At NOVO CURATED LIMITED, we are committed to protecting your privacy and personal data in accordance with the United Kingdom’s General Data Protection Regulation (“GDPR”), the Data Protection Act 2018, and other relevant laws and regulations in the United Kingdom.

This Privacy Policy explains how we collect, process, and safeguard your data. It also informs you of your rights under data protection laws, how those laws protect you, and provides our employees and staff with guidance on their responsibilities and procedures for handling personal data.

We may collect and use data from the following individuals:

• Customers
• Suppliers
• Business contacts
• Employees/Staff members
• Third parties connected to your customers
  
  This Privacy Policy applies to all of our employees and staff members and covers all personal data processed by us, regardless of when it was collected.

Data Controller

NOVO CURATED LIMITED is your Data Controller and is responsible for managing your personal data. If you have any questions or concerns about your data, please contact us via email at operations@novocurated.com.

You have the right to file a complaint with the Information Commissioner’s Office (ICO), the UK's supervisory authority for data protection matters (www.ico.org.uk). However, we would appreciate the chance to resolve any concerns directly with you before you approach the ICO, so please reach out to us first.

In fulfilling our responsibilities as a Data Controller, we may rely on employees or third parties, known as "Processors," to handle your data on our behalf. As such, the responsibilities outlined below may be assigned to an individual or may apply to the organization as a whole. Both the Data Controller and our Processors have the following duties:

Ensure all personal data processing is conducted in accordance with one of the legal bases specified in the GDPR.

Ensure that Processors authorized to process personal data are bound by confidentiality agreements or have an equivalent statutory obligation of confidentiality.

Implement appropriate technical and organizational measures to guarantee a level of security that is suitable for the risks involved in processing personal data.

Obtain prior specific or general authorization from the Data Controller before engaging another Processor.

Assist the Data Controller in fulfilling the Controller's obligation to respond to requests for exercising data subjects' rights.

Provide the Data Controller with all necessary information to demonstrate compliance with GDPR obligations and contribute to audits, including inspections, carried out by the Controller or an auditor appointed by the Controller.

Keep a record of all processing activities carried out on behalf of the Controller.

Cooperate with the supervisory authority upon request in the performance of its duties.

Ensure that anyone acting under the authority of the Processor who has access to personal data processes it only in accordance with the Controller's instructions.

Notify the Data Controller without undue delay upon becoming aware of any personal data breach.

LEGALALITY - DATA COLLECTION

"Personal Data" refers to any information that can identify an individual. It does not include data where the individual's identity has been removed (i.e., anonymous data).

We may collect, use, store, and transfer various types of Personal Data about you, which we have categorized as follows. Not all of these data types may be collected from you, but this represents the full range of data we may collect and the circumstances under which we collect it:

Includes your first name, last name, gender, and date of birth.

Includes your phone number, address, and email address.

Includes your preferences for receiving marketing information and other communications from us.

Includes information related to your debit and credit cards, such as the name on your payment details and your billing address.

Includes your banking details, such as account number and sort code.

Includes details and records of all payments you have made for our products or services.

Includes your IP address, browser type and version, time zone settings, location, operating system, platform, and other technology used on devices to interact with our services.

Includes feedback and responses to surveys.

Includes information about how you use our website, products, and services.

Collecting Data

Under GDPR, there are several valid reasons for collecting and processing Personal Data. The main grounds we rely on are:

In some situations, we collect your Personal Data when you actively give us permission, such as ticking a box to receive email newsletters or opting in for a service.

We may need to collect certain information from you to fulfill our contractual obligations and provide the services we’ve agreed upon.

We may be required by law to collect and process specific data, such as in cases involving fraudulent activity or other illegal actions.

We may collect certain information based on our legitimate interests, which are aspects of running our business that are reasonable and not expected to significantly impact your rights, freedoms, or interests. For example, we may collect your address to ensure proper delivery, or your name to maintain a record of contact for future communication.

HOW WE USE YOUR PERSONAL DATA

We will only use your Personal Data when the law permits us to do so. If you have any further questions, please email us at operations@novocurated.com.

Marketing and Content Updates

You will receive marketing communications and updates about new content from us if you have created an account and opted to receive such communications. Occasionally, we may suggest or recommend goods or services that may interest you.

Change of Purpose

We will only use your Personal Data for the purposes for which it was originally collected, unless we reasonably determine that we need to use it for a different, compatible purpose. If you would like further clarification on how the new purpose aligns with the original one, please contact us.

If we need to use your Personal Data for an unrelated purpose, we will notify you and explain the legal basis that allows us to do so.

Please note that we may process your Personal Data without your knowledge or consent if required or permitted by law.

YOUR RIGHTS & DATA USAGE

You have the option to delete your account at any time. Doing so will remove your account page from our systems and associated software, and we guarantee that all stored data will be deleted.

Your account information is protected by a password to ensure your privacy and security. To prevent unauthorized access to your account and personal details, it is important to choose a strong password, safeguard it appropriately, limit access to your computer or device, and log out when you are finished.

You can view the information associated with your account by logging into your account with us.

California Privacy Rights:

Under California Civil Code sections 1798.83-1798.84, California residents have the right to request a notice identifying the categories of personal customer information that we share with our affiliates and/or third parties for marketing purposes, along with contact information for those affiliates and/or third parties. If you are a California resident and would like a copy of this notice, please send a written request to operations@novocurated.com.

We are committed to securing your data and protecting it from unauthorized disclosure. To safeguard your Personal Data, we employ a variety of security measures, please enquire to operations@novocurated.com if you'd like to hear more on this.

Access to any Personal Data we collect is limited to a small number of employees with special access rights to the systems, and they are bound by confidentiality obligations. When we use subcontractors to store your data, we retain control over your Personal Data and ensure that it is not exposed to security risks that would not have arisen if the data remained within our possession.

However, please note that no data transmission over the internet can be guaranteed as completely secure. It is possible for third parties, not under our control, to intercept or unlawfully access transmissions or private communications. While we make every effort to protect your Personal Data, we cannot guarantee the security of any data you transmit to us. Any transmission is at your own risk. If you believe your interaction with us is no longer secure, please contact us immediately.

You can opt out of receiving marketing messages from us at any time by clicking the 'unsubscribe' link located at the bottom of our emails. If you choose to opt out of marketing communications, we will still retain other Personal Data provided through interactions with us that are not related to your marketing preferences.

YOUR DATA & THIRD PARTIES

We may share non-Personal Data with third parties. We may share your Personal Data with subcontractors or affiliates (subject to confidentiality obligations to use it only for the purposes for which we disclose it to them and pursuant to our instructions).

We may also share Personal Data with interested parties in the event that NOCO CURATED LIMITED anticipates a change in control or the acquisition of all or part of our business or assets or with interested parties in connection with the licensing of our technology.

If NOVO CURATED LIMITED is sold or makes a sale or transfer, we may, in our sole discretion, transfer, sell or assign your Personal Data to a third party as part of or in connection with that transaction. Upon such transfer, the Privacy Policy of the acquiring entity may govern the further use of your Personal Data. In all other situations your data will still remain protected in accordance with this Privacy Policy (as amended from time to time).

We may share your Personal Data at any time if required for legal reasons or in order to enforce our terms or this Privacy Policy.

Our site may contain links to third-party websites, plug-ins, and applications. By clicking on these links or enabling these connections, third parties may have the ability to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy policies. We encourage you to review the privacy policy of any website you visit after leaving our Site.

We will retain your Personal Data only for as long as necessary to fulfill the purposes for which it was collected. However, we may keep your Personal Data for a longer period if there is a complaint or if we reasonably believe that there is a possibility of litigation related to our relationship with you.

You must be 18 years of age or older to use NOVO CURATED LIMITED. If you are under 18 and have accessed NOVO CURATED LIMITED by providing false age information, you must immediately cease using the site. This website is not intended for children, and we do not knowingly collect data from individuals under the age of 18.

INTERNATIONAL TRANSFER OF DATA

By using NOVO CURATED LIMITED, you consent to the transfer of your information, including Personal Data, to locations outside the US.

We endeavour to regularly review our Privacy Policy and will post any updates on this webpage. By using NOVO CURATED LIMITED, you consent to the collection and use of your data as described in this Privacy Policy. Continued access to or use of NOVO CURATED LIMITED indicates your acceptance of any changes made to this Privacy Policy.

TERMS OF USE

Please also see our Terms of Use here.