Our Privacy and Cookies Policy

May 2018

Introduction

How Do You Do It Pty Ltd (“HDYDI”) is committed to respecting your privacy and the privacy of every person who uses our services, visits our website, contributes to our related social media or requests to receive information from us. The information we collect about you will be used to fulfil the required services and enable us to improve how, as an organisation, we deal with you. We want our services to be safe and operating in an enjoyable environment. This Privacy and Cookies Policy relates to the use of any personal information we collect from you or from your employer via the following services:

  • HDYDI website;
  • Social media interaction;
  • On-line services;
  • Face to face services including programmes and coaching;
  • HDYDI newsletters or other marketing information;
  • Any other personal information you provide to us by phone, SMS, email, other correspondence and in person.

To use our services, we sometimes need to collect information about you.

This Privacy and Cookies Policy explains the following:

  • what information HDYDI may collect about you;
  • how HDYDI will use the information we collect about you;
  • when HDYDI may use your details to contact you;
  • whether HDYDI will disclose or share your details to third parties;
  • your choices and rights regarding the personal information you provide to us;
  • the use of cookies on HDYDI websites and how you can block or delete cookies.

Should you have a question about the data we store, our contact details are:

HDYDI Contact: Data Protection Officer

Company name: HDYDI (trading in the UK as Catalyst For Solutions Pty Ltd (UK Branch)

Email: info@howdoyoudoit.co.uk

Phone number:  +44 (0) 8454749262

Information Collection

 HDYDI is committed to safeguarding your personal information. Whenever you provide such information, we are legally obliged to use your information in line with all applicable laws concerning the protection of personal information, including the Data Protection Act 1998 and the General Data Protection Regulation 2018. All data is retained exclusively within the United Kingdom, or transferred only to ‘third countries’ where ‘adequacy of protection’ or specific certification as defined by The GDPR has been confirmed.

No website can be completely secure; if you have any concerns that your personal information could have been compromised please get in touch straight away. By using this website you are agreeing to use of your information as described in this Privacy and Cookies Policy.

HDYDI websites contain hyperlinks to websites, our online services portal and learning portals owned, hosted and operated by third-parties. These third-parties have their own privacy policies and are also likely to use cookies, and we, therefore, urge you to review them. They will govern the use of personal information you submit when visiting these websites and portals, which may also be collected by cookies. We do not accept any responsibility or liability for the privacy practices of such third-party websites and portals and your use of such websites and portals is at your own risk.

 This information will not be disclosed to anyone outside HDYDI or its associated companies, alliance partners, and other companies with which HDYDI has arranged services for your benefit unless noted in this Policy. For more information refer to “Sharing Your Information and Disclosures” section of this Policy.

The type of information that we will collect on you in providing you with our services, and you voluntarily provide to us on this website or in delivering our services include:

  • Your name;
  • Address or your office location;
  • Telephone or mobile number(s);
  • Email address;
  • Your Employer, service line and your role;
  • Survey responses;
  • IP address.

You are under no statutory or contractual requirement or obligation to provide us with your personal information. However, we require at least the information above for us to deal with you as a client, service user either directly or via your employer who we have a contract with to provide you with the agreed service or a potential customer in an efficient and effective manner.

Using Your Information

First and foremost, we use your personal data to operate our websites and provide you with any services you’ve requested or being provided by your employer and to manage our relationship with you or your employer.

We also use your personal data for other purposes, which may include the following types.

To communicate with you and this may include:

  • providing you with information you’ve requested from us or information we are required to send to you;
  • administer the website and improve your browsing experience;
  • operational communications, like changes to our websites and services, security updates, or assistance with using our websites and services;
  • marketing communications, related to our services or newsletters about relevant topics that may interest you in accordance with your marketing preferences;
  • asking you for feedback or to take part in any research we are conducting (which we may engage a third party to assist with);

To support you. This may include assisting with the resolution of technical support issues or other issues relating to the websites or online services or learning portal services, whether by email or otherwise.

To enhance our websites and services and develop new ones. This is done by tracking and monitoring your use of websites and services so that we can improve our services, optimise your user experience and provide you with more efficient tools.

To protect so that we can detect and prevent any fraudulent or malicious activity, and make sure that everyone is using our websites and services fairly and in accordance with our terms of use.

To analyse, aggregate and create internal HDYDI reports. We may use the personal data we collect about you and other users of our websites and services (whether obtained directly or from third parties) to produce aggregated and anonymised analytics and reports, which we use to improve our services and customer experience.

We will not without your consent provide your personal information to any third parties for the purposes of direct marketing.

Sharing Your Information and Disclosures

We may disclose information about you to any of our employees, officers, agents, alliance partners, suppliers or subcontractors insofar as reasonably necessary for the purposes as set out in this Privacy and Cookie Policy. There will be times when we need to share your personal data with third parties. We will only disclose your personal data to:

  • other companies in the HDYDI group of companies;
  • third party service providers and partners who assist and enable us to use the personal data to, deliver our services, support delivery of or provide functionality on the website or to market or promote our goods and services to you;
  • regulators, law enforcement bodies, government agencies, courts or other third parties where we think it’s necessary to comply with applicable laws or regulations or to exercise, establish or defend our legal rights. Where possible and appropriate, we will notify you of this type of disclosure;
  • an actual or potential buyer (and its agents and advisers) about an actual or proposed purchase, merger or acquisition of any part of our HDYDI business;
  • in relation to any legal proceedings or prospective legal proceedings;
  • to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);
  • to any person who we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information.
  • other people where we have your consent.

This Website may host various blogs, forums, and other social media applications or services that allow you to share content with other users (collectively “Social Media Applications”). Any personal information or other information that you contribute to any Social Media Application can be read, collected, and used by other users of that Social Media Application over whom we have little or no control. Therefore, we are not responsible for any other user’s use, misuse, or misappropriation of any personal information or other information that you contribute to any Social Media Application.

 International Data Transfers

 Information that we collect may be stored and processed in and transferred between any of the countries in which HDYDI operate to enable us to use the information in accordance with this Policy.

Information which you provide may be transferred to countries (including the United States and Australia) which do not have data protection laws equivalent to those in force in the European Economic Area.

In addition, personal information that you submit for publication on the website will be published on the internet and may be available, via the internet, around the world. We cannot prevent the use or misuse of such information by others.

You expressly agree to such transfers of personal information.

 Security and Protection of Personal information

 HDYDI will take reasonable precautions, including administrative, technical, and physical measures, to safeguard your personal data against loss, theft, and misuse, as well as against unauthorized access, disclosure, alteration, and destruction.

HDYDI or their technology partners uses industry-standard efforts to safeguard the confidentiality of personal data, including encryption, firewalls and SSL (“Secure Sockets Layer”). We have implemented reasonable administrative, technical, and physical security controls to protect against the loss, misuse, or alteration of your personal data.

Overview of HDYDI Cloud Technology Security

HDYDI collects, stores and protects data by using the latest in cloud storage technology from tier one providers such as Microsoft.

HDYDI handles two types of customer information:

  • Customer data pertaining to the participants of programmes

Customer data related to programmes is stored and secured using Microsoft technology hosted on the Office 365 platform. Microsoft uses the highest standards of policies and controls for its digital and physical infrastructure protection including active intrusion prevention, data encryption and stored in multiple hosting regions across the world to ensure security compliance and redundancy.

More about Microsoft Office 365 security standards can be found here: https://www.microsoft.com/en-us/trustcenter/security/office365-security

  • Customer data related to conducting business development with organisations

Business-related customer data includes publicly available contact information and is secured with RackSpace and stored in the United States via a cloud application. RackSpace is a SAS Type II accredited data and infrastructure provider with stringent security standards.

More about RackSpace certifications can be found here: https://www.rackspace.com/en-au/compliance

Of course, data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.

You are responsible for keeping your password and user details confidential. We will not ask you for your password except when you log in to the website or HDYDI learning portals.

 Retention

 Unless otherwise required by law, your data will be stored for a period of two (2) years after an expiration of a contract with your employer or our last contact with you, at which point it will be deleted. Before this occurs, we will contact you to confirm whether you still want to receive communication from us.

 Your Rights

 Under the Data Protection Act you have the right to request a copy of the personal information we hold about you and to have any inaccuracies corrected. Provision of such information will be subject to:

  • the payment of a fee (currently fixed at £10.00); and
  • providing us with two (2) pieces of approved identification. For this purpose, we will usually accept two (2) copies of forms of identification from the following – a photocopy of your passport, birth certificate or driver’s license certified by a solicitor or bank plus an original copy of a utility bill or bank statement from last three months showing your current address or current vehicle registration document.

We may withhold such personal information to the extent permitted by law.

You may request us not to process your personal information for marketing purposes by email at any time. In practice, you will usually either expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt-out of the use of your personal information for marketing purposes. Refer our contact details in the “Introduction” section of this Policy.

If you have a concern about how we handle your data, or you would like to lodge a complaint, you may do so by contacting The Information Commissioners Office.

Cookies

 This site uses cookies – these are small text files that are placed on your device to help this website to provide a better user experience. In general, cookies are used to retain user preferences, store information for things like shopping carts, and provide anonymised tracking data to third party applications like Google Analytics. As a rule, cookies will make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the Help section of your browser or looking at the About Cookies website which offers guidance for all modern browsers.

First Party Cookies

This website sets “first party” cookies through its use of Google Analytics. We use Google Analytics to provide us with non-personal site analytics, which in turn help us improve this website. Google Analytics tracking uses cookies to provide meaningful reports about website visitors’ but they do not collect personal data about you. Google Analytics sets or updates cookies only to collect data required for the reports. Additionally, Google Analytics only uses first-party cookies. This means that all cookies set by Google Analytics cannot be altered or retrieved by any service on any domain other than howdoyoudoit.com/ howdoyoudoit.com.au /howdoyoudoit.co.uk.  Further detailed information on Google Analytics cookies can be found here.

Third Party Cookies

These are cookies set on your machine by external websites whose services are used on this site. Cookies of this type are the sharing buttons across the site allow visitors to share content onto social networks.

Third party cookies currently include; Linkedin, Facebook, Twitter, Pinterest, YouTube and Scorecardresearch.

To implement these buttons, and connect them to the relevant social networks and external sites, there are scripts from domains outside of our website. You should be aware that these sites are likely to be collecting information about what you are doing all around the internet, including on this website.

You should check the respective policies of each of these sites to see how exactly they use your information and to find out how to opt out or delete such information.

Emails

Some emails we send we track, at an individual level, whether the user has opened and clicked on the email. We do not use this information at a personal level, rather we use it to understand open and click rates on our emails to try and improve them. If you want to be sure that none of your email activity is tracked then you should opt out of our emails which you can do via the unsubscribe link at the bottom of every email we send.

 Blocking and Deleting Cookies

Most browsers allow you to refuse to accept cookies. For example:

  • Internet Explorer – to refuse all cookies click “Tools”, “Internet Options”, “Privacy”, and select “Block all cookies” using the sliding selector
  • Firefox – to block all cookies click “Tools”, “Options”, and un-check “Accept cookies from sites” in the “Privacy” box or select “Clear private data” if you want to delete all cookies.
  • Chrome – click on the Chrome menu in the toolbar, click on “settings”, click on “advanced settings”, choose “Privacy” section, then click on ” Content settings” button and choose either block or delete as appropriate.

Blocking or deleting all cookies will, however, have a negative impact upon the usability of many websites.

Changes to our Privacy and Cookies Policy

 We may modify or amend this Privacy and Cookies Policy from time to time at our discretion. When we make changes to this Policy, we will amend the revision date at the top of this page, and such modified or amended Privacy and Cookies Policy shall be effective as to you and your information as of that revision date. We encourage you to periodically review this Policy to be informed about how we are protecting and safeguarding your information.