Privacy Policy

Privacy Policy

Last Updated: 12th March 2024

1. Who we are

We are BizGive Limited (also referred to as “BizGive”, “we“, “us” or “our” in this Privacy Policy) a limited company registered in England and Wales with Company Number 10504290 and our registered office is at 741 Wandsworth Road, London, United Kingdom, SW8 3JF. We are registered with the Information Commissions Office in the UK with reference ZA290584.

 

2. About this document

This Privacy Policy describes Our policies and procedures on the collection, storage, use and disclosure of your Personal Data when We are acting as a Data Controller and tells you about your privacy rights and how the law protects you.

This document (together with our User Terms and any additional terms of use incorporated by reference into the User Terms applies to your access to and use of our Platform.

Controller

In regards to UK and European data protection law, We are sometimes the Data Controller, since we determine the means and/or purposes of the data processing We perform. This is typically the case when you access the Platform.

If you have any questions about this Privacy Policy or the data we hold about you, please contact us at data@bizgiveworld.com. Our appointed European Data Representative is Alex Pengilly and can be reached also at data@bigiveworld.com.

This Privacy Policy does not apply to the Personal Data we process as a Data Processor on behalf of a Data Controller such as the Customers; for example when you make a Submission to the Customer Platform.

To learn more about our Customer’s privacy practices please read their privacy policies that are either present on the Customer Platform or made available elsewhere and contact them directly if you have any questions.

 

3. Definitions

For the purposes of this Privacy Policy:

“Platform” means the websites, platforms and applications of BizGive including https://www.assetface.com, https://www.bizgive.app and https://www.bizgiveworld.com.

“Account” means a unique account created for you to access and use our Platform.

“Customer Platform” means a version of the Platform created for a specific Customer.

“Customer” is an entity that has entered into a contractual agreement with us for their use of the Platform and our services.

“Data Controller”, for the purposes of the Data Protection Laws, refers to the entity which alone or jointly with others determines the purposes and means of the processing of Personal Data.

“Impact Maker” is an entity creates a profile on the Platform for their entity and has the ability to submit applications to Customers.

Data Processor”, for the purposes of the Data Protection Laws, means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Data Protection Laws” means as applicable (a)  in the United Kingdom, the Data Protection Act 2018 and the retained EU law version of the General Data Protection Regulation ((EU) 2016/679) as it forms part of domestic law in the United Kingdom (as amended or modified from time to time) and (b) in the EU, the General Data Protection Regulation ((EU) 2016/679).

“Personal Data” which includes any references to “personal information”, “information” means any information that relates to you such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity.

you” means the individual accessing or using the Platform in their own capacity, or on behalf of a User who is an entity, as applicable.

“Visitor” meaning an entity or individual that has visited the Platform.

“Special Category Data” is personal data that needs more protection because it is sensitive, for example personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data (where used for identification purposes) or data concerning health, a person’s sex life and  person’s sexual orientation.

“Submitter” meaning an entity that has made a submission to the Platform.

“Submission” meaning any and all material an entity has contributed to the Platform.

“User” meaning any and all of the following Submitter, Customer, Visitor or Impact Maker.

 

4. Personal Data we collect

Personal Data you disclose to us

We collect personal information that you voluntarily provide to us when you visit the Platform, register to the Platform, express an interest in obtaining information on the Platform, when you participate in activities on the Platform or otherwise contact us.

  • Contact and Access Data. The Personal Data may include the following: first and last names, phone numbers, postal addresses, contact preferences, contact or authentication data, usernames, passwords, job titles and work related information.
  • Data from Submissions to the Platform may include Personal Data.
  • Special Category Data. We do not process Special Category Data, and you must not submit any Special Category Data to the Platform.
  • Marketing Data. Personal Data within your preferences in receiving marketing from us and our third parties and your communication preferences.

Personal Data automatically collected

We automatically collect certain information when you visit the Platform. We also collect data through cookies and similar technologies. You can find out more about this in our Cookie Notice:

https://bizgiveworld.com/cookie-policy/

Data we automatically collect does not reveal your specific identity (such as your name or contact information) but may include the following:

  • Log and Usage Data. Log and usage data is service-related, diagnostic, usage and performance information our servers automatically collect when you access or use the Platform and which we record in log files. Depending on the type of interaction with us, this log data may include IP address, device information, browser type, settings and information about your activity in the Platform (for example, date and time stamps linked to your usage, pages and artifacts viewed, searches and other actions relating to features of the Platform), device event information (such as system activity, error reports and hardware settings).
  • Location Data. We collect location data such as information about your device’s location, which can be precise or imprecise. How much information we collect depends on the type and settings of the device that you use to access the Platform. For example, we may use your IP address to collect geolocation data to identify your current location.
  • Device Data. We collect device data such as information about your device (for example, your computer, phone or other) that you use to access the Platform. Data collected varies between devices and may include your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, internet service provider, mobile carrier, operating system and system configuration information.

 

5. How and why do we process your Personal Data?

Our legal basis for processing Personal Data

The law requires us to have a legal basis for collecting and using your personal data. We process Personal Data about you on the following legal bases:

  • We may process your Personal Data if you have given us permission (i.e. consent) to use it for a specific purpose, for example if you subscribe to an email newsletter. You can withdraw your consent at any time by contacting us on data@bizgiveworld.com.
  • Performance of a Contract. We may process your Personal Data to fulfill our contractual responsibility to you, including providing our Platform to you at your request prior to entering into a contract with you.
  • Legitimate Interests. We may process your Personal Data when we believe it is reasonably necessary to achieve our legitimate business interests and when whose interests do not outweigh your interests and fundamental freedoms and rights. Examples of this may include to prevent fraud and to enable us to give you the best and most secure customer experience. We make sure we consider and balance any potential impact on you and your rights (both positive and negative) before we process your personal data for our legitimate interests. For the avoidance of doubt, we do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
  • Legal Obligations. We may use your personal data where it is necessary for compliance with a legal obligation that we are subject to. We will identify the relevant legal obligation when we rely on this legal basis.

 

How and why we process Personal Data

Depending on the type of User you are, we may process your Personal Data for the following reasons, under each relevant legal basis:

Consent
  • For User communications. Interacting with certain Platform features will create certain communications, for example, if a Submission is made on the Platform then an email will be sent to users to authenticate them.
  • To respond to Visitor inquiries. Any inbound queries that are sent to the Platform or to direct communications are responded to.
  • Delivery and facilitation of the Platform. Personal Data may be used to ensure the operation of the Platform, for example using Location Data to make the Platform available to users in certain countries.
  • To send relevant marketing materials. If we feel a User of the platform may benefit from being sent information we will do so, for example, if as an Impact Maker a new relevant funding programme becomes available we will notify you. You have the option to unsubscribe from such communications.
  • Where you submit content to the Platform it is linked to any Personal Data that we store for you. You do have the ability to vary what Personal Data you contribute in a Submission.
  • To understand usage information. We may process data about how you use the Platform to understand that use and explore options to improve the Platform.

Contract

  • To enable account creation, authentication and management of user accounts. We will process Personal Data to support the use of our Platform.
  • For User communications. Interacting with certain Platform features will create certain communications such as email alerts when events occur or notification of new features.
  • To understand usage information. We may process data about how you use the Platform to understand that use and explore options to improve the Platform.
  • Delivery and facilitation of the Platform. Personal Data may be used to ensure the operation of the Platform, for example using Location Data to make the Platform available to users in certain countries.
  • To send relevant marketing materials. If we feel a User of the platform may benefit from being sent information we will do so, for example, if as an Impact Maker a new relevant funding programme becomes available we will notify you. You have the option to unsubscribe from such communications.
  • To improve our Platform. We may utilise and analyse de-identified data to help improve our Platform capabilities.

Legitimate Interests

  • To understand usage information. We may process data about how you use the Platform to understand that use and explore options to improve the Platform.
  • To improve our Platform. We may utilise and analyse de-identified data to help improve our Platform capabilities.
  • To protect our Platform. We may process Log and Usage Data, Device Data and Location Data to monitor Submissions and activities such as phishing, spam or other fraud as defined within our User Terms.
  • Delivery and facilitation of the Platform. Personal Data may be used to ensure the operation of the Platform, for example using Location Data to make the Platform available to users in certain countries.

Legal Obligation

  • To prevent unlawful activities. We may process Personal Data to keep our Platform safe and secure, including fraud monitoring.
  • To protect our Platform. We may process Log and Usage Data, Device Data and Location Data to monitor Submissions and activities such as phishing, spam or other fraud as defined within our User Terms.

 

6. How and when we share or disclose your Personal Data

Information you share

Our Platform enables you to share information with others, whom subject to their Privacy Policies, may make your information public in its original form or a derivative of it. Remember that when you share information publicly it can be indexable by search engines from which we cannot delete content from.

Information we share

We share Personal Data with third parties who perform services for us or on our behalf and require access to such data to do that work. We have contracts in place with our third parties, which are designed to help safeguard your Personal Data. One aspect of this is to ensure that these third parties only process your personal data on our documented instructions, which will be guided by this Privacy Policy. These third parties are:

  • Cloud Computing Services and Storage. We use Amazon Web Services (AWS) for our cloud storage and compute for the Platform.
  • Communication and Interaction. Google Drive, Google Gmail and Hubspot.

We may also need to share your Personal Data in the following situations:

  • Business Transfers. We may share or transfer your Personal Data in connection with or during negotiations of, any merge, sale of company assets, financing or acquisition of our business to another company. 
  • We may share your Personal Data with our affiliates, in which case we will require those affiliates to honour this privacy notice.
  • The Customers. We may share your Personal Data with our Customers under our service contracts with them.
  • Our external professional advisors (such as our lawyers or accountants).

For the avoidance of doubt, we require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes.

 

7. The use of cookies and similar technologies

We may use cookies and similar tracking technologies to access or store information. Specific information about how we use such technologies and your control of them is detailed in our Cookies Policy: https://bizgiveworld.com/cookie-policy/

 

8. Data Retention

We only retain your Personal Data for as long as is necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. However, we may retain your Personal Data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of a legal dispute with you.

To determine the appropriate retention period for Personal Data, we consider the amount, nature and sensitivity of the data, the potential risk of harm from unauthorised use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

For example, if you have a profile with us we determine whether we can still keep your Personal Data based on your last Log-in to the Platform. If this exceeds 2 years we may close your account and delete your Personal Data, unless we have reasons to keep it longer. You can request further details of retention periods for different aspects of your personal data by contacting us.

The period of time that Customers will hold your data for will vary depending on their privacy policy, please contact them directly.

You have the right to ask us to delete your data in certain circumstances (see the section 12 below for further information).

 

9. Security

We have implemented technical and organisational security measures to protect the security of any Personal Data as well as general data. These include encryption, access controls and security by design and protocol. Although we do our best to protect your Personal Data electronic transmission of data over the internet and stored in storage technology is not 100% secure so we cannot guarantee that bad actors such as hackers or other unauthorised third parties will not be able to circumvent our defences and access, edit or steal your Personal Data. We will do our upmost to protect you and your Personal Data, but you use our Platform at your own risk. Security can be enhanced by you accessing the Platform from a secure device, environment and connection to the internet.

 

10. Permitted Age

Our Platform is only intended for and may be used by individuals aged 16 or over, the “Permitted Age”.  BizGive does not collect Personal Data knowingly from individuals that do not meet the Permitted Age or allow them to register for our services. If it comes to our attention that we have collected Personal Data from an individual under the Permitted Age we may delete this information without notice. If you believe this has occurred please contact data@bizgiveworld.com.

 

11. Data Transfers

We store Personal Data within the UK and Ireland.

If the need arises to transfer your Personal Data out of the UK to countries which have laws that do not provide the same level of data protection as the UK law, we always ensure that a similar degree of protection is afforded to it by ensuring that appropriate safeguards are put in place.

These measures may include only transferring your Personal Data to countries that have been deemed by the UK to provide an adequate level of protection for personal data (including countries such as Ireland within the European Economic Area), the use of contractual safeguards such as standard contractual clauses, the approved International Data Transfer Agreement, the International Data Transfer Addendum to the European Commission’s standard contractual clauses for international data transfers, or other mechanisms as approved by the European Commission or the relevant data protection authority.

 

12. Your Privacy Rights

Under data protection law, you have rights including:

  • Your right to be informed about the collection and use of your personal data – We have set this information out in this Privacy Policy, however if you have any questions please let us know.
  • Your right of access – You have the right to ask us for copies of your personal information (commonly known as a “subject access request”) and supplementary information. If you make a subject access request, we may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response. We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
  • Your right to rectification, or to complete it if it is incomplete – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
  • Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
  • Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances. You also have the right to withdraw your consent t any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before your withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
  • Your right to object to processing – You have the right to object to the processing of your personal information in certain circumstances.
  • Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
  • Your right to complain to the Information Commissioner – see section 13 below.

 

Please note that you are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you.

Please contact us at data@bizgiveworld.com if you wish to make a request.

To exercise your rights of any Customer please review their respective privacy policy.

 

13. Complaints

If you have any concerns about our use of your personal information, you can make a complaint to us at data@bizgiveworld.com

You can also complain to the ICO if you are unhappy with how we have used your data.

The ICO’s address:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113
ICO website: https://www.ico.org.uk

 

14. Changes to this Privacy Policy

We make changes to this Privacy Policy as our Platform evolves or to keep aligned to the latest privacy regulation of best practice. The last date of change is noted at the top of this document.

 

15. Third-Party Links

This Platform may include links to Customer Platforms, third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our platform, we encourage you to read the privacy policy of every website you visit.

 

16. ICO Registration

Organisation name: Bizgive Limited
Registration Reference: ZA290584