Our internal staff.
Like many websites we use a number of third-party services for functionality. The following is a list of companies we share data with on a day to day basis. This list does not include services we share anonymous data with or that provide services on an ad-hoc basis such as IT contractors. All the suppliers below have been carefully selected to ensure they provide suitable protections under GDPR.
Our newsletter and marketing email lists are managed through Mailchimp, these emails are opt-in, when you opt-in to our newsletter your name and email address will be added to our mailing list which is held securely on mailchimp’s servers, by opting in you agree to:
- Transfer your contact information to MailChimp.
- Store your contact information in our MailChimp account.
- To being sent marketing emails from our MailChimp account (These will be for our services only).
- To have tracked interactions for email marketing and ad placement purposes.
Emails are initiated and managed by ourselves.
Please see the section entitled “Newsletter and Marketing Emails” for information on how to opt out of these emails.
Maxmind is used for fraud prevention, if you make a purchase your IP address will be shared with Maxmind to determine the approximate location the order is being placed from and if the IP is a known source of fraud.
If you purchase an SSL certificate you will be required to provide your name, address and contact details which will be used by Globalsign to register the certificate and perform vetting. GlobalSign may contact you by email, phone or post as part of the vetting process.
Tucows are a domain registrar and owners of OpenSRS, when you register a domain with us you are required to provide contact details that are used to register your domain against. It is important to note that these details will be visible within the publicly searchable database called “whois”, we strongly advise customers when making a GTLD (Generic top-level domain) purchase to choose the whois privacy option which anonymises the whois database entry.
(It should be noted that prior to the 25 th of May 2018 all personal whois data will be anonymised by Tucows to comply with GDPR.)
Nominet are the registration authority for .uk and .co.uk domains, when you register a .UK domain you are required to provide contact details that are used to register your domain against. It is important to note that these details will be visible within the publicly searchable database called “whois”, if registering the domain as an individual you can opt out of having details listed in the whois database, you cannot opt-out if registering for commercial use.
(Important: prior to the 25 th of May 2018 all personal whois data will be anonymised by Nominet to comply with GDPR.)
Janet is the domain registration authority for .ac.uk, .gov.uk, .gov.scot, .gov.wales and .llyw.cymru domains. If you register any of these domain with us then your contact details will be shared for the purpose of linking and verifying your registration.
Microsoft & Google Cloud
We use Microsoft Office 365 for document storage, email and collaboration. In some instances your personal data may be stored on Office 365 servers, any data stored there is encrypted at rest and is controlled by us.
PayPal might collect some information in order to process the order. For domain registration account establishment your information might be shared with our registration partner. In both cases this is done over an SSL encrypted connection to their servers.
If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms and conditions of supply Terms and Conditions and other agreements; or to protect the rights, property, or safety of our customers or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.