This policy sets out how we handle personal information and applies across all of Orchid Digital Ltd's businesses, including our themes, plugins and the support forum.
What type of personal information do we collect?
We collect certain personal information about visitors and users of our website. The most common types of information we collect are things like: usernames, member names, email addresses, other contact details, support queries, forum comments and web analytics data.
How we collect personal information
We may collect personal information directly when you provide it to us, automatically as you navigate through the our website or through other people when you use services associated with us.
When you provide personal information to us via our website you’re consenting to us collecting and using that information in line with this policy and the user terms. You are likely to provide personal information when you subscribe to a newsletter, email list, submit feedback, enter a contest, fill out a survey or send us a communication.
If you choose not to provide personal information, we may not be able to provide you with our services and you may not be able to carry out transactions or access the full range of features available through our website.
Personal information we collect about you from others
Although we generally collect personal information directly from you, we may on occasion also collect information about you from other people and by using tracking technologies such as cookies, web beacons and other web analytics software or services.
How do we use personal information?
We may use your personal information in order for us to:
Fulfil a contract, or take steps linked to a contract.
Where this is necessary for purposes which are in our, or third parties, legitimate interests. These interests include:
operate the website and provide you with services described on the website, such as verifying your identity when you contact us via our website and to help facilitate the resolution of any disputes.
Customise our services and websites, such as advertising that may appear in order to provide a more personalised experience.
update you with operational news and information about our website and services such as notifying you about changes to our website, website disruptions or security updates.
provide you with information that you request from us or, where we have your consent to do so, provide you with marketing information about products and services which we feel may interest you.
carry out technical analysis to determine how to improve the website and services we provide.
monitor activity on the website, such as identifying potential fraudulent activity and to ensure compliance with the user terms that apply to the website.
manage our relationship with you, such as by responding to your comments or queries submitted to us on the website or asking for your feedback or whether you want to participate in a survey.
manage our legal and operational affairs.
provide general administrative and performance functionsand activities.
Where you give us consent:
providing you with marketing information about products and services which we feel may interest you; and
For purposes which are required by law.
For the purpose of responding to requests by government, a court of law, or law enforcement authorities conducting an investigation.
When may we disclose your personal information?
We may disclose personal information to people such:
companies that are in Orchid Digital Ltd group of companies
subcontractors and service providers who assist us in connection with the ways we may use personal information (as set out above)
our professional advisers (lawyers, accountants, financial advisers etc)
regulators and government authorities in connection with our compliance procedures and obligations
a purchaser or prospective purchaser of all or part of our assets or our business, and their professional advisers, in connection with the purchase
other people where we are authorised or required by law to do so.
How do we store your personal information?
We store personal information on secure servers that are managed by us and our service providers. Personal information that we store is subject to security and access controls, including username and password authentication and data encryption where appropriate.
Choices regarding control of your personal information
Where we have your consent to do so (e.g if you have subscribed to one of our e-mail lists or have otherwise indicated that you are interested in receiving offers or information from us), we may send you marketing communications about products and services that we feel may be of interest to you. You can ‘opt-out’ of such communications if you would prefer not to receive them in the future.
If your e-mail address has changed and you would like to continue to receive our e-mails, you will need to access your account and update your e-mail address information in your account and sign-up again for those e-mails that you want to receive.
If we send e-mails with commercial content we will generally include an “unsubscribe” facility that you can use to opt-out of further communications. To opt-out, just follow the instructions in the e-mail. We might not include an opt-out facility in important operational and service-based e-mails concerning items such as your purchases, the user terms, important updates and need-to-know messages. By using our website you agree that we do not need to include opt-out facilities in those messages.
You also have choices about cookies, as described below. By modifying your browser preferences, you have the choice to accept all cookies, to be notified when a cookie is set, or to reject all cookies. If you choose to reject cookies some parts of our website may not work properly in your case.
Cookies (not the type you eat!) and web analytics
Generally speaking, when you visit our website, there’s certain information that’s recorded which is generally anonymous information and may not reveal your true identity. If you’re logged into an account some of this information could be associated with your account. We’re referring to the following kinds of details:
your IP or proxy server IP
basic domain information
your Internet service provider is sometimes captured depending on the configuration of your ISP connection
the date and time of your visit to the website
the length of your session
the pages which you have accessed
the number of times you access our site within any month;
the size of file you look at
the website which referred you to our site
the operating system which your computer uses.
Information about children
Our website is not suitable for children under the age of 13 years, so if you are under 13 we ask that you do not use our website or give us your personal information (if you are a young tech wiz, please direct your nearest responsible adult to use the website for you!). If you are from 13 to 18 years, you can browse the website but will need the supervision of a parent or guardian to contact us. It is the responsibility of parents or guardians to monitor their children’s use of our website.
Information you make public or give to others
When we need to update this policy
We may need to change this policy from time to time in order to make sure it stays up to date with the latest legal requirements and any changes to our privacy management practices. When we do amend the policy, the changes will be effective immediately. We’ll usually publish information about changes to be made to this policy on our website – but please be aware that it is your responsibility to check in and make sure you keep up to date with any changes to this policy. If you’re a user or visitor in the European Economic Area these rights also apply to you:
For the purposes of applicable EU data protection law (including the General Data Protection Regulation 2016/679 (the “GDPR”), we are a ‘data controller’ of your personal information.
How you can access your personal information
You are also entitled to ask us to port your personal information (i.e. to transfer in a structured, commonly used and machine-readable format, to you), to erase it, or restrict its processing. You also have rights to object to some processing that is based on our legitimate interests, such as profiling that we perform for the purposes of direct marketing, and, where we have asked for your consent to process your data, to withdraw this consent as more fully described below.
These rights are limited in some situations – for example, we can demonstrate that we have a legal requirement to process your personal information. In some instances, this means that we may retain some data even if you withdraw your consent.
Where we require your personal information to comply with legal or contractual obligations, then provision of such data is mandatory: if such data is not provided, then we will not be able to manage our contractual relationship with you, or to meet obligations placed on us. In all other cases, provision of requested personal information is optional.
If you have unresolved concerns you also have the right to complain to data protection authorities. The relevant data protection authority will be the data protection authority of the country: (i) of your habitual residence; (ii) of your place of work; or (iii) in which you consider the alleged infringement has occurred.