This Privacy Statement describes 365 Response privacy practices in relation to the use of the Company’s Websites and the related applications, services, and programs offered by 365 Response (collectively, the “Services”), as well as individual’s choice regarding use, access and correction of personal information.
If you have questions or complaints regarding 365 Response Privacy Statement or associated practices, or if you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact us by emailing [email protected]
This Privacy Statement covers the information practices, including how the Company collects, uses, shares, and secures the personal information you provide, and of Websites that link to this Privacy Statement.
365 Response Websites may contain links to other Websites. The information practices or the content of such other Websites is governed by the privacy statements of such other Websites. The Company encourages you to review the privacy statements of other Websites to understand their information practices.
When expressing an interest in obtaining additional information about the Services, or registering to use the Websites or other Services, 365 Response requires you to provide the Company with personal contact information, such as name, company name, address, phone number, and email address.
When purchasing the Services, 365 Response may also require you to provide the Company with financial and billing information, such as billing name and address, credit card number, and the number of employees within the organisation that will be using the Services.
365 Response may also ask you to provide additional information, such as company annual revenues, number of employees, or industry.
When applying for a job with the Company 365 Response may also require you to submit additional personal information as well as a resume or curriculum vitae.
We also may store as part of our service details on your customers including special categories of data. We retain this information in line with our retention policy which is available on request.
Data is stored on our Cloud Based Encrypted systems:
As you navigate the Company’s Websites, 365 Response may also collect information through the use of commonly used information-gathering tools, such as cookies and Web beacons (“Web Site Navigational Information”). Web Site Navigational Information includes standard information from your Web browser (such as browser type and browser language), your Internet Protocol (“IP”) address, and the actions you take on the Company’s Websites (such as the Web pages viewed, and the links clicked).
The Company uses Data about 365 Response Customers to perform the services requested. For example, if you fill out our Contact Web form, the Company will use the information provided to contact you about your interest in the Services.
The Company may also use Data about customers for marketing purposes. For example, the Company may use the information you provide to contact you to further discuss your interest in the Services and to send you information regarding the Company and information about products or services.
365 Response may also receive information about Customers from other sources, including third parties from whom we have purchased data, and combine this information with Data we already have about you.
365 Response uses Web Site Navigational Information to operate and improve the Company’s Websites. The Company may also use Web Site Navigational Information alone or in combination with Data about 365 Response Customers and Data about 365 Response Attendees to provide personalised information about the Company.
Cookies, Web Beacons, and IP Addresses
365 Response uses commonly used information-gathering tools, such as cookies and Web beacons, to collect information as you navigate the Company’s Websites (“Web Site Navigational Information”). As described more fully below, we use these cookies or similar technologies to analyse trends, administer Websites and Services, track users’ movements around our Websites and Services, and gather demographic information about our user base. This section describes the types of Web Site Navigational Information used on the Company’s Websites and Services, and how this information may be used.
The following sets out how 365 Response uses different categories of cookies and your options for managing cookies’ settings:
|Type of Cookies||Description|
|_ga||This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site’s analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.|
|_gid||This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form.|
|__tawkuuid||Tawk.to cookie used to distinguish users.|
|TawkConnectionTime||This cookie is used to determine the connection duration of tawk sessions.|
|_gac_UA-*||Analytics writes campaign information to the _gac cookie when a user opens a page on your site via a URL that employs Google Ads auto-tagging via the Google Tag Manager.|
|f24_autoId||This is a temporary identifier on a local machine or phone browser that helps us track anonymous information to be later married up with f24_personid. If this is left anonymous it will be deleted after 6 months. Non-essential, first party, 10 years, persistent.|
|f24_personId||This is an ID generated per individual contact in the Force24 system to be able to track behaviour and form submissions into the Force24 system from outside sources per user. This is used for personalisation and ability to segment decisions for further communications. Non-essential, first party, 10 years, persistent|
Log Files, IP Addresses, URLs and Other Data
As is true of most Websites, we gather certain information automatically to analyse trends in the aggregate and administer our Websites and Services. This information may include your Internet Protocol (IP) address (or the proxy server you use to access the World Wide Web), device and application identification numbers, your location, your browser type, your Internet service provider and/or mobile carrier, the pages, and files you viewed, your searches, your operating system and system configuration information, and date/time stamps associated with your usage. Due to Internet communications standards, when you visit or use the Company’s Web sites and Services, we automatically receive the URL of the website from which you came and the website to which you go when you leave our Website. This information is used to analyse overall trends, to help us improve our Websites and Services, to track and aggregate non-personal information, and to provide the Websites and Services. For example, 365 Response uses IP addresses to monitor the regions from which Customers and Visitors navigate the Company’s Website. 365 Response also collects IP addresses from Customers when they log into the Services as part of the Company’s “Identity Confirmation” and “IP Range Restrictions” security features.
Social Media Features and Single Sign-on
Do Not Track
Currently, various browsers — including Internet Explorer, Firefox, and Safari — offer a “do not track” or “DNT” option that relies on a technology known as a DNT header, which sends a signal to Websites’ visited by the user about the user’s browser DNT preference setting. 365 Response does not currently commit to responding to browsers’ DNT signals with respect to the Company’s Websites, in part, because no common industry standard for DNT has been adopted by industry groups, technology companies or regulators, including no consistent standard of interpreting user intent. 365 Response takes privacy and meaningful choice seriously and will make efforts to continue to monitor developments around DNT browser technology and the implementation of a standard.
365 Response may post a list of Customers and testimonials on the Company’s Website that contain information such as Customer names and titles. 365 Response obtains the consent of each Customer prior to posting any information on such a list or posting testimonials.
365 Response may share Data about 365 Response Visitors, Customers with the Company’s contracted service providers so that these service providers can provide services on our behalf. These service providers are authorised to use your personal information only as necessary to provide the requested services to us. Without limiting the foregoing, 365 Response may also share Data about 365 Response Visitors, and customers with the Company’s service providers to ensure the quality of information provided, and with third-party social networking and media Websites, such as LinkedIn, for marketing and advertising on those Websites. Unless described in this Privacy Statement, 365 Response does not share, sell, rent, or trade any information with third parties for their promotional purposes.
365 Response reserves the right to use or disclose information provided if required by law or if the Company reasonably believes that use or disclosure is necessary to protect the Company’s rights and/or to comply with a judicial proceeding, court order, or legal process.
National Data Opt-Out
The national data opt-out was introduced on 25 May 2018, enabling patients to opt out from the use of their data for research or planning purposes, in line with the recommendations of the National Data Guardian in her Review of Data Security, Consent and Opt-Outs. If 365 Response is the Data Controller of your data, you can request to opt out by emailing the Data Protection Officer by emailing [email protected]. If your data is controlled by an NHS organisation, you can start the process of opting out by clicking this link: https://www.nhs.uk/your-nhs-data-matters/
The Company primarily stores Data about 365 Response Customers and Data about 365 Response Attendees in the United Kingdom. To facilitate 365 Response’s global operations, the Company may transfer and access such information from around the world, including from other countries in which the Company has operations. This Privacy Statement shall apply even if 365 Response transfers Data about 365 Response Customers or Data about 365 Response Attendees to other countries.
365 Response may retain your information for a period consistent with the original purpose of collection. For instance, we may retain your information during the time in which you have an account to use our Website or Services and for a reasonable period afterwards. We also may retain your information during the period needed for 365 Response to pursue our legitimate business interests, conduct audits, comply with our legal obligations, resolve disputes, and enforce our agreements.
You may request to review, correct, delete, or otherwise modify any of the personal information that you have previously provided to us through the Company’s Website and Services. To update your billing information, and/or request return or deletion of Your Data associated with your account, please contact us. For other requests to access, correct, modify, or delete Your Data, please email:
Requests to access, change, or delete your information will be addressed within a reasonable legal timeframe.
365 Response acknowledges that you have the right to access your personal information. If personal information pertaining to you as an individual has been submitted to us by a 365 Response customer and you wish to exercise any rights you may have to access, correct, amend, or delete such data, please inquire with our customer directly. Because 365 Response personnel have limited ability to access data our customers submit to our Services, if you wish to make your request directly to 365 Response, please provide the name of the 365 Response customer who submitted your data to our Services. We will refer your request to that customer and will support them as needed in responding to your request within a reasonable timeframe.
365 Response uses appropriate technical and organisational security measures to protect Data about 365 Response Customers.
365 Response has achieved certification in, or are registered to the following standards, we are audited annually for the ISO certification by a UKAS accredited certification body
These certifications are closely aligned to the requirements of GDPR and demonstrate that our buildings, infrastructure, systems, policies, processes, procedures, and controls are adequately robust to protect all personal data that we process.
365 Response Limited are subject to an annual penetration test by an external, independent third party. Any vulnerabilities or exploits identified are fully investigated and the appropriate action is taken to resolve them immediately.
All laptops and desktops run the latest security patches and antivirus software. They are also encrypted.
Personal data is encrypted at rest on our servers as well as in transit. All 365 Response servers are located in the UK.
Disaster Recovery is in place for our critical systems and is regularly tested.
We ensure that all our suppliers who may have exposure to confidential information have signed confidentiality/non-disclosure agreements.
365 Response reserves the right to change this Privacy Statement.
Questions regarding this Privacy Statement or the information practices of the Company’s Websites and Services should be directed to:
Force24 Cookies & Tracking
Our organisation utilises Force24’s marketing automation platform.
Force24 cookies are first party cookies and are enabled at the point of cookie acceptance on this website. The cookies are named below:
They allow us to understand our audience engagement thus allowing better optimisation of marketing activity.
f24_autoId – This is a temporary identifier on a local machine or phone browser that helps us track anonymous information to be later married up with f24_personid. If this is left anonymous it will be deleted after 6 months . Non-essential, first party, 10 years, persistent.
f24_personId – This is an ID generated per individual contact in the Force24 system to be able to track behaviour and form submissions into the Force24 system from outside sources per user. This is used for personalisation and ability to segment decisions for further communications. Non-essential, first party, 10 years, persistent.
The information stored by Force24 cookies remains anonymous until:
The Force24 cookies will remain on a device for 10 years unless they are deleted.
We also use similar technologies including tracking pixels and link tracking to monitor your viewing activities.
Device & browser type and open statistics
All emails have a tracking pixel (a tiny invisible image) with a query string in the URL. Within the URL we have user details to identify who opened an email for statistical purposes.
All links within emails and SMS messages sent from the Force24 platform contain a unique tracking reference, this reference help us identify who clicked an email for statistical purposes.