We are Obvis Limited, a company registered in England and Wales under company number 03944400 and with our registered address at 2 Barnfield Crescent, Exeter, EX2 4NZ.
Obvis Limited respects your privacy. All information you give us is held with care and security.
For the purposes of the Data Protection Act 2018, Obvis Limited is the 'data controller' (ie the company who is responsible for, and controls the processing of, any personal data you submit to us).
This Policy was last updated on 29 April 2023.
We will use the personal information provided to us in order to:
We may collect any personal information provided by you to us through our websites (https://www.obvis.com/, https://help.obvis.com/, https://app.obvis.com/) or via use of our products, or we may collect this information via the telephone or through your email or other communications with us.
Although we do not make it compulsory to give us every item of information we ask for, the more information volunteered by our customers (and the more accurate it is), the better we can match our services to the needs of our customers.
Most web site owners collect data on how their sites are used. Many approaches to analytics involve collection of personally identifiable information. We use Plausible Analytics, a carefully designed privacy preserving analytics system. This gives us the high level insight into use of our Site that we need, but collects no personally identifiable information.
One secure identifier is generated to allow visitors on a given day to be distinguished, but these are reset once a day.
Because no personally identifiable information is collected and no cookies are used, the collection of this type of analytics is not controlled by cookie consent.
We categorise cookies as follows:
Note that we do not run adverts on our web sites, and we do not track users between our web sites and third party sites for any reason or place cookies that allow or assist others in tracking you between websites.
When you first visit our web site from a particular device and browser, you will be shown a “cookie banner” and given a chance to opt in or out of non-necessary cookies.
Our software is normally purchased by companies. We interact employees of those customer organisations, who may be users, IT support, procurement staff, etc. This might be in response to email enquiries or by phone.
It is important for us to maintain effective communication with users of our software. We therefore maintain a database of past contacts. We record, where possible, name, company, position, office street address, email address, phone number, support requests.
We ask mailing list subscribers for a small amount of personal data include their name, company, and approximate geographical location.
We keep records of what emails were sent to subscribers, and data such as which emails were opened and which links within the email were clicked.
Obvis Ltd. and Bill Harvey Associates Ltd. (https://www.billharveyassociates.com) are sister companies that work closely together. As such sharing of data between these companies is unavoidable. The Obvis and Bill Harvey Associates privacy policies will be maintained in parallel.
We do not share your personally identifiable information with any third party other than Bill Harvey Associates Ltd. for marketing purposes.
If we link to or otherwise highlight products or services from other companies, we do so because we think the information might be of value to you. We do not advertise other companies products and services in exchange for payment or data.
In our communications with you we may sometimes highlight products or services from other companies because we think these will be of value. We do not share your personally identifiable information with the suppliers of these products and services. We do not place adverts from third parties on our Site.
To operate our site and provide our services, we make use of third party services such as “cloud” software. For example, these include data storage and management services, mailing list management software, cloud web servers, and process automation tools. In the terminology of the Data Protection Act 2018 these services are “data processors”.
Our relationship with third party processors, and their processing of your personally identifiable information on our behalf, is governed by contracts. We remain the data controller in these cases.
Some of these services are located outside the UK and the EEA. The transfer of data outside the UK and EEA is discussed below in the section “Transfers of your personal information outside of the UK and European Economic Area”.
In the event of a restructuring, merger, reorganisation, or sale of assets, we may transfer your personal data to a third party involved in the transaction (for example, a purchaser) in accordance with applicable Data Protection Legislation.
We may disclose your data if we are legally obliged or entitled to do so (for example, if required to do so by Court order) or for the purposes of identifying fraud or other crime.
Information you provide to us may be transferred by us to our service providers, some of which are situated outside the UK and European Economic Area (EEA) and may be processed by staff operating outside the UK and the EEA. If we transfer your information outside the EEA in this way, we will take steps to ensure that your privacy rights continue to be protected. The EEA comprises the EU member states plus Norway, Iceland and Liechtenstein.
We aim to keep our information about you as accurate as possible. If you would like to review or change the details you have supplied us with, please contact us as set out below.
The Data Protection Act 2018 requires that we have a clear legal basis for processing your personal data. To be open and transparent with you in respect of our use of your personal data, here are the legal bases for our processing:
We do not use your personal data for the purposes of automated decision-making or profiling as those terms’ meanings apply in the context of the Data Protection Legislation. However, we may do so in order to fulfil obligations imposed by law, in which case we will inform you of any such processing and provide you with an opportunity to object.
We ask that you do not send us, and that you do not disclose, any sensitive personal data about yourself or anyone else (e.g., social security numbers, information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) on or through Obvis products or otherwise to us.
Data protection legislation defines any individual under 18 as a child. Our products and services are intended for use by businesses only. Our communication, marketing, and sales activities are never aimed at children.
We recognise that children may access public parts of our Site without our knowledge. It is also possible that a child might subscribe to our public mailing lists, for example if they wish to pursue a career in Civil Engineering and find the material we share interesting and educational. We have no way of knowing whether a particular visitor or subscriber is a child or not.
If you are a concerned parent, legal guardian, or third party, and want to discuss the use of our Site or services by a child, please contact us at firstname.lastname@example.org.
You have various rights relating to personal data about you that we hold and the ways in which we process it. To exercise these rights, you can make requests by various means. Where possible please submit requests by email to email@example.com.
Most of these rights are not absolute. We may refuse a request where exceptions apply, or where a right is overridden, for example by another legal requirement.
More details regarding your rights can be found on the Information Commissioner’s Office web site.
You have the right to receive a copy of your personal data held by us. A request for a copy of your data is commonly referred to as a “subject access request” or SAR.
You have the right to have inaccurate personal data rectified, or completed if it is incomplete.
There are circumstances in which you can request that we erase personal data we hold about you, for example if that processing was based on your consent and you have withdrawn that consent.
It is possible that you might want us to stop processing your personal data, but you do not want us to delete it or we cannot delete it for other reasons. In such circumstances, you can request that we “restrict processing”, which means that data will remain stored on our systems but will not be processed.
If at any time you would like to contact us with any enquiry relating to our processing of your personal information, you can do so by sending an email to us at firstname.lastname@example.org or by contacting us at Obvis Ltd., 2 Barnfield Crescent, Exeter, EX1 1QT.