Please read these privacy & cookies policies carefully before using our website and services
POL1.1 - We want the Easy CMS platform to be safe, lawful, and respectful for everyone.
POL2.1 - JWBIZ Ltd ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed by JWBIZ Ltd.
POL2.2 - For the purposes of the UK General Data Protection Regulation ("UK GDPR") and the Data Protection Act 2018, JWBIZ Ltd of 4, Ynys Bridge Court, Cardiff, CF15 9SS, United Kingdom is the Data Controller. Registered company number: 14179078. If you have any questions about this policy or how we process your personal data you can contact us regarding data protection queries via our contact page: https://jwbiz.com/contact.
POL2.3 - This Privacy Policy applies to our website, its associated subdomains (collectively, our "Service"), and any related services or applications offered by JWBIZ Ltd. By accessing or using our Service you agree to the collection, storage, use and disclosure of your personal data as described in this Privacy Policy and our Terms & Conditions.
POL3.1 - To help explain things as clearly as possible in this Privacy Policy, these terms are defined as:
POL4.1 - We collect information from you when you visit our website, register, place an order, subscribe to a newsletter, respond to a survey, contact support or otherwise interact with our Service.
POL5.1 - Under the UK GDPR we must have a lawful basis to process personal data. We rely on the following bases depending on the activity:
POL6.1 - We may use the information we collect for the following purposes (with the lawful basis in parentheses):
POL7.1 - We will only send marketing communications where you have given consent or where we have another lawful basis permitted by law. Where required by law (including the Privacy and Electronic Communications Regulations – PECR), we will obtain your prior consent before sending direct marketing by email, SMS or similar channels.
POL7.2 - You can withdraw consent or opt out of marketing at any time by clicking the unsubscribe link in any marketing email or by contacting us.
POL8.1 - We may share personal and non-personal information with third parties in the following circumstances:
POL8.6 - We may also share aggregated or de-identified information that does not identify any individual.
POL9.1 - End users may voluntarily provide us with information they have made available on social media. If you provide us with such information, we may collect it and use it consistent with this Policy. You can control what social media platforms share by adjusting privacy settings on those platforms.
POL10.1 - We may receive some information from third parties when you contact us (for example, fraud detection providers), and we may periodically obtain information that is publicly available or provided through integrations. We will only use such third-party information as permitted by law and this Policy.
POL11.1 - We collect personal information you provide directly and automatically when you use our Services (e.g. account creation, purchases, browsing, customer support interactions). We may also obtain personal information from third-party sources as described above.
POL12.1 - By submitting your email address on this website you agree to receive emails from us consistent with the permissions you grant. You can unsubscribe from marketing lists at any time by using the unsubscribe link included in our emails, or by contacting us. Transactional emails related to your account or orders will continue to be sent if necessary to perform our contract with you.
POL13.1 - We retain personal data only for as long as necessary to provide the Service, to fulfil the purposes described in this Policy, and to comply with legal, tax and accounting obligations. General retention guidelines (which may vary by data type):
POL14.1 - We implement appropriate technical and organisational measures to protect personal data from accidental loss, misuse, unauthorised access, disclosure, alteration or destruction. These measures include HTTPS/TLS for data in transit, access controls, and industry standard encryption for sensitive data. Passwords are stored using secure hashing. All personal data is stored on servers located in the United Kingdom.
POL14.2 - However, no system is completely secure and we cannot guarantee absolute security. If a data breach affects your personal data we will comply with our legal obligations to notify you and the Information Commissioner's Office where required.
POL15.1 - All personal data collected via our Website or Service is stored on servers located in the United Kingdom. We do not transfer personal data to countries outside the United Kingdom or the European Economic Area unless explicitly agreed in writing with the relevant party.
POL16.1 - We take reasonable steps to protect your information through technical and organisational controls (see above). However, because perfect security does not exist, we cannot guarantee that your data will never be breached. If applicable law imposes non-disclaimable duties, we will meet those duties in good faith and with reasonable care.
POL17.1 - Yes. You have the following rights under the UK GDPR (subject to certain exemptions):
POL17.9 - To exercise any of these rights please contact us via our contact page. We will take reasonable steps to verify your identity before responding to requests. We aim to respond to verifiable requests within one month (or longer where permitted by law and we notify you of any extension).
POL17.10 - If you are not satisfied with our response, you have the right to complain to the UK supervisory authority, the Information Commissioner's Office (ICO): https://ico.org.uk.
POL18.1 - If you are a worker, applicant or contractor of JWBIZ Ltd, we collect information you voluntarily provide for employment or engagement purposes. We use such information to manage our working relationship with you and to comply with our statutory obligations. You can request access, correction or deletion of your personal data in line with the rights described above.
POL19.1 - We may disclose personal information to a prospective purchaser (and their advisers) in connection with a sale, reorganisation, merger, consolidation, change of control, financing, or acquisition of JWBIZ Ltd or its assets. Any transferee will be required to adhere to this Privacy Policy.
POL20.1 - This Privacy Policy is governed by the laws of the United Kingdom. Any dispute arising from or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts of England and Wales.
POL21.1 - By using our Website, registering an account, or making a purchase you consent to this Privacy Policy. Where required, you will be asked to provide explicit consent for specific processing activities (for example, marketing and non-essential cookies), and you can withdraw that consent at any time.
POL22.1 - This Privacy Policy applies only to our Services. Our Website may contain links to external sites operated by third parties. We are not responsible for the privacy practices of other sites — please review their policies before providing personal data.
POL23.1 - We use cookies and similar technologies to operate our websites, improve performance, and — where you consent — deliver personalised content.
POL23.2 - Details about the cookies we use are provided in the cookie banner on our main website and in the Cookie Policy pages on subdomains. You can manage your preferences in the cookie banner on the relevant website.
POL23.3 - When you first visit the Website we will present a cookie banner explaining cookie categories and allowing you to accept or decline non-essential cookies. You can change cookie preferences at any time through your browser settings or via our cookie preference centre (if provided).
POL23.4 - Local Storage (DOM storage) may be used to store client-side data such as preferences. This is separate from cookies and may be controlled through your browser settings.
POL23.5 - We use session data to identify and maintain your logged-in state while you use the Website. Session cookies typically expire when you close your browser.
POL24.1 - You can block cookies using your browser settings. Blocking cookies may prevent some features of the Website from functioning correctly. Disabling or deleting cookies does not remove information held by third parties such as analytics providers; you should consult those providers' policies for opt-out instructions.
POL25.1 - We do not store unencrypted payment card data on our servers. Payment card processing is performed by our authorised payment processors; please refer to their privacy policies for details. All payment processing is conducted under appropriate security controls including TLS/SSL and industry-standard measures.
POL26.1 - Our Service is not directed at anyone under the age of 18. We do not knowingly collect personal information from anyone under 18. If you believe someone under 18 has provided personal information to us, please contact us and we will take steps to remove such information promptly.
POL27.1 - We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. If we make material changes we will notify you via the Website or by other means prior to the changes taking effect. Continued use of the Service after the updated Policy comes into force indicates acceptance of the changes.
POL28.1 - We may display or provide links to third-party content, products or services. We are not responsible for the practices, accuracy or completeness of any third-party content. Use of third-party services is at your own risk and subject to the third party's terms and privacy policy.
POL29.1 - UK GDPR gives individuals greater control over their personal data and imposes obligations on organisations that process personal data. If you are located in the UK, or your data originates in the UK, UK GDPR applies to how we handle your personal data.
POL30.1 - Personal data is any information that relates to an identifiable individual, whether direct (name, email) or indirect (IP address, device identifiers). Special category data such as health information, racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic data, biometric data and sexual orientation require additional protections and we will only process such data where lawful and strictly necessary.
POL31.1 - UK GDPR sets legal standards for personal data protection and increases rights and remedies for individuals. We follow UK GDPR principles — lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity and confidentiality — in all our operations.
POL32.1 - We aim to help customers meet their obligations to data subjects. We generally retain conversation and service data for up to 6 years where necessary for contractual, accounting or legal reasons. If you request deletion or account closure we will comply within 60 days where technically feasible, except for information we are required to retain by law. If we cannot comply with a request we will explain why and outline any lawful reasons for refusal.
POL33.1 - Don't hesitate to contact us if you have any questions or wish to exercise your rights.
