Who we are

One Page Pay™ is part of Commino Limited is a company whose registered office is: 32 Willoughby Road, London N8 0JG. We take the security of your personal information very seriously. The information below explains how we use any information that you share with us either on our website or by email. If you have any concerns or queries regarding this then you can contact us through our Data Protection Officer whose details appear below.

How we use your information

When someone visits our website we may use a third party service to discover the number of visitors to, or use of the various parts of the site, but this information does not identify any individual. If we do want to collect more detailed information about you through our website, we will ask you. We will make it clear when we collect personal information and will explain what we intend to do with it.

If you are a registered user then your contact, logon and associated details will be stored and used in order to authenticate you each time you log in.

If you contact us through the website then we will assume that you implicitly consent to us keeping your details on record for the purposes of communicating with you, but we will only do so if:

The communication relates to the original communication sent by you

We, at a later date consider that further communication might be in your interest

You are already registered with us as a customer or associate of ours for which we have a lawful reason for communicating with you

If you are a client of ours then we may be contractually obliged to store information relating to our business dealings.

Third-Party Services

We may from time to time use third-party services like content management systems (CMS) such as WordPress, which is run by Automattic Inc., Hubspot, or Microsoft’s Azure services. We may use this and other services to help deliver, monitor and report on the effectiveness of the site and help us improve it.

LinkedIn Conversion Tracking and Insight Tag

The LinkedIn Insight Tag is Javascript Code that is added to our website in order to enable detailed campaign reporting and help us gain insights about our website visitors. LinkedIn Insight Tag enables us to retarget website visitors, to track conversions and to access further insights about members interacting with our LinkedIn ads.

The LinkedIn Tag allows the collection of metadata such as:

IP address information

Events such as page views

Timestamp

The LinkedIn browser cookie will be stored in a visitor’s browser until they either delete the cookie or the cookie expires ( from the last time the visitor’s browser loaded the Insight Tag, there is a rolling 6-month expiration.)

If you want to opt out of cookies from LinkedIn, you can from your LinkedIn settings page. We recommend you read their Cookie Policy for further information.

Behavioral Remarketing

We use remarketing services to advertise on third party websites to you after you visited our service. We and our third-party vendors use cookies to inform, optimize and serve ads based on your past visits to our Service.

Google AdWords

Google AdWords remarketing service is provided by Google Inc.You can opt-out of Google Analytics for Display Advertising and customize the Google Display Network ads by visiting the Google Ads Settings page: http://www.google.com/settings/ads Google also recommends installing the Google Analytics Opt-out Browser Add-on – https://tools.google.com/dlpage/gaoptout – for your web browser. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics. For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: http://www.google.com/intl/en/policies/privacy/

Facebook

Facebook remarketing service is provided by Facebook Inc. You can learn more about interest-based advertising from Facebook by visiting this page: https://www.facebook.com/help/164968693837950 To opt-out from Facebook’s interest-based ads follow these instructions from Facebook: https://www.facebook.com/help/568137493302217 Facebook adheres to the Self-Regulatory Principles for Online Behavioural Advertising established by the Digital Advertising Alliance. You can also opt-out from Facebook and other participating companies through the Digital Advertising Alliance in the USA http://www.aboutads.info/choices/, the Digital Advertising Alliance of Canada in Canada http://youradchoices.ca/ or the European Interactive Digital Advertising Alliance in Europe http://www.youronlinechoices.eu/, or opt-out using your mobile device settings. For more information on the privacy practices of Facebook, please visit Facebook’s Data Policy: https://www.facebook.com/privacy/explanation

Links to external websites

We are not responsible for the content or reliability of the linked websites. Listing should not be taken as endorsement of any kind. We cannot guarantee that these links will work all of the time and we have no control over the availability of linked pages.

Storage of personal data

We have what we believe are appropriate security controls in place to protect personal data. Risk assessment, including assessing risks to the rights and freedoms of data subjects, is at the heart of our security and management systems. We do not, however, have any control over what happens between your device and the boundary of our information infrastructure. You should be aware of the many information security risks that exist and take appropriate steps to safeguard your own information. We accept no liability in respect of breaches that occur beyond our sphere of control.

Your rights

You have the right to be informed about the collection and use of your personal data. This is a key transparency requirement under the GDPR.

You have the right of access, commonly referred to as subject access, which gives individuals the right to obtain a copy of their personal data as well as other supplementary information. It helps individuals to understand how and why you are using their data, and check you are doing it lawfully.

You have the right to have inaccurate personal data rectified. An individual may also be able to have incomplete personal data completed – although this will depend on the purposes for the processing. This may involve providing a supplementary statement to the incomplete data.

You have the right to have personal data erased. This is also known as the ‘right to be forgotten’. The right is not absolute and only applies in certain circumstances.

You have the right to restrict the processing of your personal data in certain circumstances. This means that an individual can limit the way that an organisation uses their data. This is an alternative to requesting the erasure of their data.

You have the right to data portability, this gives individuals the right to receive personal data you have provided to a controller in a structured, commonly used and machine-readable format. It also gives you the right to request that a controller transmits this data directly to another controller.

You have the right to object to the processing of your personal data. This effectively allows you to ask us to stop processing your personal data. The right to object only applies in certain circumstances. Whether it applies depends on our purposes for processing and our lawful basis for processing.

You have rights regarding automated individual decision-making; a decision made by automated means without any human involvement, and profiling.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

One Page Pay™ and Commino™ may use cookies on the website or associated services. A “cookie” is a small bit of record-keeping information that web sites often store on a user’s computer. Cookies do not include people’s names, e-mail addresses or other information that is personally identifiable; they are typically used to quickly identify a user’s computer and to “remember” things about the user’s visit. Commino Limited may set cookies for your web browser as you visit our websites or use our services. Commino Limited may use cookies to keep track of preferences and to remember your account information. You can disable cookies or set your browser to alert you when cookies are being sent to your computer, although this may affect your ability to access certain features of our services.

Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set, visit www.aboutcookies.org or www.allaboutcookies.org.

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Data Sharing

We don’t share your personal information with third parties. Only aggregated, anonymized data is periodically transmitted to external services to help us improve the Contently Website and service. We currently use Google Analytics (traffic analysis, SEO optimization), Mailchimp, HubSpot and SharpSpring (mailing list management), Zendesk (email support) and Chartbeat (analytics). We listed below what data these third parties extract exactly. Feel free to check out their own Privacy Policies to find out more.

– Google Analytics: anonymous (ad serving domains, browser type, demographics, language settings, page views, time/date), pseudonymous (IP address)

We also use social buttons provided by services like Twitter, Google+, LinkedIn and Facebook. Your use of these third party services is entirely optional. We are not responsible for the privacy policies and/or practices of these third party services, and you are responsible for reading and understanding those third party services’ privacy policies.

We employ and contract with people and other entities that perform certain tasks on our behalf and who are under our control (our “Agents”). We may need to share personal information with our Agents in order to provide products or services to you. Unless we tell you differently, our Agents do not have any right to use Personal Information or other information we share with them beyond what is necessary to assist us. You hereby consent to our sharing of Personal Information with our Agents.

We may choose to buy or sell assets. In these types of transactions, user information is typically one of the transferred business assets. Moreover, if we, or substantially all of our assets, were acquired, or if we go out of business or enter bankruptcy, user information would be one of the assets that is transferred or acquired by a third party. You acknowledge that such transfers may occur, and that any acquirer of us or our assets may continue to use your personal information as set forth in this policy.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Data Protection Officer (DPO)

Commino Limited, 32 Willoughby Road, LONDON N8 0JG Tel: +44 207 193 6057, Email: jill.bromige@commino.co.uk, www.commino.co.uk

Complaints

If for any reason you are not satisfied with the way a complaint has been handled, you have the right to complain to escalate your complaint to a supervisory authority within the European Union. For the United Kingdom, this is the Information Commissioner’s Office (ICO), who is also our lead supervisory authority. Its contact information can be found at https://ico.org.uk/global/contact-us/.

Analytics

Google Analytics, Hotjar

Personal Data: Cookies; Usage Data

Displaying content from external platforms

Wistia widget

Personal Data: Cookies; Usage Data

Handling payments

Stripe

Personal Data: various types of Data as specified in the privacy policy of the service

Hosting and backend infrastructure

Amazon Web Services (AWS)

Personal Data: various types of Data as specified in the privacy policy of the service

Registration and authentication

Stripe OAuth

Personal Data: various types of Data as specified in the privacy policy of the service

Traffic optimization and distribution

Cloudflare

Personal Data: Cookies; various types of Data as specified in the privacy policy of the service

User database management

HubSpot CRM

Personal Data: email address; phone number; various types of Data as specified in the privacy policy of the service

Handling payments

Payment processing services enable this Application to process payments by credit card, bank transfer or other means. To ensure greater security, this Application shares only the information necessary to execute the transaction with the financial intermediaries handling the transaction.

Some of these services may also enable the sending of timed messages to the User, such as emails containing invoices or notifications concerning the payment.

Stripe (Stripe Inc)

Stripe is a payment service provided by Stripe Inc.

Personal Data collected: various types of Data as specified in the privacy policy of the service.

Normal Place of processing: US – Privacy Policy.

You may be able to request local data processing for your account

Hosting and backend infrastructure

This type of service has the purpose of hosting Data and files that enable this Application to run and be distributed as well as to provide a ready-made infrastructure to run specific features or parts of this Application. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the Personal Data are stored.

Amazon Web Services (AWS) (Amazon Web Services, Inc.)

Amazon Web Services (AWS) is a hosting and backend service provided by Amazon Web Services, Inc.

Personal Data collected: various types of Data as specified in the privacy policy of the service.

Normal Place of processing: United States – Privacy Policy. Privacy Shield participant.

You can now also request data processing in Europe.

Registration and authentication

By registering or authenticating, Users allow this Application to identify them and give them access to dedicated services.

Depending on what is described below, third parties may provide registration and authentication services. In this case, this Application will be able to access some Data, stored by these third party services, for registration or identification purposes.

Stripe OAuth (Stripe Inc)

Stripe OAuth is a registration and authentication service provided by Stripe, Inc. and is connected to the Stripe network.

Personal Data collected: various types of Data as specified in the privacy policy of the service.

Place of processing: US – Privacy Policy.

Traffic optimization and distribution

This type of service allows this Application to distribute their content using servers located across different countries and to optimize their performance.

Which Personal Data are processed depends on the characteristics and the way these services are implemented. Their function is to filter communications between this Application and the User’s browser.

Considering the widespread distribution of this system, it is difficult to determine the locations to which the contents that may contain Personal Information User are transferred.

Cloudflare (Cloudflare)

Cloudflare is a traffic optimization and distribution service provided by Cloudflare Inc.

The way Cloudflare is integrated means that it filters all the traffic through this Application, i.e., communication between this Application and the User’s browser, while also allowing analytical data from this Application to be collected.

Personal Data collected: Cookies; various types of Data as specified in the privacy policy of the service.

Place of processing: United States – Privacy Policy.

User database management

This type of service allows the Owner to build user profiles by starting from an email address, a personal name, or other information that the User provides to this Application, as well as to track User activities through analytics features. This Personal Data may also be matched with publicly available information about the User (such as social networks’ profiles) and used to build private profiles that the Owner can display and use for improving this Application.

Some of these services may also enable the sending of timed messages to the User, such as emails based on specific actions performed on this Application.

HubSpot CRM (HubSpot, Inc.)

HubSpot CRM is a User database management service provided by HubSpot, Inc.

Personal Data collected: email address; phone number; various types of Data as specified in the privacy policy of the service.

Place of processing: US – Privacy Policy.

Applicability of broader protection standards

While most provisions of this document concern all Users, some provisions expressly only apply if the processing of Personal Data is subject to broader protection standards.

Such broader protection standards apply when the processing:

is performed by an Owner based within the EU;

concerns the Personal Data of Users who are in the EU and is related to the offering of paid or unpaid goods or services, to such Users;

concerns the Personal Data of Users who are in the EU and allows the Owner to monitor such Users’ behavior taking place in the EU.

Latest update: September 01, 2021