Grip Privacy Policy

(Grip) Intros.at Ltd Privacy Policy

We are Intros.at Ltd, the provider of the Grip mobile application. We are committed to protecting and respecting your privacy.

SCOPE OF POLICY

This policy (together with our conditions of service) available here, Conditions of Service) applies to your use of:

  • “Grip” mobile application software, or any event-branded version of Grip which contains either this Privacy Policy or a link to this Privacy Policy (Grip) once you have downloaded Grip onto your mobile phone or handheld device (Device); and
  • Any of the services accessible through Grip (Services).

This policy sets out the basis on which any personal data we collect from you, or that you or others provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. In particular, note that we will use your data to propose ‘handshakes’ with other Grip users. This is based on the content of social media platforms hosting accounts you notify us of, and information provided to us by the promoter of an event for which you have registered and we have produced a branded version of Grip (“Event Promoter”).

For the purpose of data protection legislation, the data controller is Intros.at Ltd whose registered office is Treviot House, 186-192 High Road, Ilford, Essex, England, IG1 1LR.

INFORMATION WE MAY COLLECT FROM YOU

We may collect and process the following data about you:

  • Information you give us (Submitted information): You may give us information about you by completing your profile or filling in forms on Grip, or by corresponding with us (for example, by e-mail or chat). This includes information you provide when you register to use Grip, subscribe to any of our Services, search for another user, ‘handshake’ with another user, share data via Grip’s social media functions, enter a competition, promotion or survey, and when you report a problem with Grip. The information you give us may include your name, address, e-mail address and phone number, access to your LinkedIn, FaceBook or other social media account, the device's phone number, your age, username, password and other registration information, personal description and photograph. It will also include the details of any event for which you have registered with an Event Owner.
  • Information we collect about you and your Device. Each time you use Grip we may automatically collect the following information:
  • Technical information, including the type of mobile device you use (model, manufacture and library version), a unique device identifier (for example, your Device’s IMEI number, the MAC address of the Device’s wireless network interface), mobile network information, your mobile operating system, the type of mobile browser you use, time zone setting, (Device Information);
  • Information contained in your LinkedIn, FaceBook account (if you permit us to access them) or other account we ask your permission to access (Social Information);
  • Details of your use of Grip and the resources and features that you access, the users you ‘handshake’ (or you decline to handshake, or who decline to handshake you) (Log Information).

Information we receive from Event Promoters. We work with Event Promoters and may receive information about you from them, in relation to an event you have registered to attend. This information comprises the registration details you provided to the Event Promoter  – for example, your name, email address, street address and demographic data. (Event Promoter Information).

If you contact us, we may keep a record of that correspondence.

Uses made of the information

We use information held about you in the following ways:

  • Submitted Information: We will use this to help us provide you with Grip’s various features and personalise your experience; we will also use it to display your profile to other users, and propose you as a potential ‘handshake’ for other users. We also anonymise and aggregate the information such that it can no longer identify you as an individual. We do this for various purposes including research and improving our Services.
  • Device information: We use this to better understand who uses Grip and quickly understand if bugs are related to specific phones.
  • Social Information: We use this to build your profile and to help us decide which other users are good potential ‘handshakes’ for you, and whether you are a good potential ‘handshake’ for other users. We also anonymise and aggregate the information such that it can no longer identify you as an individual. We do this for various purposes including research and improving our Services.
  • Log information: we use this to optimize and further develop Grip for the benefit of us and all our users. We also anonymise and aggregate the information such that it can no longer identify you as an individual. We do this for various purposes including research and improving our Services.
  • Event Promoter Information: we use this to personalise your Grip experience in relation to the event you are attending, and to decide which other users to propose a ‘handshake’ with. We may use an email address we receive from an Event Promoter for the purposes of sending you service messages regarding how to access and use Grip. We also anonymise and aggregate the information such that it can no longer identify you as an individual. We do this for various purposes including research and improving our Services.

We may associate any category of information with any other category of information and will treat the combined information as personal data in accordance with this policy for as long as it is combined.

If we have your consent, we may also use your personal data to provide you with marketing messages about other products and services we provide which may be of interest to you.

Also, we may provide various third parties (including Event Promoters) with anonymous aggregate information about our users (for example, we may inform them that 500 men aged under 30 have used the chat function on any given day). This data will not identify you as an individual.

 

Our Legal basis for Processing Your Data

The legal grounds for processing your personal data are as follows:

It is necessary for the performance of a contract to which you are a party, or to take steps prior to entering into a contract with you. Our Terms of Use sets out the basis of your use of the Services and the rules for using them.

It is necessary for the purposes of our legitimate interests, except where our interests are overridden by the interests, rights or freedoms of affected individuals (such as you). To determine this, we shall consider a number of factors, such as what your expectations are about the processing of the data, the nature of the data, and the impact of the processing on you.

In some cases, your consent (such as where we seek your consent to send you details of our products and services by email).

It may be necessary for us to undertake processing in order to comply with mandatory legal obligations to which we are subject under EU or UK law.

Disclosure of your information

We may disclose some or all of the data we collect from you when you download or use Grip to the following third parties:

Category of data Submitted Information; Event Promoter Information

Recipient Event Promoters will receive activation data in respect of your email address – that is, whether or not you have successfully downloaded and registered on Grip.

Category of data Submitted Information, Social Information

Recipient Other users of Grip.

We may disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the Companies Act 2006.

We may disclose your personal information to third parties:

  • In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
  • If Intros.at or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal or regulatory obligation or request.
  • In order to:
  • enforce or apply our Terms of Use and other agreements or to investigate potential breaches; or
  • protect the rights, property or safety of Intros.at, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

How long will we retain your data?

We will not retain your personal data for longer than is necessary in relation to the purposes for which the data was collected or otherwise processed. The criteria we use for determining this period data will be any legal or regulatory requirements, statutory retention periods or guidance provided by regulatory bodies such as the Information Commissioner's Office.  For example, we delete any personally identifying Log Data when you disable your Grip account, or 2 years after your last use of Grip. We use this 2 year period because in our experience users may wish to retain an active Grip registration to access information derived from the Services when they repeatedly attend the same event in another year. Some events are held on a biennial basis (every 2 years).

Security

Unfortunately, the transmission of information via the internet is not completely secure. The security of your data is very important to us. This is why we have put in place the industry’s security best practices to prevent your personal data from accidentally lost, unauthorised access or disclosure. We have a strong access control to limit access to your personal data to only those personnel who have legitimate purpose to have access to them. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to or through Grip or the Services; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

Grip includes chat features. Ensure when using these features that you do not submit any personal data that you do not want to be seen, collected or used by other users.

Automated Profiling

To assist us in providing an effective networking service, in addition to the data that you provide to us if you register, we may also obtain data from your usage of Grip to help us understand what you might be interested in, or who you might be interested in connecting with. This ‘profiling’ activity is powered by some intelligence in our software which makes calculations about potential preferences or requirements you might have about what you see in the app or who we think you might wish to connect with. There’s no consequence for you of this profiling other than hopefully refining and improving what we suggest to you in Grip.

Marketing

You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. If you are using a third party-branded version of the App, this includes disclosure to the owner of, or companies doing business under that brand. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at privacy@grip.events.

Websites of others

Grip may, from time to time, contain links to and from the websites of others. If you are using a third-party branded version of Grip, this includes websites of companies providing services under that brand. If you follow a link to any of these websites, please note that these websites and any services that may be accessible through them have their own privacy policies and that we do not accept any responsibility or liability for these policies or for any personal data that may be collected through these websites or services, such as contact and location data. Please check these policies before you submit any personal data to these websites or use these services.

Disabling your Grip account

You can disable your account at any time using the ‘Delete Profile’ button in Grip.

Transfers of data outside Europe

The information which you provide to us may be transferred to countries outside the European Economic Area (“EEA”). These countries may not have similar data protection laws to those in the EEA. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Policy.

We currently use various services for Sub Processing as well as Cookies in order to provide our services.

The updated list of cookies and sub processors that we work with can be found here:

https://support.grip.events/grip-data-processing-subcontractors-and-privacy-assurance

If you use our Services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those Services.

Your Rights

You have a number of rights regarding our use of your data.

Upon written request, we will provide you with a copy of the personal data which we keep about you, subject to any exceptions under data protection laws (for example, if the data includes information about other people). We will respond to you within the time frame specified within the applicable data protection law, which is generally within one month of receipt of the written request. We will provide the information without charge, but we may charge a reasonable fee for the administrative cost of providing the information where the request for information is excessive.

You can require us to correct any mistakes in your personal data which we hold about you. You can request a copy of your information which we hold (this is known as a subject access request). To the extent required by data protection laws, we will provide you with a readable copy of the personal data which we keep about you. We will respond to you within the time frame specified within the applicable data protection law, which is generally within one month of receipt of the request.

You can ask us to stop contacting you for direct marketing purposes.

You can require us to erase the personal information we hold about you where: the personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed; you object to the processing and there is no overriding legitimate interest for us to continue the processing of the data; your personal data was unlawfully processed, or your personal data must be erased in order to comply with a legal obligation.

You have the right to restrict the processing of your personal data where: you contest the accuracy of the personal data; you have objected to our processing of your data, and we are considering your objection because we have said the processing is necessary for the purpose of our legitimate interests; the processing is unlawful and you do not wish for the data to be erased but require restricted processing of the data instead; or we no longer require your personal data but you require the data to establish, exercise or defend a legal claim.

You have the right to object to us processing your personal data where our legal basis for processing the data is for the purposes of our legitimate interests or for the performance of a task carried out in the public interest.  We may refuse if there are compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is necessary for the exercise or defence of legal claims.

Should you wish to exercise these rights then you can write to us at privacy@grip.events

 

 

 

International Data Transfers

We operates globally, which means personal data may be transferred, stored (for example, in a data centre), and processed outside of the country or region where it was initially collected where our service providers or 3rd party providers have facilities – including in countries where meeting participants or account owners hosting meetings or webinars that you participate in or receiving messages that you send are based.

When we transfer personal data out of the EEA, we ensure that adequate protection has been taken by following one or more of the following:

  • That we only transfer your personal data to countries that have been deemed to provide adequate protection for your personal data by the European Commission
  • Where we use providers based in the US, we only transfer your data to them under the scope of a Data Processing Agreement which permits the transfer within Standard Contractual terms or, through any legal application means. 
  • Where we use certain third party providers, we may use specific contracts approved by the European Commission or UK GDPR which gives personal data the same protection it has in Europe. 

We protect your personal data in accordance with this Privacy Statement wherever it is processed and take appropriate contractual or other steps to protect it under applicable laws. Where personal data of users in the EEA, Switzerland, or the UK is being transferred to a recipient located in a country outside the EEA, Switzerland, or the UK which has not been recognised as having an adequate level of data protection, we ensure that the transfer is governed by the European Commission’s standard contractual clauses. Please contact us if you would like further information in that respect.

Changes to privacy policy

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you when you next start Grip. The new terms may be displayed on-screen and you may be required to read and accept them to continue your use of Grip.

Contact

Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to privacy@grip.events.

If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can get in touch with the UK data protection regulator, the Information Commissioner’s Office.  Further details can be found at www.ico.org.uk or 0303 123 1113.