e2e-assure Microsoft Teams App Privacy Policy

e2e-assure respects your privacy and is committed to protecting your personal data

This privacy policy will inform you as to how we look after your personal data when you are using the e2e-assure Microsoft Teams app, your privacy rights and how the law protects you.

Purpose of this privacy policy

This privacy policy aims to give you information on how e2e-assure collects and stores personal data when using the e2e-assure Microsoft Teams app.

It is important that you read this privacy policy together with any other privacy policy or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data.

e2e is the Controller and is therefore responsible for your personal data (collectively referred to as e2e, “we”, “us” or “our” in this privacy policy). e2e is responsible for this website.

e2e comprises a number of legal entities. This privacy policy is issued on behalf of all the legal entities in the e2e Group so when we mention e2e, “we”, “us” or “our” in this privacy policy, we are referring to all the relevant companies in the e2e Group responsible for processing your data.

If you have any questions about this privacy notice, including any requests, please use the contact details set out below.

1. What we need and why we need it

We will collect and store the following types of personal data from you, for the reasons stated below:

  1. Email address – to create a user record in Cumulo
  2. Name and surname – to display next to any information you enter or update in the e2e-assure Teams app

2. What we do with it

Your personal data is stored in the Cumulo appliance provided to you as part of our service.

3. How long we keep it

Under UK GDPR and the Data Protection Act 2018 We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

We will retain the minimum amount of data required for us to supply you with relevant marketing content or in performance of a contract that we have entered into.

5. What are your rights?

Should you believe that any personal data we hold on you is incorrect or incomplete, you have the right to request to see this information, rectify it or have it deleted. Please contact us using the details outlined below.

GDPR State that as a data subject you are entitled to following rights:

  1. Section 3 – Article 15 Right of access – you have the right to request a copy of the information that we hold about you.
  2. Section 3 – Article 16 Right of rectification – you have a right to correct any data that we hold about you that is incomplete or inaccurate.
  3. Section 3 – Article 17 Right to erasure (‘right to be forgotten’)– Data subjects have the right to request their personal data be deleted. Note that this is not an absolute right and may be subject to exemptions based on certain laws.
  4. Section 3 – Article 18 – Right to restriction of processing – under certain conditions, you have the right to restrict the processing activities being carried out.
  5. Section 3 – Article 20 Right of data portability – you have the right to have the data we hold about you transferred to another organisation.
  6. Section 4 – Article 21 Right to object – you have the right to object to certain types of processing such as direct marketing.
  7. Section 4 – Article 22 Right to object to automated processing, including profiling – you also have the right to be subject to the legal effects of automated processing or profiling.
  8. Article 79 Right to judicial review, you are authorised to bring a proceeding before a national court where e2e group (the controller) has an establishment, if you consider that your rights have been infringed as a result of unlawful processing of your personal data by e2e group (or any third-party organisation mentioned above where we have shared your personal data).

In the event that you wish to complain about how we have handled your personal data, please contact Barry Green, the Data Protection Officer at DPO(at)e2e-assure.com or in writing at e2e-assure Ltd, The Old Chapel, Union Way, Witney, Oxfordshire, OX28 6HD. we will then look into your complaint and work with you to resolve the matter.

If you still feel that your personal data has not been handled appropriately according to the law, you can contact The ICO and file a complaint with them at ico.org.uk/make-a-complaint or by using their helpline on 0303 123 1113.