Last updated - May 9, 2022
We understand the value of data and the importance of protecting it. This (“Privacy Policy”) sets out details about the information that we collect, and how we process, store and share it, both online and offline.
We urge you to read this Privacy Policy so you can understand our views and practices regarding our use of your information, our commitment to protecting all data that we receive and how you can be involved in this process. If this does not answer all of your questions, or if you have any feedback, please contact us via email at hello@graph.uk
This website (the “Site”) is operated by Graph Digital Ltd of 199 Bishopsgate, Spitalfields, London EC2M 3TY (“Graph”), also referred to in this Privacy Policy as “we” or “us”.
This Privacy Policy should be read together with our Cookie Policy and Terms of Use. Unless otherwise defined in this Privacy Policy, defined terms used have the same meaning as in the Terms.
Details of the information we collect through our Site, and how we process it, are below:
Information you provide to us. We may collect identifiers and Personal Information about you, for example, when you subscribe to our email newsletter or contact us via our Site, or by corresponding with us by phone, e-mail or online chat. This may include identifiers and contact information, Personal Information (such as name, e-mail address, phone number, occupation), professional or employment-related information, internet or other electronic network activity information.
When you communicate with Graph, we will store all communications we receive unless otherwise requested by you. If you are submitting information on behalf of another individual, you are responsible for obtaining appropriate consent, including consent to share and transfer any Personal Information across borders.
Information we collect automatically. When you browse our site, we may automatically collect the following information about your visit and your usage of our services.
Third Parties. We use and permit select third parties to use automatic data collection tools to collect information using standard website tracking technologies such as cookies and other similar tracking technologies. These can be disabled by you. For more information about our use of cookies and other tracking technologies, the purposes for which we use them, as well as how to opt-out, please refer to our Cookie Policy.
Information we acquire from a third party. To enhance our ability to provide relevant marketing, offers, and services to you, we may receive information about you from third parties, such as public databases, partners, lead generation services, and social media platforms. We collect information from other sources to help us correct or supplement our records such as customer enrichment services, and to improve the quality or personalization of our services to you. This may include identifiers and contact information, Personal Information, professional or employment-related information, internet or other electronic network activity information, and any inferences which may be drawn from the above information. In each instance, we will only accept information from third parties where those third parties can demonstrate they have received all necessary consents to share such information with us.
We may use the information collected for the following purposes:
We may share the information collected for the following purposes:
Sharing with third-party service providers. We retain third-party service providers to manage or support certain aspects of our business. These third-party service providers may be located globally and may provide services to us such as website hosting, data analysis, advertising and marketing services, technology infrastructure, customer service, email delivery, and other similar services. Our third-party service providers are contractually bound to safeguard any Personal Information they receive from us and they are prohibited from using such Personal Information for any purpose other than to perform the services as instructed by Graph.
Sharing with ad technology providers. We may provide the information we collect to ad technology providers so that they may recognize your devices and deliver interest-based content to you. The information may include your name, city, email, device ID, or other identifiers in encrypted form. The providers may process the information in hashed or anonymized form. These providers may collect additional information from you, such as your IP address and information about your browser or operating system; may combine information about you with information from other companies in data sharing cooperatives in which we participate, and may place or recognize their own unique cookie on your browser. These cookies may contain demographic or other data in an anonymized form. We may use remarketing tags (e.g., Google, DoubleClick, Twitter) to allow our partners to advertise products which you have browsed on our site. However, we do not share any information with these advertisers and third parties that will directly identify you. By clicking on those advertisements, you are communicating with those advertisers and other third parties directly (including the ad networks, ad-serving companies, and other service providers they may in turn use).
Engaging in advertising. We may provide you with personalized promotional offers (in accordance with your privacy preferences regarding Graph services and other selected partner websites). For example, you might see an advertisement on a partner site for a product or service that you have recently viewed on our Site. This may involve the use of cookies. We also partner with third parties to display advertising within the Graph services and we contract with service providers to place advertisements on websites owned by third parties. Sometimes this will be achieved by sharing your Personal Information as described in the Cookie Policy.
Engaging in corporate transactions. Circumstances may arise where we may buy or sell assets or businesses as part of a sale, merger or change in control of Graph. In such transactions, we may disclose or transfer your information, in accordance with this Privacy Policy, to prospective or actual purchasers or receive your information from sellers. Any entity which buys us or part of our business will have the right to continue to use the information we have collected and stored, but only in the manner set out in this Privacy Policy.
Complying with law / protecting legal rights. We may be required to disclose your information to comply with applicable laws (including laws outside of your country of residence), regulations, court orders, government and law enforcement requests, including national security or other law enforcement requirements. Additionally, if we reasonably believe that it is necessary or appropriate, we reserve the right to use or disclose your information to allow us to pursue available claims or remedies and protect our legal rights, property or the safety of our employees, users or others, to the extent allowed by applicable law. This includes exchanging information with companies and organizations for the purposes of fraud detection.
We will only collect and process your Personal Information in the ways described in this Privacy Policy when we have a reason to do so. In accordance with applicable laws, Graph relies on the following reasons for processing Personal Information:
Consent (where you have given consent). We process certain Personal Information based on the consent you provided when you submitted your information. Where we rely on your consent, you have the right to withdraw or decline your consent at any time, such as consenting to receive marketing communications.
Contract (where processing is necessary for the performance of a contract with you, i.e. to deliver the Graph product or services you or your organization have purchased). When information is processed under contract, you are able to terminate the contract at any time and request that information is returned to you and/or deleted.
Legitimate interests of Graph or any third parties (where we rely on legitimate interests, you have the right to object at any time). Legitimate interests include enabling us to conduct internal business services, such as audits, mergers and acquisitions, reporting, and improving our products and services. Personal Information will only be processed on these grounds when doing so does not outweigh your rights.
Compliance with laws (where we are required to process information to comply with applicable laws). If we ask you to provide Personal Information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your Personal Information is mandatory or not (as well as the possible consequences if you do not provide your information).
We have implemented and maintain technical, administrative and physical security measures designed to protect Your Information from unauthorized access, disclosure, misuse, alteration, accidental loss or destruction. To demonstrate our commitment to protecting Your Information, we maintain a number of compliance certifications in accordance with strict regulatory and industry standards.
We regularly review our security procedures to maintain the confidentiality, integrity, availability and resilience of all data both online and offline. These security procedures and measures vary based on the sensitivity of the information that we collect, process and store and the current state of technology but include firewalls, data encryption, physical access controls and information access authorization controls. We take steps to regularly monitor our systems for vulnerabilities and to ensure that we only share information with those who need to know it.
However, no website or internet transmission is completely secure. While we strive to protect your data, we cannot guarantee that unauthorized access, hacking, data loss or a data breach will never occur, and we cannot warrant the security of any information that you provide to us. You are responsible for securing and maintaining the privacy of any password(s) and account registration information uses with Graph and verifying that the information we maintain about you is accurate and current. We are not responsible for protecting any information that we share with a third-party based on an account connection that you have authorized.
We require that our third-party service providers and partners agree to keep the information we share with them confidential and to use the information only to perform their obligations in the agreements we have in place with them. Graph has implemented internal policies to ensure that such parties are required under contract to maintain privacy and security protections which are at least as consistent with our own policies and practices.
Graph is a global company and your information is stored on regional servers depending on your location and the locations of the servers of the companies we hire to provide services to us based on contractual requirements.
We will retain your Personal Information for the length of time needed to fulfil the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law, or unless the information is deleted pursuant to the exercise of your rights. We may also retain cached or archived copies of information provided to us. The deletion of your Personal Information and other use of our Site may result in the deletion and/or de-identification of Other Information that is retained by us.
Graph is a global company with business processes, management structures and technical systems that cross national borders. This means that your Personal Information may be transferred internally to our staff and externally to third parties (including partners and service providers) across international borders for the purposes described in this Privacy Policy.
Graph transfers data only in accordance with legally approved transfer mechanisms that are appropriate under applicable data protection laws, including the European Union Model Clauses and the Privacy Shield. Once the United Kingdom is no longer a European Union Member State, Graph shall continue to comply with the Privacy Shield program, or any successor framework that may apply to the UK.
We provide you the ability to exercise certain controls and choices regarding our collection, use and sharing of your information. Please be aware that, if you do not allow us to collect your information from you, we may not be able to deliver certain products and services to you, and some of the Graph services may not be able to take account of your interests and preferences.
In accordance with applicable law, you may be entitled to exercise your rights and choices as follows:
Devices and browsers. Some of our mobile services use your device’s location information. You can adjust the setting of your mobile device at any time to control whether your device communicates this location information.
Communications from Graph. We may use your information to communicate with you by email, including sending you transactional or marketing emails. Graph enables you to opt-out of marketing communications. Some communications you may receive from us are not considered marketing emails, such as communications related to sales transactions, events for which you have registered, project and support-related information, patches and fixes, security alerts, disclosures to comply with legal requirements, and (where permitted by law) quality assurance surveys. Such transactional emails are not subject to general opt-out. You can tell us to stop sending you marketing emails by clicking the unsubscribe link included at the bottom of Graph’s marketing emails. If you have any issues unsubscribing, you may contact us directly at privacy@graph.uk.
Cookies. Some web browsers (including mobile web browsers) provide settings that allow you to control or reject cookies or to alert you when a cookie is placed on your computer, tablet or mobile device. Although you are not required to accept cookies, if you block or reject them, you may not have access to all features or functionalities available through our services. Please go to our Cookie Policy to learn more on how you can manage your cookie preferences or opt-out of cookies and other website data collection tools. Additionally, depending on where you are located, you may have other privacy rights, including in Europe and California. You may exercise your rights above by contacting us at privacy@Graph.uk and we will process your request in accordance with applicable laws.
From time to time, we may change this Privacy Policy to accommodate new technologies, industry practices, regulatory requirements or to reflect any changes in how we process information. Any changes to this Privacy Policy will be effective when we post the revised Privacy Policy on this website. Your use of our Site or subsequent communications following these changes means you accept the revised Privacy Policy.
If you believe your Personal Information has been used in a way that is not consistent with this Privacy Policy or your specified preferences, or if you have further questions related to this Privacy Policy, please contact our team at the address below or by emailing: privacy@graph.uk
Graph Digital Ltd
199 Bishopsgate
Spitalfields
London EC2M 3TY
Phone: +44 203 291 2900
Email: privacy@graph.uk
Complaints and dispute resolution. For European residents, we have chosen the EU Data Protection Authorities (EU DPAs) to serve as an independent recourse mechanism for dispute resolution arising from collection, use, and retention of Personal Information transferred from EU member countries and the United Kingdom to the United States.
Tell us what you would do with a cohesive digital strategy, enhanced customer experience, and accelerated growth.
Book a strategy call