Privacy Notice

Updated: May 2024

1. Introduction

SEP2 Limited have a need to collect and use personal data. SEP2 take respect to how this data is collected, processed, used, stored and transferred.

We may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information may include, but is not limited to:

First and last name
Email address
Phone number
Address including Post Code
Bank account information in order to pay for products and/or services
Usage data

This policy applies where we are acting as a data controller in respect of your personal data, across all channels and methods in which data is obtained or is provided.

2. Collecting your personal data

Most of the personal information we process is provided to us directly for you for one of the following reasons:

Signed up to our newsletter
Requested information from or about us
Registered or inquired about an event hosted or sponsored by us
Applied for a job with us
Purchased goods or services from us

We also receive personal information indirectly, from the following sources for the purpose of tracking and analysing usage of our website and the effectiveness of our communication channels:

Google Analytics – please see https://policies.google.com/privacy
Pipedrive Web Visitor Plugin – please see https://help.leadfeeder.com/en/articles/3561400-gdpr-privacy-and-security-summary
Outfunnel Web Visitor Plugin – please see https://outfunnel.com/privacy/

This website uses Mouseflow: a website analytics tool that provides session replay, heatmaps, funnels, form analytics, feedback campaigns, and similar features/functionality. Mouseflow may record your clicks, mouse movements, scrolling, form fills (keystrokes) in non-excluded fields, pages visited and content, time on site, browser, operating system, device type (desktop/tablet/phone), screen resolution, visitor type (first time/returning), referrer, anonymized IP address, location (city/country), language, and similar meta data. Mouseflow does not collect any information on pages where it is not installed, nor does it track or collect information outside your web browser. If you’d like to opt-out, you can do so at https://mouseflow.com/opt-out. If you’d like to obtain a copy of your data, make a correction, or have it erased, please contact us first or, as a secondary option, contact Mouseflow at [email protected].

For more information, see Mouseflow’s Privacy Policy at http://mouseflow.com/privacy/.

Please see our specific Cookie Policy for information on how we use Cookies.

3. Using your personal data

We use the information that you have given us in order to facilitate the needs of our business, depending on the reason we have your personal information.

Where you have signed up to our newsletter or requested information from or about us, we use this data for the purpose of providing you with information that you may be interested in.

Where you have registered or inquired about an event hosted or sponsored by us, we use the data to share with you the pertinent information about the event and to measure the success of our communication channels

Where you have applied for a job with us, we use this data to engage with you about the role to which you have applied to support you through the application process.

Where you have purchased goods of services from us, we use this data to deliver the goods or services to you and keep you informed about relevant information related to the goods, services or similar items of interest.

Under the General Data Protection Regulation (GDPR), the lawful bases we rely on for processing this information are:

(a) Your consent. You are able to remove your consent at any time. You can do this by contacting us as detailed at the end of this notice.
(b) We have a contractual obligation.
(c) We have a legal obligation.
(d) We have a vital interest.
(e) We have a legitimate interest.

4. Retention of your personal data

We will only keep your personal data for the time period that it is required, based upon the type of data and the reason we have it. We will not keep personal information for longer than necessary.

We will keep all data where:

there is a need for compliance or a legal obligation to which we are subject
to enforce our terms & conditions or contracts
to resolve disputes

5. Transfer of your personal data

Your data may be transferred internationally, although it is our intent that where possible that will not occur. If your data is transferred internationally, we will legally protect your data by:

Transfering to EEA countries
Transferring with commonly adopted contractual adjustments such as US Privacy Shield or EU Model Clauses.

Due to the globalised way in which we work and operate, your personal information may transit to other countries, including those outside of the EEA. Because of this, all personal information is encrypted whilst in transit and encrypted whilst at rest to ensure its privacy.

6. Disclosing your personal data to others

We do not and will not sell your personal data to any third parties.

We may disclose personal data to a limited set of companies as an integral basis for our ability to operate our business such as our insurance and other professional advisors as needed for the purpose of obtaining or maintaining insurance or obtaining professional advice.

We maintain a list of Sub Processors along with other Information Security and Compliance information in our Trust Centre, available at https://trust.sep2.co.uk

7. Your rights

Under data protection law, you have rights including:

Your right of access – You have the right to ask us for copies of your personal information.

Your right to rectification – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.

Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.

Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances.

Your right to object to processing – You have the the right to object to the processing of your personal information in certain circumstances.

Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.

You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you.

Please contact us if you wish to make a request.

8. Amendments or changes to this policy

From time to time, we may make changes to this notice. This notice is always available on the same page – https://www.sep2.co.uk/privacy-notice. The publish date at the top of the notice will be updated if and when changes are made.

9. Contact us

Should you need to contact us in relation to any data privacy issues, concerns or queries, please contact [email protected] or write to:

Data Protection Officer
SEP2
51a St Pauls Street
Leeds
LS1 2TE

Tech Driven. People Powered.

Protect your business today

Get in touch to find out how we can secure your organisation against all forms of cyber security attacks.

Cookie	Duration	Description
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
_GRECAPTCHA	5 months 27 days	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
_lfa	2 years	This cookie is set by the provider Leadfeeder to identify the IP address of devices visiting the website, in order to retarget multiple users routing from the same IP address.
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-functional	1 year	The cookie is set by the GDPR Cookie Consent plugin to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Necessary" category .
cookielawinfo-checkbox-others	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Others".
cookielawinfo-checkbox-performance	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
elementor	never	This cookie is used by the website's WordPress theme. It allows the website owner to implement or change the website's content in real-time.
JSESSIONID	session	The JSESSIONID cookie is used by New Relic to store a session identifier so that New Relic can monitor session counts for an application.
PHPSESSID	session	This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
aka_debug	session	Vimeo sets this cookie which is essential for the website to play video functionality.
bcookie	1 year	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
bscookie	1 year	LinkedIn sets this cookie to store performed actions on the website.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.

Cookie	Duration	Description
_calendly_session	21 days	Calendly, a Meeting Schedulers, sets this cookie to allow the meeting scheduler to function within the website and to add events into the visitor’s calendar.
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_LSE9RP433S	2 years	This cookie is installed by Google Analytics.
_gat_UA-89994160-1	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
mf_user	3 months	Mouseflow sets this cookie to identify whether a visitor is new or returning.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.

Security Intelligence Services

Technical Services

Security Audit Services

Privacy Notice

Privacy Notice

1. Introduction

2. Collecting your personal data

3. Using your personal data

4. Retention of your personal data

5. Transfer of your personal data

6. Disclosing your personal data to others

7. Your rights

8. Amendments or changes to this policy

9. Contact us

Tech Driven. People Powered.

Protect your business today

Kieron

Central Response Team Manager

Connect with Kieron on LinkedIn