the processing of your personal data.
Contact Information:
Address: Workflow Science Limited of 29 Wood Street, Stratford-Upon-Avon, Warwickshire, CV37 6JG, United Kingdom
We collect and/or process the following types of personal data:
Identity and Account Information: Usernames, full name, postal address, telephone number, email addresses, and passwords (stored in encrypted form);
Technical Data: IP addresses, device information, browser type and version;
Usage Data: Login dates and times, pages visited, features used;
Communication Data: Information you provide when contacting us, e.g. for support; and
Forum Data: Content you post on the Community Forum.
We collect this information only as necessary for the operation and security of our Services. We do not collect any Special Category Data and nor do we collected or process personal data relating to children.
We use your personal data exclusively for the following purposes:
Creating and managing your user accounts across our Application, website, and Community Forum;
Providing you with access to the Application and features of our Services;
Ensuring the security and proper functioning of our Services;
Responding to your inquiries and support requests; and
Sending essential service notifications.
Our data processing is strictly limited to these purposes.
We process your personal data on the following legal bases under the UK GDPR and Data Protection Act 2018:
Performance of a Contract: Processing necessary to provide you with our Services as requested;
Legitimate Interests: Managing and securing user accounts, preventing fraud, and ensuring the proper functioning and security of our Services;
Legal Obligation: Compliance with applicable laws and regulations; and
Consent: Where we have requested and you have provided specific consent for particular processing activities. If you have provided your consent for particular processing then you may withdraw your consent at any time by contacting us at the details above.
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected:
Your account data will be retained for as long as your account remains active.
Following account deletion, we will retain your data for six (6) months for backup purposes
Certain data may be retained for up to twelve (12) months after account deletion for security purposes, fraud prevention, and legal compliance
Technical logs are automatically deleted after four (4) weeks.
We limit sharing of your personal data to the following circumstances:
Service Providers: We may share data with third-party service providers who help us operate our Services (e.g., cloud hosting providers, security services). These providers are bound by contractual obligations to keep personal data confidential and use it only for the purposes for which we disclose it to them.
Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
Business Transfers: If we are involved in a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal data.
We do not sell, rent, or lease your personal data to third parties.
We implement appropriate technical and organisational measures to protect your personal data, including:
Encryption of personal data at rest and in transit;
Access controls and authentication procedures;
Regular security assessments and vulnerability testing;
Staff training on data protection and security; and
Physical security measures for our premises and systems.
While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
Under UK data protection laws, you have the following rights:
Right to Access: You can request copies of your personal data.
Right to Rectification: You can request that we correct inaccurate or complete incomplete data.
Right to Erasure: You can request that we delete your personal data in certain circumstances.
Right to Restrict Processing: You can request that we limit the processing of your data in certain circumstances.
Right to Data Portability: You can request that we transfer your data to another organization or directly to you.
Right to Object: You can object to our processing of your personal data in certain circumstances.
To exercise any of these rights, please contact us using the contact details in Section 2. We will respond to your request within one month. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not complied with data protection laws. You can read further about your rights under UK data protection laws on the ICO's website (ico.org.uk).
Our Services use cookies and similar tracking technologies to distinguish you from other users and to enhance your experience:
Essential Cookies: Required for the operation of our Services
Analytical/Performance Cookies: Allow us to recognize and count visitors and see how users move around our Services
Functionality Cookies: Enable us to personalize content for you
You can set your browser to refuse all or some browser cookies or to alert you when websites set or access cookies. However, if you disable or refuse cookies, some parts of our Services may become inaccessible or not function properly.
For more detailed information about the cookies we use, please see our separate Cookie Policy.
We store and process your data within the United Kingdom and the European Economic Area (EEA). Some of our sub-processors are based outside of the UK and EEA and as such your personal data may be transferred outside of those areas. Where that happens, we ensure that there is a secure and legally compliant contractual basis for such transfers e.g. the ICO's International Data Transfer Agreement or amended Standard Contractual Clauses issued by the EU Commission.
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by:
Posting the updated policy on our website;
Displaying a notice within our Applications; and/or
Sending an email to the address associated with your account.
The date the Privacy Policy was last revised is identified at the top of this page. You are responsible for periodically visiting our website and this Privacy Policy to check for any changes.
If you have any questions about this Privacy Policy or our data practices, please contact us using the details in section 2, above.
We are committed to resolving any complaints about our collection or use of your personal data. If you have a complaint, please contact us using the details above.
