At Orbit we believe it is important for our customers and users to understand what information we collect, how we use it and who it is shared with. We are therefore committed to protecting your privacy and being transparent about our practices.
Owner and Data Controller
Orbit is a product published by d3i Limited, Newport House, Newport Road, Stafford, Staffordshire, ST16 1DA, England.
Contact email address: firstname.lastname@example.org.
Information we collect and why
In order to provide you with our Services, we collect certain information from you when you use or interact with our Services. We will hold the above information for as long as is necessary in order to provide you and our customers with our services, deal with any specific issues that you may raise or otherwise as is required by law or any relevant regulatory body.
Information we collect about you:
Personal information we may collect include: name; email address; job role or description; employer name; industry; telephone numbers; fax numbers; address details; social media details; demographics; profile photos; other contact information and any other information you may provide about yourself or others through our Services or to which you provide us with access via third-party platform.
When you use our Services or open communications (such as emails), some information is automatically collected from devices (e.g. mobile, computer, laptop, tablet) used to visit or use our Services including, but not limited to, operating system, access times, unique device identifiers, service provider, IP address, screen resolution, browser type, language, referring site and other data about your device that we use to provide the services or as otherwise described in this Policy ("device information"). We also collect information about your usage and activity on our Services using certain technologies, such as cookies, web beacons and other technologies.
If you use our Services, we may receive and store your generic location (such as city or neighbourhood) for the purposes of analytics. We may collect location information based on, for example, your IP address, to provide anonymous analytical information on the geographical distribution (city level) of our visitors and users around the world.
By using the location based features in-app your location may be stored on our servers to facilitate the discovery features. This includes check-in features which will store the current event or location you currently reside.
We collect certain anonymous analytical information when you use our Services, including information about your interaction with the Services, including the actions you take on the Services.
We may also collect certain information through the use of "cookies". Cookies are small files that your browser places on your computer. We may use session cookies, persistent cookies, and other tracking technologies to better understand how you interact with our Services, to monitor usage by our users and web traffic routing on our Services, and to improve our Services. Most Internet browsers automatically accept cookies. You can instruct your browser, by editing its options, to stop accepting cookies or to prompt you before accepting cookies from the websites you visit.
How we use your information
We use information held about you (and information about others) in the following ways:
- to provide you with our services;
- to provide people you have interacted with our services;
- to ensure the content on our website is presented in the most effective manner for you and your computer or mobile device; and
- to notify you about changes to our service.
How we share your information
For our effective operation and to deliver our Services to you we may share information with Third Parties.
What information we share, who we share it with and why
Personal information stored on our service is only shared with those you choose to share it with through the use of our Service. Contact information is only disclosed to those you choose to connect with.
You can review, update and delete your connections and all Personal Information stored on Orbit by claiming your profile.
An approximate location (on a city or neighbourhood level) may be collected and shared with Google Analytics (Google) and, if using our iOS application Apple Analytics (Apple), to provide us with anonymous analytical information about our users and visitors. When using our mobile application precise location is shared with Google (for searching nearby places and venues - such as shops and restaurants).
Device and Usage information
Device and usage information may be shared with Google Analytics (Google), Apple Analytics (Apple) and Firebase (a Google service) for analytics and crash reporting. Device and Usage information may also be collected by Third Party SDK's when connecting or interacting with them.
We may disclose your personal information to any partner of Orbit and/or a member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.
We may also disclose your personal information to third parties:
- in the event that we sell or buy any business or assets;
- if Orbit or substantially all of its assets are acquired by a third party; or
- if we are under a duty to disclose or share your personal data in order to comply with any legal obligation or to protect the rights, property, or safety of Orbit, our customers, or others.
Third Party Services
In addition to the Services we provide directly, we also use third party service providers (collectively referred to as "Third Party Services") who operate their own Privacy Policies. The Third Party Services we use we deem important to our effective operation.
So you can find out more about the services we use, and in turn those you may use whilst using and interacting with our Services, we have compiled a list for your reference.
The Third Party Services we use:
- Apple Analytics (iOS) - (if enabled by user) for the collection of anonymous analytical data to help us better understand how our customers and users use our Services.
- Firebase (All) - provides us with authentication services and analytics.
- Google Analytics (All) - for the collection of anonymous analytical data to help us better understand how our customers and users use our Services.
- Google Places API (All) - provides us with the ability to obtain nearby place information to facilitate our discovery features, maps and location lookups.
- Fabric (iOS, Android) - for the capture and collection of crash logs to help us identify bugs in our Services.
- MailGun (All) - for the delivery of transactional emails.
- Zendesk (All) - for the provision of support desk services, helping us track and manage correspondence with our customers and users.
Data we collect
Information about you may be transferred to, or accessed by, entities located around the world as described in this Policy. Some of these entities may be located in countries that do not provide an equivalent level of protection as your home country. By using our Services, and providing us information about you, you consent to the international transfer of information about you to the above parties.
We take reasonable measures to protect any personal information we may hold about you in an effort to prevent loss, misuse, and unauthorised access, disclosure, alteration, and destruction. However, despite our efforts, no security measures are perfect or impenetrable and no method of data transmission can be guaranteed against any interception or other type of misuse.
Sensitive information sent between your browser and our website, and your device and Third Party Services, is transferred in encrypted form using Secure Socket Layer ("SSL"). When transmitting sensitive information, you should always make sure that your browser can validate the SSL certificate.
Data Choices, Access and Correction
Email - If you do not want to receive marketing and promotional emails from us, you may click on the "unsubscribe" link in the email to unsubscribe and opt-out of marketing email communications. Alternatively, to the extent that applicable law requires your prior opt-in consent to receive marketing and promotional emails, you can choose not to opt-in. Please note that even if you opt-out of receiving marketing communications from one or all of our Services, we may need to send you service-related communications.
Data Access and Correction
If you believe we are storing information that you would like access to or information corrected, please contact us on email@example.com.
Our Services are not for use by children under 13 and we do not knowingly collect personal information from children under 13. If we learn that we have collected personal information of a child under 13, we will delete such information.
Residents of the EU and UK
If you are a resident of the European Union ("EU") or the United Kingdom ("UK"), you may have certain additional rights, as detailed below. For purposes of this notice, "personal data" has the meaning ascribed in the EU General Data Protection Regulation ("GDPR").
To process your personal data, we rely on the following legal bases:
- For the performance of a contract we have with you (for example, if you use our Services).
- For compliance with a legal obligation to which we are subject (such as when we are obliged to comply with lawful requests from competent authorities such as law enforcement).
- For the purposes of our legitimate interests (such as tailoring your experience on our Services), provided that such processing does not outweigh your rights and freedoms.
To the extent a specific element of our processing of your personal data relies upon your consent, you may withdraw such consent at any time with future effect. Such a withdrawal will not affect the lawfulness of the processing prior to the consent withdrawal.
If you wish to object to the processing of your personal data on the basis of legitimate interest and no opt-out mechanism is available to you directly, please contact firstname.lastname@example.org.
Additional Data Privacy Rights
You may have these rights under applicable law:
Access - You may request that we confirm whether or not we are processing your personal data. If we are, you may request a copy of your personal data, which we will provide free of charge, together with information about the processing, such as the purposes of the processing and the categories of personal data concerned. However, this is not an absolute right and the interests of other individuals may restrict your right of access. We may decline or charge a reasonable administrative cost for requests which are excessive, particularly if repetitive.
Rectification - You may edit some of your personal data when you have access to do so. You may also ask us to change, update or fix your personal data in certain cases, particularly if it's inaccurate.
Erasure - You may request the erasure of your personal data.
Restrict Processing - You may ask us to restrict the processing of your personal data under certain circumstances, such as if your Personal Data is inaccurate or unlawfully held.
Data portability - You may ask for a copy of the personal data you provided to us in a structured, commonly used and machine-readable format and you may have the right to transmit this data to another entity.
Object - You may object to the processing of your personal data on grounds relating to your particular situation under certain circumstances , for example for direct marketing. If you have a right to object and you exercise this right, your personal data will no longer be processed for such purposes by us, unless there are overriding compelling legitimate grounds for the processing or as otherwise provided under applicable law.
Please note that we may need to retain certain information for record keeping purposes, to complete any transactions that you began prior to your request, or for other purposes as required or permitted by applicable law.
Personal data may be transferred to and processed by recipients that are located inside or outside the European Economic Area ("EEA"). For recipients located outside of the EEA, some are certified under the EU-U.S. Privacy Shield and others are located in countries with adequacy decisions and, in each case, the transfer is thereby recognised as providing an adequate level of data protection from a European data protection law perspective. Other recipients might be located in countries which do not provide an adequate level of protection from a European data protection law perspective and for which we will base the transfer on appropriate safeguards, such as standard data protection clauses adopted by the European Commission or by a supervisory authority, approved codes of conduct together with binding and enforceable commitments of the recipient, or approved certification mechanisms together with binding and enforceable commitments of the recipient.
Changes to this Policy