WHAT INFORMATION WILL INFYND COLLECT ABOUT ME?

We collect and process the following data, which may include your personal data.

InFynd’s Website:If you contact us about our services or request a demo on our website, the forms you complete or the emails you send may include information about you, such as your full name, email address, the organisation on behalf of whom you are contacting us, and your inquiry.

InFynd’s Online Client Platform: To provide an InFynd Client with access to our platform and enable them to access our services, we collect the full name, email address, and password of each individual authorized by such client to access the platform.

Analytics on the Website and the Platform: Our website and online client platform use cookies and other mechanisms to collect and log analytical information, help analyse usage, compile statistical reports on the use of our website, and improve both our website and marketing efforts.

The following data may be collected:

• number of visitors to our website;
• pages visited and time spent per page;
• page interaction information, such as scrolling, clicks and browsing methods;
• Websites tracking the origins of visitors and their subsequent destinations;
• page response times and any download errors; and
• other technical information relating to end user device, such as IP address or browser plug-in.

DATA SHARING

We will share your information with the following:

Our companies: Access to personal data within the InFynd and our group of companies is restricted to individuals who have a legitimate need to access the information for our business purposes.

InFynd clients: We may share personal data with our clients or our reseller clients including Experian LTD (https://experian.co.uk/business-information/marketing-transparency-notice.html) or their customers as part of the offering of our services. InFynd provides limited access to its database. InFynd clients or reseller clients or their customers may use the data to contact individuals on their business telephone, business address, and business email address through other electronic mail or through targeted display ads on social networks in order to market products and/or services.

Please note that in providing data to its clients, InFynd is processing such data as a processor on behalf of the client, who is acting as the controller. Clients are likely to have their own privacy policies and opt-out options, and we recommend that you review them. Where InFynd has made personal data available to its clients, the client's privacy policy should include InFynd as a data source.

Suppliers, subcontractors, and service providers: We maintain your information confidentially but may disclose it to suppliers or subcontractors as far as reasonably necessary for the purposes outlined in this privacy policy. However, such disclosure is contingent on their agreement to safeguard this information.

This includes external third-party service providers, such as accountants, auditors, experts, lawyers, and other professional advisors external to our organization. It also includes IT systems, support, and hosting service providers, technical engineers, data storage and cloud providers, and similar third-party vendors and outsourced service providers that assist us in conducting our business activities.

Data management platform: A Data Management Platform (DMP) is a technology platform utilized for collecting and managing data, primarily for digital marketing purposes. InFynd provides DMPs with data, enabling the DMP to create audience segments, which are used by advertisers to target specific types of users in online advertising campaigns.

Government authorities: Additionally, we may disclose your information to the extent required by law, including to government bodies and law enforcement agencies. This disclosure may also occur in connection with any legal proceedings or prospective legal proceedings, as well as to establish, exercise, or defend our legal rights, including providing information to others for the purposes of fraud prevention.

Potential acquirers or investors: If we are engaged in a merger, acquisition, or sale of all or part of our assets, you will be informed via email, account message, and/or a prominent notice on our website of any change in ownership or the uses of this information. Additionally, you will be provided with any choices you may have regarding this information.

HOW WE WILL USE INFORMATION WE COLLECT ABOUT YOU

InFynd Website and InFynd Client Platform:

We may process your personal data for the following purposes for InFynd’s own:

• to administer platform log-ins (where applicable) and deliver our services to our clients or their customers under the agreed terms of service;
• to process your enquiries to reply and provide support, including providing you and/or your organisation with information about the services InFynd offers;
• to keep you updated via our mailing list with information on news, offers, and updates about InFynd (see below for how to unsubscribe);
• to compile reports on how visitors use the InFynd website and improve the website;
• to conduct remarketing for InFynd, which allows us to show InFynd ads to people who’ve previously visited our website;
• to conduct advertising on social networks for InFynd, meaning that if you link to one of our social media platforms you may be subject to targeted marketing displaying InFynd ads via that site.

If you would like to find out more about the way these third parties collect and process your information, please refer to their respective privacy policies.

We may use your personal data on the InFynd Database for the following purposes:

• to build our sales intelligence database to empower our clients or their customers to generate and manage sales leads for businesses and high net worth individuals;
• to enable our clients or their customers to deliver relevant display ads on social networks (such as Facebook, LinkedIn and Instagram) and other services;
• to empower our clients or their customers to enrich their existing customer relationship management records and receive timely updates of changes;
• to undertake research and compile statistical aggregated reports based on data held in InFynd’s sales intelligence database;
• to supply data management platforms;
• to run our own marketing campaigns and promote our services.

MARKETING OPT-OUT OPTIONS

If you do not wish for your personal data to be used in the InFynd Database for the specified purposes, please fill in your details here or contact us using the provided contact details.

If you receive a marketing email from us and wish to be removed from our mailing list, please inform us by clicking the "unsubscribe" link located at the bottom of any marketing email you receive from us.

THE APP

Additional Limits on the Use of Your Google User Data:

Notwithstanding any other provisions in this Privacy Policy, if you grant the App access to the following types of your Google data, the App's use of that data will be subject to the following additional restrictions:

• App’s use and transfer to any other app of information received from Google Accounts will adhere to Google API Services User Data Policy, including the Limited Use requirements, which is available at the following link:https://developers.google.com/terms/api-services-user-data-policy#additional_requirements_for_specific_api_scopes. It's important to note that these are policies are governed by Google, and InFynd does not have any control or interference in this regard. We recommend you to visit Google´s policies directly for further details on their procedures and future updates.
• The App will only use access to read, write, modify or control Gmail message bodies (including attachments), metadata, headers, and settings to provide a web email client that allows users to compose, send, read, and process emails and will not transfer this Gmail data to others unless doing it is necessary to provide and improve these features, comply with applicable law, or as part of a merger, acquisition, or sale of assets.
• The App will not use this Gmail data for serving advertisements.
• The App will not permit humans to read this data unless we have your affirmative agreement for specific messages. Reading is only done when necessary for security purposes, such as investigating abuse, complying with applicable law, or for the App's internal operations. Even in these cases, access is granted only when the data has been aggregated and anonymized.

YOUR RIGHTS WITH PERSONAL DATA THAT WE PROCESS RELATING TO YOU

To make a request, please contact us using the above contact details, addressed to the Data Protection Officer.

• You have the right to request a copy of the personal data we hold about you and to have any inaccuracies corrected.
• We will use reasonable efforts as required by law to supply, correct or delete personal data held about you on our files (and with any third parties to whom it has been disclosed).
• you consented to InFynd processing the personal data, and have withdrawn that consent;
• InFynd no longer needs to process that personal data for the reason it was collected;
• InFynd is processing that personal data because it is in the public interest or it is in order to pursue a legitimate interest of InFynd, you don’t agree with that processing, and there is no overriding legitimate interest for us to continue processing it;
• the personal data was unlawfully processed; or
• you need the personal data to be deleted in order to comply with a legal obligation
• Obtain a machine-readable copy of your personal data, which you can use with another service provider
• If we are processing data in order to perform our obligations to you, or because you consented, if that processing is carried out by automated means, we will help you to move, copy or transfer your personal data to other IT systems.
• If you request, InFynd will supply you with the relevant personal data in CSV format. Where it is technically feasible, you can ask us to send this information directly to another IT system provider if you prefer.
• Make a complaint to a Supervisory Authority
• If you are unhappy with the way InFynd is processing your personal data, please let us know.
• If you do not agree with the way we have processed your data or responded to your concerns, or if you do not think we are handling your personal data adequately, you have the right to lodge a complaint with the Information Commissioner’s Office. Further information, including contact details, is available at https://ico.org.uk

DATA RETENTION

We will hold your personal data for as long as is necessary for the relevant purpose.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

CHILDREN

We do not knowingly solicit data from or market to children under the age of 13 as per UK GPDR and under the age of 16 as per EU GDPR. If a parent or guardian becomes aware that his or her child has provided us with information without their consent, he or she should contact us at [email protected]. We will delete such information from our files within a reasonable time.

SECURITY

InFynd is committed to ensuring the safety and security of your personal data, guarding against unauthorized access, alterations, disclosure, or destruction of the information we hold. We will take all reasonable technical and organizational precautions to prevent the loss, misuse, or alteration of your personal data.

Our security measures include:

• hashing and encryption of our services and data;
• regular review of information collection practices;
• encryption of our services and data;
• restricted access of data to employees, contractors and agents; and
• internal policies outlining our data security.

It's important to note that, despite our efforts to provide reasonable security for the information we process and maintain, no security system can entirely eliminate the possibility of potential security breaches.

CHANGES

We will notify you of any changes to this Privacy Policy by email and/or notice on the website, as appropriate.

INTERNATIONAL DATA TRANSFERS

Your personal data, which you provide to us, is primarily stored and maintained within the European Economic Area (EEA). However, given the global nature of our business and the technological requirements required, your personal data may be transferred to third-party service providers outside the EEA, in countries where there may be a lower legal level of data protection.

When we transfer your data outside the EEA, we take measures to ensure that only the minimum amount of necessary data is transferred. We also strive to anonymize the data whenever possible. Additionally, we have established agreements with these third-party service providers, incorporating standard data protection clauses. These clauses are designed to guarantee that appropriate safeguards are in place, aligning with the principles outlined in this Privacy Policy and complying with European levels of data protection.

If you wish to obtain more information about the specific safeguards implemented for the international transfer of your personal data, please do not hesitate to contact us.

CALIFORNIA RESIDENTS & CCPA

If you are a California resident, as defined in Section 17014 of Title 18 of the California Code of Regulations, you have certain rights in respect of the personal information we hold about you.

If you have questions or concerns about our privacy policies and practices, please contact us at the details provided at the top of this Policy. This Policy was last updated on 3 February 2021.

Please refer to the information above for:

• the date on which this Policy was last updated (see paragraph 1)
• categories of personal information collected about you in the last 12 months (see paragraph 2)
• categories of sources from which the personal information was collected (see paragraph 2)
• categories of third parties with whom we share personal information (see paragraph 4)
• where you have a profile on our database, a list of categories of personal information sold about you in the last 12 months (see paragraph 2)
• We have disclosed and sold personal information to third parties within the last 12 months.
• We do not sell the personal information of minors under 16 years of age without affirmative authorization.
• You can designate an authorised agent to make a request under the CCPA on your behalf. The authorized agent must submit proof that they have been authorized by you to act on your behalf and proof of their own identity.

You have the right to:

• request access to your personal information and request that InFynd disclose what personal information we collect, uses, discloses, and sells;
• request deletion of your personal information collected or maintained by us;
• opt-out of the sale of your personal information fill in your details here: https://infynd.com/do-not-sell-my-info/

To make a verifiable request, please contact us using the above contact details, addressed to the Data Protection Officer. We may verify your request by asking for proof of identity.