PRIVACY POLICY 

Introduction

Welcome to the Technov8 Limited website! We are finance broker based in England & Wales (Company number 05377058). Our registered address is Bartle House, Oxford Court, Manchester, England, M2 3WQ. We are authorised by the Financial Conduct Authority (Firm Reference number 732414) and licensed by the Information Commissioners Office (registration number Z3652660).

This notice sets out the manner in which personal data entrusted to Technov8 Limited will be processed, in accordance with the General Data Protection Regulation (GDPR), the Retained Regulation (EU) 2016/679 (UK GDPR), and the Data Protection Act 2018.

For inquiries, please contact us at dataprivacy@technov8.com Our Data Protection team will address concerns related to our compliance practices. This Policy may be amended in the future; periodically consult this link to ensure satisfaction with the policy and any modifications.

1. Collection of Personal Information

Technov8 Limited may gather, store, and utilise personal data/information. We do not collect personal information from or about children. Examples of personal information we collect include:

• Personal contact details (e.g., title, full name, address, telephone number, email address, and other personal data provided to us).
• Business contact details (e.g., title, name, business address, telephone number, and email address).
• Records of interactions and timeline with individuals connected to respective organizations.
• Personal or corporate information submitted through our website’s “contact us” section.
• Personal information obtained from third-party service providers (e.g., analytics providers and marketing assistance providers).
• Recruitment-related documents (e.g., CV, cover letter, right-to-work documents).
• Sensitive personal information (e.g., health data, DBS information).
• Office visits, telephone or video calls, which may be recorded in various formats.
• Visitor sign-in information (e.g., name, company details, car registration number).

2. Legal Basis for Personal Information Usage

Under the GDPR, there are six legitimate bases for processing personal data. The below is a brief explanation of each one of them. We would act as the data “Controllers” as we are the party in control of any decisions on how the personal data will be used, and for which purposes. You, or the owner of the personal data, will be referred to as “data subject”.

To process any personal data, we will adhere to a legitimate basis such as:

1. Consent: The data subject has given clear and explicit consent for processing their personal data for a specific purpose. Consent should be freely given, informed, and unambiguous, with an easy option to withdraw at any time. Should we ever need to record your consent for a specific purpose outside of our contractual duties or legitimate interests, this will be done following the appropriate steps prescribed by the GDPR.
2. Contract: Processing is necessary for the performance of a contract to which the data subject is a party, or for taking pre-contractual steps at the request of the data subject before entering into a contract. This will be the legal basis that we adhere to for most of the data processing we carry out.
3. Legal obligation: Processing is required to comply with a legal obligation to which the data controller is subject. This refers to the obligations that are set out in the EU or member state law.
4. Vital interests: Processing is necessary to protect the vital interests of the data subject or another natural person. This basis is generally applicable in life-or-death situations, such as medical emergencies. Technov8 is unlikely to ever use this as legal basis for processing, however we outline it for a better understanding of the GDPR principles.
5. Public interest: Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. This basis usually applies to public authorities or organizations that perform tasks on behalf of public authorities. Technov8 is unlikely to ever use this as legal basis for processing, however we outline it for a better understanding of the GDPR principles.
6. Legitimate interests: Processing is necessary for the legitimate interests pursued by the data controller or a third party, as long as the interests or fundamental rights and freedoms of the data subject do not override those interests. As the Controller, we must carefully balance their interests against the data subject’s rights, ensuring transparency and providing the option to object to the processing. Technov8’s legitimate interests will commonly include marketing, the facilitation of mutually beneficial business relationships, and business analytics purposes.

3. How we collect and handle Personal Data

• When you visit our website, and you request that we contact you using our contact form.
• If we engage in further communications to explore a business venture, in which case we will only process the information that you provide us with.
• If at any point, you ask us to handle any information belonging to your consumers, we will first enter into a data processing agreement (which will make us your “processor”, and you will remain the data “controller”). Only after this, we will be in a position to process consumer personal data on your behalf.
• If you apply for a job with us, we will collect and process your personal information for the purpose of considering your candidacy to the role.
• Other personal data may be collected through our use of cookies and third party analytics’ tools. Please, see our Cookies’ Notice for more information.

4. Personal Data Use in Recruitment

We may use personal data to evaluate and progress employment applications, conduct health and right-to-work checks, and carry out DBS checks.

If anything out of the scope of a general analysis of your professional background is required, we will contact you to explain why further information is needed.

5. General Information

We will only use personal information for the purposes it was collected for, unless we deem it necessary for another compatible purpose. If personal information is used for an unrelated purpose, the relevant party will be notified, and the legal basis will be explained.

We expect third parties to respect the security of personal information and treat it according to the law. We perform due diligence on these providers to ensure they handle personal information responsibly.

We may use personal data to address inquiries, provide potential clients with information about our services and business, and facilitate business relations.

We may share personal information with various third parties, such as technical support providers, recruitment partners, professional advisers, and third-party software hosting companies.

Personal information will only be retained for as long as necessary to fulfill the purposes it was collected for. We assess retention periods based on the size, volume, nature, and sensitivity of the information, potential risk of harm from unauthorized use or disclosure, purposes for which we are using the information, applicable legal requirements, and whether we can achieve those purposes through other means.

In the case of successful employment applications, further information on personal data usage during employment will be provided. If the application is unsuccessful, personal information, such as CVs and application details, will be retained for up to 24 months.

6. Amendments to the Policy

Technov8 Limited reserves the right to update or modify this policy at any time. It is your responsibility to periodically review the policy for any changes. Your continued engagement with us after any modifications to the policy will constitute acceptance of such changes.

7. Data Security

Technov8 Limited is committed to safeguarding personal data by implementing appropriate technical and organizational measures. We have put in place procedures to handle any suspected personal data breaches and will notify relevant parties and any applicable regulatory authorities as required by law.

8. International Data Transfers

In some cases, personal information may be transferred to third-party service providers located outside the European Economic Area (EEA). We will take all necessary steps to ensure that personal data is treated securely and in accordance with this Privacy Notice and applicable data protection laws.

9. Your Rights

Under data protection laws, you have various rights in relation to your personal data. These may include the right to:

• Request access to your personal data;
• Request correction of your personal data;
• Request erasure of your personal data;
• Object to the processing of your personal data;
• Request restriction of processing your personal data;
• Request the transfer of your personal data;
• Withdraw consent, where it was provided.

To exercise any of your rights, please contact us at dataprivacy@technov8.com.

10. Contact Information

If you have any questions or concerns about this Privacy Policy or our data handling practices, please contact our Data Protection Officer at dataprivacy@technov8.com.