Privacy Policy

Contents
- Introduction - Personal data collected - Cookies and IP Address Tracking - What we use your personal data for and the legal basis we rely on - Contractual obligation (GDPR Article 6(1)(b)) - Legitimate interests (GDPR Article 6(1)(f) - Changing your marketing preferences - When we share your personal data - Who we share your personal data with - Keeping your data safe - Transferring personal data outside of the UK and EU - Retention of information - Your rights - If you would like to... - Data Protection Officer - Notice to End Users - Other websites
Introduction
The One Point offers a wide range of managed technology services including IT Support, Data Back Up, Cloud Hosted VoIP, Telecommunications, Call Recording Storage, Email, CRM, Mobile Apps, Mobile Phones, Mobile Device Management, Broadband and Internet Connectivity and Network Management.
Personal data collected
To provide these services to your business and for us to operate effectively and provide you the best experiences with our products and services we need to collect and use certain information about you, or individuals who work within your business. We don’t need to collect too much from you, but what we do need is:

- Your business name and contact details (address, central telephone number, etc);
- Contact details of the individual we are liaising with at your business (name, telephone number, email address);
- Any other information an individual from your business chooses to tell us.

You provide some of this data directly, such as when you create an account, administer your organisation’s account, submit an enquiry via our website, meet with a member of our sales and marketing or engineering teams or contact us for technical support.

We may also get some of it by recording how you interact with our products by, for example, using technologies like cookies (see below regarding cookies).
Cookies and IP Address Tracking
Our website uses “cookies”, small text files that can be read by a web server in the domain that put the cookie on your hard drive. We may use cookies to store your preferences and settings, help you with signing in, provide targeted ads and analyse site operations. For further information visit www.aboutcookies.org or www.allaboutcookies.org.

You can set your browser to not accept cookies and the above websites tell you how to remove cookies from your browser. However, in a few cases, some of our website features may not function as a result.

We also use IP Tracking to monitor businesses and organisations that visit our website. The information we receive from this service contains no personal information.
What we use your personal data for and the legal basis we rely on
The One Point uses the data we collect to operate our business and provide you with the products and services we offer, which includes using data to improve our services and personalise your experiences. We also may use the data to communicate with you, for example, informing you about your account, security updates and new product information. We may also use and retain your data to assist our sales cycle (i.e. Financial Information or Credit Reference Agencies).

The legal basis we rely on are:
Contractual obligation (GDPR Article 6(1)(b))
The services we provide to you are done so under contract. If you are unable to provide us with the required information to fulfil the contract, we may not be able to provide the service to you and the arrangement may be terminated.
Legitimate interests (GDPR Article 6(1)(f)
GDPR allows us to use legitimate interests for direct marketing purposes. We have undertaken a legitimate interest assessment, which balances our business purposes for the processing against your right to privacy, and the final outcome justifies our use of legitimate interests for this purpose. For customers who have either enquired about our services with a view to purchasing them, or are existing customers using our services, or are lapsed customers who have used our services, it would not be an unreasonable expectation to receive information from us about our services, new products, events and news, etc.

This also complies with e-Privacy laws, currently the Privacy & Electronic Communication Regulations 2003, (which governs how a business can undertake electronic direct marketing) and allows us to use soft opt-in for email marketing for prospective and existing customers.

We always give you the opportunity to object to receiving marketing communications from us, when we first collect your personal data and with every marketing communication thereafter.
You can change your marketing preferences at any time by:
- Clicking on the unsubscribe button in our marketing emails;
- Completing our online contact form stating your marketing preferences for contact or opt out completely;
- Telephone us on 01482 420150;
- Write to us at The One Point, The View, Bridgehead Business Park, Hessle, Hull HU13 0GD; or
- Email us at info@theonepoint.co.uk
Where necessary we share your personal data:
- to complete any transaction or provide any product you have requested or authorised;
- when required by law or to respond to a legal process;
- to protect our customers;
- to protect lives (in the case of lone worker);
- to proactively communicate via legitimate interest;
- to maintain the security of our products; and
- to protect the rights or property of The One Point.
We share your personal data with:
- affiliates and subsidiaries controlled or associated with The One Point;
- vendors contracted correctly to work on our behalf;

The One Point will not sell your data to an unrelated party.

If we feel any request for contact would be better served by one of our sister companies (such as Think 360 Limited, N3i Limited and Loop Network Service Limited), we will pass your information to them to fulfil that request. For example: if an enquiry for our services is made and a more suitable company, based on location or expertise is identified, that company will make initial contact with you.
How we keep your personal data safe
The One Point take the security of any personal data that we hold incredibly seriously. Our measures to safeguard your personal data include:

- Encrypting devices and servers where appropriate
- Password access to computers and mobile devices
- Secure premises
- Restricting access to those staff who need to see the information
- Internal policies and procedures on data protection and information security
- Staff training

As well as ensuring our internal systems and databases are protected through best-practice techniques, we also hold many certifications demonstrating our competency in maintaining the highest levels of security standards. We are happy to share this information upon request.

Where we use third-party businesses to provide our services to you we undertake relevant assessments of their business to establish their level of compliance with GDPR and only use those that provide sufficient guarantees to implement appropriate technical and organisational measures to safeguard personal data.
Transferring personal data outside of the UK and EU
The One Point will not, unless otherwise specifically agreed in writing, transfer any data outside of the UK. All of our hosting, back up and staging servers are based within the UK.
Retention of information
The One Point will retain information for the period that any valid agreement or contract is in place or until instructed otherwise by a customer. All data will be destroyed or returned to a customer upon request or at the end of an agreement plus upto 6 months unless otherwise instructed. Sales cycle information or documents required to be retained for legitimate reasons will be retained.
Your rights
Unless you are a sole trader or a partnership (in certain cases), it will be the individuals who work for your business that have various rights in relation to how we process their personal data. Individuals can:

- access the personal data we keep about them and be given specific information about the processing.
- ask us to update inaccurate personal data we hold about them.
- ask us to delete their personal data but only when specific grounds apply.
- ask us to restrict the processing of their personal data, for example if they are contesting the accuracy of it.
- object to the processing of their personal data if they do not agree with our legitimate interest grounds and for direct marketing purposes.
- transfer personal data from us to another service provider but only when certain grounds apply.
If you would like to:
- object to the processing of your personal data (where we have relied on legitimate interests as our legal basis for the processing);
- or to unsubscribe from future marketing communications

please contact our Data Protection Manager.

We would really appreciate it if you would let us know if any of your personal data changes so that we can keep our records up to date and accurate.

We do not undertake any solely automated decision-making, including profiling.
Should you wish to exercise any of your rights please contact our Data Protection Manager.

If you are not happy with how we have been processing your personal data or have not dealt with one of your rights correctly when you have asked us to you may lodge a complaint with the Information Commissioners Office (ICO). The ICO has several ways in which you can get in touch with them, including post, email, and online forms. To find out how click here.
Data Protection Officer
The Data Protection Lead can be reached by filling in our contact form, by contacting us by telephone on 01482 420150, by email to help@theonepoint.co.uk or in writing to The One Point, The View, Bridgehead Business Park, Hessle, Hull HU13 0GD.
Notice to End Users
Many products and services supplied and managed by The One Point are intended for use by organisations correctly contracting with us for service but may be administered for you by your organisation. Your use of these products and services may be subject to your organisation's policies, if any. If your organisation is administering your use of these products and services, please direct your privacy enquiries to your administrator. The One Point is not responsible for the privacy or security practices of our customers, which may differ from those set forth in this privacy statement.

If you use an email address provided by an organisation you are affiliated with, such as an employer or school, to our services, the owner of the domain (e.g. your employer) associated with your email address may: (i) control and administer your online services account and (ii) access and process your data, including the contents of your communications and files.
Other websites
Our website contains links to other websites. This privacy policy only applies to our website (www.theonepoint.co.uk) so when you leave our website to go to other websites you should read their individual privacy policies. 01482 420150
Back to top