Privacy and cookie policy
Privacy fundamentals
Your privacy is important to us. At 10 Degrees, we have a few fundamental principles:
- We are thoughtful about the personal information we ask you to provide and the personal information that we collect about you through the operation of our services or through recruitment.
- We store personal information for only as long as we have a reason to keep it.
- We aim to make it as simple as possible for you to control what information on your website is shared publicly (or kept private), indexed by search engines, and permanently deleted.
- We aim for full transparency on how we gather, use, and share your personal information.
The policy is based on Automattic’s which is released under a Creative Commons Sharealike license, you’re more than welcome to adapt it and repurpose it for your own use, just make sure to replace references to us with ones to you, A link to automattic.com somewhere on your site would also be kind as they spent a lot of money and time on the below.
What this policy covers
This Privacy Policy applies to information that we collect about you when you use our websites, services or through recruitment.
Throughout this Privacy Policy we’ll refer to our website and other products and services collectively as “Services.”
Below we explain how we collect, use, and share information about you, along with the choices that you have with respect to that information.
If you have any questions about this Privacy Policy, please contact us.
Information we collect
We only collect information about you if we have a reason to do so–for example, to provide our Services, to communicate with you, to make our Services better or for a job you have applied for.
We collect information in three ways: if and when you provide information to us, automatically through operating our services, and from outside sources. Let’s go over the information that we collect.
How we use your data
Information you provide to us
- Basic Account Information: We ask for basic information from you in order to set up your website with us. For example, your name, business name, business address and contact details (email address and phone number).
- Personal Information: We may ask for personal information from you in order for you to apply for a job at 10 Degrees. For example, your name, your address, your telephone number and your employment history. We will only ever ask for personal information that we require in order to assess your suitability for the role you have applied for. Your data will only be used for recruitment purposes.
- Transaction and Billing Information: When you buy something from us, e.g. website support, hosting, domain name or another service, you will provide additional personal and payment information that is required to process the transaction and your payment, such as your name, credit card information or bank details, and contact information.
- Content Information: Depending on the Services you use, you may also provide us with information about you in the draft and published content for your website. For example, if you write a blog post that includes biographic information about you, we will have that information, and so will anyone with access to the Internet, if you choose to publish the post publicly. This might be obvious to you… but it’s not to everyone!
- Your Customer’s Information: You may provide us with personally identifiable information of your customers as part of a support request.
- Credentials: Depending on the Services you use, you may provide us with credentials for your website (like SSH, FTP, and SFTP username and password) to allow us to troubleshoot problems on your websites more quickly.
- Communications with Us: You may also provide us information when you respond to surveys, communicate with our support team about a support question.
Information we collect automatically
- Log Information: Like most online service providers, we collect information that web browsers, mobile devices, and servers typically make available, such as the browser type, IP address, unique device identifiers, language preference, referring site, the date and time of access, operating system, and mobile network information. We collect log information when you use our Services–for example, when you create or make changes to your website.
- Usage Information: We collect information about your usage of our Services. For example, we collect information about the actions that site administrators and users perform on a site–in other words, who did what, when and to what thing on a site (e.g., [WordPress username] deleted “[title of post]” at [time/date]). We use this information to, for example, provide our Services to you, as well as get insights on how people use our Services, so we can make our Services better.
- Information from Cookies & Other Technologies: A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. We use cookies to help us identify and track anonymous users.
How we use information
- To provide our Services–for example, to set up and maintain your account, host your website, backup and restore your website, or charge you for any of our paid Services;
- To provide Service updates via email: Changes to our Services; Opening hours; Staff changes; Service interruptions; Planned maintenance.
- To further develop our Services–for example by adding new features that we think our users will enjoy or will help them to create and manage their websites more efficiently;
- To monitor and analyze trends and better understand how users interact with our Services, which helps us improve our Services and make them easier to use;
- To monitor and protect the security of our Services, detect and prevent fraudulent transactions and other illegal activities, fight spam, and protect the rights and property of 10 Degrees and others; and
- To communicate with you about offers and promotions offered by 10 Degrees and others we think will be of interest to you, solicit your feedback, or keep you up to date on 10 Degrees and our products.
- To communicate with you about job positions that you have applied for.
How we share information
We do not sell our clients’ personally identifiable information.
We share information about you in the limited circumstances spelled out below and with appropriate safeguards on your privacy:
- Employees, and Independent Contractors: We may disclose information about you to our employees, and individuals who are our independent contractors that need to know the information in order to help us provide our Services or to process the information on our behalf. We require our employees, and independent contractors to follow this Privacy Policy for personal information that we share with them.
- Third Party Vendors: We may share information about you with third party vendors who need to know information about you in order to provide their services to us. This group includes vendors that help us provide our Services to you (like payment providers that process your credit and debit card information) and those that help us understand and enhance our Services (like analytics providers). We require vendors to agree to privacy commitments in order to share information with them.
- As Required by Law: We may disclose information about you in response to a witness summons, court order, or other governmental request.
- To Protect Rights and Property: We may disclose information about you when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of 10 Degrees, third parties, or the public at large. For example, if we have a good faith belief that there is an imminent danger of death or serious physical injury, we may disclose information related to the emergency without delay.
- Business Transfers: In connection with any merger, sale of company assets, or acquisition of all or a portion of our business by another company, or in the unlikely event that 10 Degrees goes out of business or enters bankruptcy, user information would likely be one of the assets that is transferred or acquired by a third party. If any of these events were to happen, this Privacy Policy would continue to apply to your information and the party receiving your information may continue to use your information, but only consistent with this Privacy Policy.
- With Your Consent: We may share and disclose information with your consent or at your direction. For example, we may share your information with third parties with which you authorize us to do so, such as the social media services that you connect to your site.
- Aggregated and De-Identified Information: We may share information that has been aggregated or reasonably de-identified, so that the information could not reasonably be used to identify you. For instance, we may publish aggregate statistics about the use of our Services.
Security
While no online business is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so. To enhance the security of your website, we encourage you to enable Two Factor Authentication.
Choices
You have several choices available when it comes to information about you:
- Limit the Information that You Provide: If you have an account with us, you can choose not to provide the optional account information, profile information, and transaction and billing information. Please keep in mind that if you do not provide this information, certain features of our Services–for example, paid services–may not be accessible.
- Limiting Candidate Data: If you apply for a job with 10 Degrees you can choose not to provide specific personal details. Please keep in mind that if you do not provide the information that we ask for, the prospect of a successful application may be diminished.
- Opt-Out of Electronic Communications: You may opt out of receiving promotional messages from us. Just follow the instructions in those messages. If you opt out of promotional messages, we may still send you Service updates, like those about your account and legal notices.
- Set Your Browser to Reject Cookies: At this time, 10 Degrees does not respond to “do not track” signals across all of our Services. However, you can usually choose to set your browser to remove or reject browser cookies before using 10 Degrees’ websites, with the drawback that certain features of 10 Degrees websites may not function properly without the aid of cookies.
Other things you should know
- Transferring Information: 10 Degrees is registered in England and Wales. By accessing or using the Services or otherwise providing information to us, you consent to the processing, transfer, and storage of information in and to the European Union which may have rights and protections that are different from those in your home country.
- Third Party Software: If you’d like to use third party software like plugins with our Services, please keep in mind that when you interact with them you may provide information about yourself to those third parties. We don’t own or control these third parties and they have their own rules about collection, use and sharing of information. You should review their rules and policies when installing and using third party software.
- Backups / Data Retention: If you ask us to host your website, we will take daily backups of your website for the purpose of disaster recovery. These backups will contain a snapshot of all your website data, held for 30 days. If we are working on your website, we will take a copy of your website for us to work on internally within our office. This will include all website data and will only be held on our local servers for the time we are working on your website. If you terminate a service with us, we’ll keep statutory information related to your services for 7 years for HMRC compliance, all other data will be destroyed after 30 days.
- Candidate Data Retention: If you apply for a job at 10 Degrees we will hold your data for no longer than 30 days after the application closing date. After this date your data will be destroyed.
- Data Breach: We will report any significant data breaches to the supervisory authority (Information Commissioner’s Office) within 72 hours. We will inform the data processors (if we are the data controller) or individuals (if we are the data processor) of a breach if it is likely to result in a high privacy risk for them. We will maintain an internal data breach register in any data breach event.