Who we are:
“Mixd” or “We” or “Us” or “Our” is a reference to the business operating as a partnership between Philip Shackleton and Michael Danford whose principal office address is: Platform, New Station Street, Leeds LS1 4JB United Kingdom, and whose VAT registration number is GB847265011.
Controller
Mixd is the “controller” of the Personal Information that we collect about you and as such we’re responsible for your personal data and for ensuring that it’s handled legally and safely.
What data we collect:
The personal data we collect from you includes:
- identity data including name, age, gender, job title, company details
- contact information including: name, address, organisation, telephone and email
- personal data voluntarily provided to us by people who apply for a role at Mixd
- personal data on research participants which we use to deliver a contract to a client
- questions, queries or feedback you provide, including your email if you contact us
- information to help us deliver a contract to a client that is commercially sensitive.
- your email address and preferences if you sign up to our email newsletter
- how you use our emails – for example whether you open them and links you click on
- your IP address and details of which version of web browser you used
- information on how you use the site, using cookies and page tagging techniques
- where you provide your consent, we use Google Analytics cookies to collect information about how you use Mixd.co.uk. This includes IP addresses.
Google Analytics processes information about:
- the pages you visit on Mixd.co.uk
- how long you spend on each Mixd.co.uk page
- how you got to the site
- what you click on while you’re visiting the site
We make sure you cannot be directly identified by Google Analytics data. We do this by using Google Analytics’ IP address anonymisation feature and by removing any other personal data from the titles or URLs of the pages you visit. We will not combine analytics information with other data sets in a way that would directly identify who you are.
Why we need your data:
We collect your personal data in order to:
- respond to any questions, queries or feedback, if you’ve asked us to
- provide you with information about our services
- perform contractual obligations in relation to a project or service
- gather feedback to improve our services
- send email newsletters to users who request them
- monitor use of the site to identify security threats
- monitor the performance of the site to identify inefficiencies.
We use the information we collect through Google Analytics to see how you use Mixd.co.uk and to see how well the site performs on your device.
We do this to help:
- make sure Mixd.co.uk is meeting the needs of its users
- make improvements, for example improving site search
- make performance improvements, for example improving page load time
Legal basis for processing data:
The legal basis for processing personal data in relation to site security is our legitimate interests and the legitimate interests of our users, in ensuring the security and integrity of Mixd.co.uk.
The legal basis for processing data collected with Google Analytics on Mixd.co.uk is your consent.
The legal basis for processing data collected if you apply for a job at Mixd is your consent.
The legal basis for processing all other personal data is that it’s necessary:
- to perform a task in the public interest
- in the exercise of our fulfilling our obligations related to contracts and agreements with customers, partners and suppliers
What we do with your data:
The data we collect may be shared with our technology suppliers, for example our hosting provider. We will share your data if we are required to do so by law – for example, by court order, or to prevent fraud or other crime. The data we collect with Google Analytics cookies is transferred and stored with Google where we analyse it with Google Analytics software (Universal Analytics). We do not allow Google to use or share this data for their own purposes.
We will not:
- sell or rent your data to third parties
- share your data with third parties for marketing purposes
How long we keep your data:
We store personal data for as long as we find it necessary to fulfill the purpose for which the personal data was collected, while also considering our need to answer your queries or resolve possible problems, to comply with legal requirements under applicable laws, to attend to any legal claims/complaints, and for safeguarding purposes. This means that we may retain your personal data for a reasonable period of time after your last interaction with us. When the personal data that we have collected is no longer required, we will delete it in a secure manner. We may process data for statistical purposes, but in such cases, data will be anonymised.
Children’s privacy protection:
Our services are not designed for, or intentionally targeted at, children 13 years of age or younger. We do not intentionally collect or maintain data about anyone under the age of 13.
Where your data is processed:
We design, build and run our systems to make sure that your data is as safe as possible at all stages, both while it’s processed and when it’s stored. Many of our external third parties are based outside the UK or EEA so their processing of your personal data will involve a transfer of data outside the UK or EEA.
Whenever we transfer your personal data out of the UK or EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
- where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe;
- where we use providers based in the US, we transfer data to them from the UK on the basis of the UK Information Comissioners Office’s International Data Transfer Agreement (the IDTA) which requires third parties based abroad to provide similar protection to personal data shared between Europe and the US.
For example, we use a hosting provider called WPEngine Inc who are based in the United States. We have agreed Data Processing Agreement contract with WPEngine Inc, which we have negotiated to make sure it reflects the needs of our customers, you can view their DPA on their website or you can request extracts from our contract with them where you are legally entitled if that applies to your personal data.
Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the UK or EEA.
How we protect your data:
We are committed to doing all that we can to keep your data secure. We have set up systems and processes to prevent unauthorised access or disclosure of your data – for example, we protect your data using varying levels of encryption. We also make sure that any third parties that we deal with keep all personal data they process on our behalf secure.
We are ISO27001 certified and have robust and secure procedures for the handling of personal information. Our certification means we have achieved the international standard for managing risks to the security of information we hold. This includes data we process for clients, marketing material to support our objectives, and personal information fulfil our contractual obligations. Our ISO27001 certification demonstrates Mixd’s commitment to information security (including the transfer of data), and to the responsible use of data and data retention.
Your rights:
You have the right to request:
- information about how your personal data is processed
- a copy of that personal data
- that anything inaccurate in your personal data is corrected immediately
You can also:
- raise an objection about how your personal data is processed
- request that your personal data is erased if there is no longer a justification for it
- ask that the processing of your personal data is restricted in certain circumstances
If you have any of these requests, contact us.
Links to other websites:
Mixd.co.uk contains links to other websites.
This privacy notice only applies to Mixd.co.uk, and does not cover other services and transactions that we link to. These services, have their own terms and conditions and privacy policies.
Following a link to another website
If you go to another website from this one, read the privacy policy on that website to find out what it does with your information.
Following a link to Mixd.co.uk from another website
If you come to Mixd.co.uk from another website, we may receive personal information from the other website. You should read the privacy policy of the website you came from to find out more about this.
Contact us or make a complaint:
Contact the Mixd Privacy Team if you:
- have a question about anything in this privacy notice
- think that your personal data has been misused or mishandled
Mixd Privacy Team
You can also contact our Data Protection Officer (DPO):
Data Protection Officer
Mixd
Platform,
New Station Street,
Leeds
LS1 4JB
The DPO provides independent advice and monitoring of our use of personal information.
You can also make a complaint to the Information Commissioner, who is an independent regulator.
Information Commissioner
[email protected]
Telephone: 0303 123 1113
Textphone: 01625 545860
Monday to Friday, 9am to 4:30pm
Find out about call charges
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Changes to this policy:
We may change this privacy policy. In that case, the ‘last updated’ date at the bottom of this page will also change. Any changes to this privacy policy will apply to you and your data immediately.
If these changes affect how your personal data is processed, Mixd will take reasonable steps to let you know.
Last updated 21 September 2023.