PRIVACY POLICY
CommStack Ltd (“we,” “our,” “us”) is the data controller for the CommStack Application and any associated pages including prefixes commstack, musketeer, or tether. This privacy policy explains how we collect, use, and protect your personal data when you use our services.
What Data We Collect
We may collect the following types of personal data:
-
Your email address, questions, queries, or feedback when you contact us.
-
Your address and location data when using location-based services to validate transaction sources.
-
Your email address and subscription preferences when you sign up for our email alerts.
-
Information on your engagement with our emails, such as whether they are opened and which links are clicked.
-
Your Internet Protocol (IP) address and details about your web browser version.
We conduct continuous monitoring and testing of our data protection measures to ensure effectiveness and identify potential vulnerabilities.
Why We Need Your Data
We collect your information for the following purposes:
-
To validate and confirm transaction details in compliance with regulatory requirements.
-
To make improvements to our services, such as site search and performance optimization.
-
To ensure our services are accessible and enable secure transactions.
-
allow you to our services and make transactions
-
To monitor site usage and detect security threats.
-
To analyze site performance and identify inefficiencies or JavaScript errors.
Legal Basis for Processing Your Data
The legal bases for processing your personal data include:
Legitimate Interests: Ensuring the security and integrity of our platform.
Public Interest Tasks: Activities performed in the public interest or in line with our regulatory obligations.
What We Do With Your Data
Your personal data may be shared with:
- Other government departments, agencies, and public bodies as necessary.
- Our technology suppliers, such as hosting providers.
We will not:
-
Sell or rent your data to third parties.
-
Share your data with third parties for marketing purposes
-
Use your data in analytics
We may disclose your data if legally required, such as by court order or to prevent fraud or other crimes.
Data Retention
We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law:
-
Email data will be kept until you unsubscribe.
-
Feedback data will be retained for 2 years.
- Access logs will be deleted after 120 days
Children’s Privacy Protection
Our services are not targeted at children under 13, and we do not intentionally collect data from this age group.
Where Your Data Is Processed and Stored
We design, build, and operate our systems to ensure your data is secure during processing and storage. All personal data is stored within a common trading area.
How We Protect Your Data
We have robust systems and processes to prevent unauthorized access or disclosure of your data, including various encryption levels. We also ensure that any third parties processing data on our behalf maintain strict data security standards.
Your Rights
You have the right to:
-
Request information on how your personal data is processed.
-
Obtain a copy of your personal data.
-
Correct any inaccuracies in your personal data.
- Object to how your personal data is processed.
-
Request erasure of your personal data if no longer justified.
-
Restrict processing under certain conditions.
To exercise these rights, please contact our Privacy Team.
Links to Other Websites
Our application may contain links to external websites. This privacy policy applies only to CommStack’s application, so we recommend reviewing the privacy policies of other websites when you visit them.
Contact Us or Make a Complaint
If you have any questions or concerns regarding this privacy policy or believe your data has been misused, please contact:
Privacy Team
support@commstack.co.uk
You can also contact our Data Protection Officer (DPO):
Data Protection Officer (DPO)
support@commstack.co.uk
You can also reach out to the Information Commissioner’s Office, an independent regulator, if necessary.
Changes to This Policy
We may update this policy from time to time. The ‘last updated’ date at the bottom will reflect any changes. Changes will take effect immediately. We will notify you of significant changes affecting how we process your data.
Last updated 18 November 2024