Privacy Policy

Dynamic Planner Ltd (“we”, “our”, “us”) is committed to protecting your privacy and complying with the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018 (“DPA 2018”).

This Policy sets out your rights, and the basis by which we collect, use and disclose your personal data. We will always aim to be transparent about how we process personal data.

We are the Data Controller for your personal data. Our Data Protection Officer can be contacted at DPO@dynamicplanner.com.

The primary purpose of the Dynamic Planner Limited website is to help visitors learn more about our business. We take care to protect the privacy of users of the website and, if we ask you to provide certain information, it will only be used in accordance with this policy. This policy applies to all visitors to our website.

When you complete the profiling license purchase form form on our website, we will use your personal data to set you up as a customer, manage our relationship with you, and provide our services. To do this, your information may be securely shared with the following third party service providers:

• GoCardless – our payment service provider. If you choose to pay by Direct Debit, your bank account and payment details are entered directly into GoCardless’ systems. We do not receive or store your full bank account details. GoCardless processes payments on our behalf and acts as a data processor in accordance with their own privacy notice.
• Cinch Mailjet – our email service provider. We use Mailjet to send transactional emails (for example, payment confirmations and service related communications). This involves sharing limited contact details such as your name and email address.
• Salesforce – our customer relationship management (CRM) system. We use Salesforce to manage customer accounts, communications, and our ongoing relationship with you. Your identity, contact, and transaction related information may be synced into Salesforce for customer management and record keeping purposes.
• HubSpot – our marketing and customer engagement platform. We use HubSpot to manage and track interactions with prospective and existing customers, send marketing communications, and analyse engagement with our content. Your name, email address, company information, and activity data may be stored and processed within HubSpot. You can unsubscribe from marketing communications at any time using the link in any email we send.

All third party providers are required to protect your personal data, only use it for specified purposes, and process it in line with UK GDPR requirements.

The information we might collect, use, store or share about you includes:

• Identity data includes first name, maiden name, last name, username or similar identifier, marital status, title, date of birth and gender.
• Contact data includes billing address, delivery address, email address and telephone numbers.
• Financial data includes bank account and payment details.
• Transaction data includes details about payments to and from you and other details of services you have purchased from us.
• Technical data includes Internet Protocol (IP) address, your login data, device type, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
• Profile data includes your username and password, any purchases or orders made by you, your interests, preferences, feedback and survey responses.
• Usage data includes information about how you use our website and services.
• Cookies and tracking data collected through cookies and similar technologies. See our cookie policy for more information.

When this information relates to or identifies you, it is treated as ‘personal data’.

We may use your personal data in the following ways:

• to analyse browsing activity data to understand how people use our website to identify improvement so that we can provide you with a better website experience.
• to analyse how you interact with website and email content to enable us to provide you with more relevant content.
• to process online job applications.
• to fulfil your requests for more information.
• for surveys or research questionnaires to help improve our content or our services to you.
• to communicate with you and contact you for marketing purposes where you have agreed to this.

We process your personal data based on consent, contractual necessity, legitimate interest, and legal compliance.

• Consent means you have given us your consent to use your personal data, such as responding to your request for information, sending you marketing materials. You may withdraw your consent at any time.
• Contract means processing your personal data to fulfil either an ongoing contract or in advance of a contract being signed.
• Legitimate interest refers to our business need to operate effectively and securely while providing you the best experience. Before processing your personal data, we assess and balance any potential impact on your rights. We do not use your personal data where your interests override ours, unless you consent or the law permits.
• Comply with a legal or regulatory obligation means processing your personal data where it is necessary for compliance with a legal or regulatory obligation that we are subject to.

You have a right to object to us processing your personal data by contacting us at DPO@dynamicplanner.com.

If we transfer your personal data outside the UK or the EEA, we will ensure appropriate safeguards are in place in accordance with applicable UK GDPR provisions.

When applying for a vacancy via our careers page, we will collect personal information such as name, contact details, work history, education, skills, training, and other onboarding requirements.

Our website may contain links to other relevant websites and services provided by our partners or third parties. Once you have used these links to leave our website, we do not have any control over third party websites, and we are not responsible for the way in which they process your personal data should you choose to use their services. We encourage you to review the privacy policies of those third-party websites.

We will not share your personal data with any third party that intends to use it for direct marketing purposes, unless we have specifically informed you and you have given us specific permission to do this. We do not sell your personal data.

We may use third parties, like trusted service providers, agents or contractors to provide support and administration assistance for the internal operation of our website.

These third parties may come into contact with your personal data while providing their services to us. They must provide equivalent levels of security for your personal data and, where required, are contractually bound by to keep your personal data private, secure and to process it only on the specific instructions from us.

We will retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. In some cases, this will include retention for defined periods in line with legal, regulatory, accounting or reporting requirements.
When determining retention periods, we consider the nature and sensitivity of the data, the risk of harm from unauthorised use or disclosure, the purposes of processing, and applicable legal requirements. Further details of how long we keep different categories of personal data are set out in our Data Retention Policy.

Under UK GDPR, you have the following rights:

• Access: You can request a copy of the personal data we hold about you.
• Rectification: You can have incomplete or inaccurate personal data corrected.
• Erasure: You can request that we delete your personal data, subject to certain legal or regulatory obligations.
• Restriction: You can ask us to limit or suspend the processing of your personal data.
• Portability: You can request the transfer of your personal data to yourself or a third party, where applicable.
• Objection: You can object to processing (including marketing) of your personal data.
• Withdrawal of consent: Where processing is based on consent, you have the right to withdraw consent at any time. Where processing is based on your consent, you have the right to withdraw that consent at any time by contacting DPO@dynamicplanner.com. This will not affect processing carried out before consent was withdrawn.

If you have submitted personal data through this website and wish to object to, or request restriction of, how we process it for the purposes for which it was provided, please contact us at DPO@dynamicplanner.com.

If you have any concerns or complaints about how we handle your personal data, you are encouraged to contact us in the first instance so that we can try to resolve the issue.

You can raise a complaint by contacting our Data Protection Officer at DPO@dynamicplanner.com or by writing to us at: c/o Moorcrofts LLP, Thames House, Mere Park, Dedmere Road, Marlow, SL7 1PB. We will investigate your complaint and aim to respond within a reasonable timeframe.

You also have the right to make a complaint to the UK supervisory authority, the Information Commissioner’s Office (ICO), if you believe that we have not complied with data protection law. Further information about how to complain can be found on the ICO’s website.

We are committed to ensuring that your personal data is secure. We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.

We have implemented strong standards and procedures which are audited and reviewed regularly to ensure we continue to meet them.

We have put in place procedures to deal with any suspected personal data breaches and will notify you and any applicable regulator of a breach where we are legally required to do so.

We may update this policy from time to time. You are encouraged to check this page from time to time to ensure that you are happy with any changes. This privacy policy is effective from the last updated date at the top of the policy.