Privacy Policy

Last Updated: 9 May 2024

1. Welcome

This privacy policy (“Privacy Policy”) describes how Thingtrax Ltd and our subsidiaries and affiliates (collectively, “Thingtrax”, “we”, “us”, or “our”) collects and handles personal information that we collect through our website at https://Thingtrax.com/ and other related services including our cloud Application(s) as well as OneApp and Manage mobile applications (collectively, the “Services”). It also tells you about the rights and choices you have with respect to your personal information

2. Personal information we collect

Information you provide to us. Personal information you may provide to us through the Services or otherwise includes:

  • Account and contact data, such as your first and last name, username, company name password, email and mailing addresses, and phone number, that you may provide when you create an account with us, request a demo or otherwise contact us, including for support.
  • Communications that we exchange with you, including when you contact us with questions, feedback, or otherwise.
  • Billing and payment information. We may collect your billing information, such as credit card number and billing address and your account number so we can process your transactions. We rely on third party payment processors to do so.
  • Marketing data, such as your preferences for receiving our marketing communications.

Automatic data collection. We and our service providers may automatically log information about you, your computer or mobile device, and your interaction over time with the Services, our communications and other online services, such as:

  • Device data, such as your computer’s or mobile device’s operating system type and version, manufacturer and model, browser type, screen resolution, RAM and disk size, CPU usage, device type (e.g., phone, tablet), IP address, unique identifiers (including identifiers used for advertising purposes), language settings, mobile device carrier, radio/network information (e.g., WiFi, LTE, 3G).
  • Online activity data, such as pages or screens you viewed, how long you spent on a page or screen, the website you visited before browsing to the Services, navigation paths between pages or screens, information about your activity on a page or screen, access times, and duration of access, and whether you have opened our marketing emails or clicked links within them.

We collect this information using cookies and other similar technologies. See the section on “Cookies and similar technologies” below for more information.

Information we collect from third parties. We may collect personal information about you from third party sources, such as for marketing and recruitment purposes, for example from: 

  • Third party data providers. We may obtain personal information about you from third parties such as data brokers and other vendors. This information may include name, email, phone, work history, location, social profile and other similar information.
  • Public sources. We also obtain personal information from publicly available sources, such as social media platforms, including LinkedIn. This information may include name, email, phone, work history, location, social profile and other similar information.

3. How we use personal information

We use your personal information for the following purposes or as otherwise described at the time of collection:

  • Providing our Services. We use personal information to administer your account and to operate, maintain, and provide you with our Services. In particular, we use personal information to perform our contractual obligations under our terms of service.
  • Communicating with you about our Services. It is in our legitimate business interests to use personal information to respond to your requests, to assess the needs of your business to determine or provide suggestions of suitable services, provide customer support, and communicate with you about our Services, including about a demo you’ve requested, and by sending announcements, updates, security alerts and support and administrative messages.
  • Improving, monitoring, personalizing, and protecting our Services. It is in our legitimate business interests to improve and keep our Services safe for our users, which includes:
    • understanding your needs and interests, and personalize your experience with the Services and our communications;
    • troubleshooting, testing and research and to keep the Services secure; and
    • investigating and protecting against fraudulent, harmful, unauthorized or illegal activity.
  • Research and development.We may use personal information for research, statistical and development purposes in our legitimate business interests, including to analyze and improve the Services and our business. To do so, we may aggregate and/or anonymise your personal data.
  • We may send you direct marketing communications as permitted by law, including by email. You may opt-out of our marketing communications as described in the “Opt-out of marketing communications” section below. Except where consent is required, we undertake such marketing on the basis of our legitimate business interests. Where we seek your consent, you may withdraw your consent at any time.
  • Compliance and protection. We may use personal information to comply with legal obligations, and it is in our legitimate business interests to use your personal information to defend us against legal claims or disputes, including to:
    • protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims);
    • audit our internal processes for compliance with legal and contractual requirements and internal policies;
    • enforce the terms and conditions that govern the services;
    • prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft; and
    • comply with applicable laws, lawful requests and legal process, such as to respond to subpoenas or requests from government authorities.

4. Cookies and similar technologies

We use the following technologies on our Services.

  • Cookies, which are text files that websites store on a visitor’s device to uniquely identify the visitor’s browser or to store information or settings in the browser for the purpose of helping you navigate between pages efficiently, remembering your preferences, enabling functionality, helping us understand user activity and patterns, and facilitating analytics. Our Services may use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer or mobile device until you delete them). Some of these cookies are served by third party service providers or business partners and can be used by these parties to recognize your computer or mobile device when it visits the Services and other online services.
  • Local storage technologies, like HTML5 and Flash, that provide cookie-equivalent functionality but can store larger amounts of data, including on your device outside of your browser in connection with specific applications.
  • Web beacons, also known as pixel tags or clear GIFs, which are used to demonstrate that a webpage or email address was accessed or opened, or that certain content was viewed or clicked.

These cookies and other technologies may be employed for the following purposes:

  • Analytics. Analytic cookies help us collect and analyse usage statistics, enabling us to better understand how users use the Services. This, in turn, enables us to improve the Services. Our website uses analytics services provided by Google, Auth0 and Hubspot. You can learn more about Google Analytics cookies at https://developers.google.com/analytics/resources/concepts/gaConceptsCookies . You can prevent the use of Google Analytics relating to your use of our sites by downloading and installing a browser plugin available at https://tools.google.com/dlpage/gaoptout?hl=en.
  • Functional: Functional cookies allow the website to remember choices you make (such as your user name, language, or the region you are in) and provide enhanced, more personal features.
  • Essential: Essential cookies are necessary to allow the basic technical operation of our Services. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the Services may not work.

5. How we share personal information

We may share your personal information with the following parties and as otherwise described in this Privacy Policy:

  • Our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.
  • Service providers and third party integrations. Companies and individuals that provide services on our behalf or help us operate the Services or our business (such as hosting, information technology, customer support, customer relationship management, email delivery, and website analytics services, database management and back-up services, monitoring services and payment processors). We may also engage with third-party companies or individuals as business partners. These third parties may, for example, provide virtual computing and storage services.
  • Professional advisors. Professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.
  • Authorities and others. Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.
  • Business transferees.Acquirers and other relevant participants in business transactions (or negotiations for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, Thingtrax or our affiliates (including, in connection with a bankruptcy or similar proceedings).
  • Third Party Processors. We periodically appoint digital marketing agents to conduct marketing activity on our behalf, such activity may result in the compliant processing of personal information. Our appointed data processors include: (i)Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here: http://sopro.io. Sopro are registered with the ICO Reg: ZA346877 their Data Protection Officer can be emailed at: dpo@sopro.io.”

6. Privacy rights and choices

Opt out of marketing communications. You may opt out of marketing-related communications by following the opt-out or unsubscribe instructions contained in the marketing communication we send you or by contacting us as provided in the “How to Contact Us” section below. You may continue to receive services-related and other non-marketing emails.

Online tracking opt out. Most browsers let you remove or reject cookies. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. Please note that if you set your browser to disable cookies, the Services may not work properly. For more information about cookies, including how to see what cookies have been set on your browser and how to manage and delete them, visit www.allaboutcookies.org.

Personal information requests. We also offer you choices that affect how we handle the personal information that we control. Depending on your location and the nature of your interactions with our Services, you may request the following in relation to personal information:

  • Access to a copy of the personal information that we have collected about you. Where applicable, we will provide the information in a portable, machine-readable, readily usable format.
  • Correction of personal information that is inaccurate or out of date.
  • Deletion of personal information that we no longer need to provide the Services or for other lawful purposes.
  • Additional rights, such as to object to and request that we restrict our use of personal information.

To make a request, please email us or write to us as provided in the “How to Contact Us” section below. We may ask for specific information from you to help us confirm your identity. Depending on where you reside, you may be entitled to empower an “authorized agent” to submit requests on your behalf. We will require authorized agents to confirm their identity and authority, in accordance with applicable laws. You are entitled to exercise the rights described above free from discrimination.

Limits on your privacy rights and choices. In some instances, your choices may be limited, such as where fulfilling your request would impair the rights of others, our ability to provide a service you have requested, or our ability to comply with our legal obligations and enforce our legal rights. If you are not satisfied with how we address your request, you may submit a complaint by contacting us as provided in the “How to Contact Us” section below.

Right to complain. You have the right to complain to a data protection regulator where you live or work, or where you feel a violation has occurred.

7. Other sites and services

The Services may contain links to websites and other online services operated by third parties. In addition, our content may be integrated into web pages or other online services that are not associated with us. These links and integrations are not an endorsement of, or representation that we are affiliated with, any third party. We do not control websites or online services operated by third parties, and we are not responsible for their actions.

8. Security

We employ a number of technical, organizational and physical safeguards designed to protect the personal information we collect. However, no security measures are failsafe and we cannot guarantee the security of your personal information.

9. International data transfer

We are based in the United Kingdom. We may also transfer personal information to service providers in the United States and other jurisdictions. Please note that such jurisdictions may not provide the same protections as the data protection laws in your home country.

When we engage in cross-border data transfers, we will ensure that relevant safeguards are in place to afford adequate protection for personal information and we will comply with applicable data protection laws, in particular by relying on an EU Commission or UK government adequacy decision or on contractual protections for the transfer of personal information. For more information about how we transfer personal information internationally, please contact us as set out in the “How to Contact Us” section below.

10. Children

The Services are not intended for use by children under 13 years of age. If we learn that we have collected personal information through the Services from a child under 13 without the consent of the child’s parent or guardian as required by law, we will delete it.

11. Retention of personal information

Where required under applicable laws, we retain personal information only for as long as is necessary to fulfil the purposes for which it was collected and processed, in accordance with our retention policies, and in accordance with applicable laws and regulatory obligations or until you withdraw your consent (where applicable).

To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of personal information, the purposes for which we use personal information and whether we can achieve those purposes through other means, and the applicable legal and regulatory requirements.

12. Changes to this privacy policy

We reserve the right to modify this Privacy Policy at any time. We will post the update Privacy Policy on the website. If we make material changes to this Privacy Policy, we will let you know.

13. How to contact us

Responsible entity. Thingtrax Ltd. is the entity responsible for the processing of personal information under this Privacy Policy as a controller.

Contact us. If you have any questions or comments about this Privacy Policy, our privacy practices, or if you would like to exercise your rights with respect to your personal information, please contact us by email at privacy@Thingtrax.com or by writing to us at:

Thingtrax Ltd
Centurion House,
London Road,
TW18 4AX