PRIVACY AND COOKIE POLICY

Last updated: 30th August, 2018

PLEASE READ THIS PRIVACY POLICY AS WELL AS OUR TOU CAREFULLY, AS THEY GOVERN YOUR USE OF YUMAPOS. IF YOU DO NOT AGREE TO THIS PRIVACY POLICY, PLEASE DO NOT USE OUR SERVICES.

1. Introduction

1.1 YumaPOS UK Ltd having a principal place of business at Atlantic Business Centre, Atlantic St, Altringham, Manchester, WA14 5NQ, the United Kingdom (hereinafter, referred to as the “Company”, “we”, or “us”) collects from users certain personal data from the website http://www.yumapos.co.uk and the cloud based all-in-one Point-of-Sale (POS) software YumaPOS (hereinafter, collectively referred to as the “Software”).

1.2 This privacy and cookie policy (hereinafter, referred to as the “Privacy Policy”) contains Company’s policies and procedures governing the collection and processing of personal data through the Software.

1.3 The processing of personal data through the Software is done in accordance with the data protection laws of the United Kingdom.

2. Your consent

2.1 By using the Software, you are consenting to our processing of your personal data as set forth in this Privacy Policy. The term “processing” includes collecting, storing, deleting, using, and disclosing personal data.

2.2 According to the Terms of Use available at www.yumapos.co.uk, the Software cannot be accessed and used by persons under the age of 18. If a person under the age of 18 provides us with personal data without obtaining parental or guardian consent in advance, the parent or guardian may contact the Company and request us to destroy or de-identify the personal data. The contact details of the Company are specified in Section 12 of this Privacy Policy.

YumaPOS is intended for general audiences and not for children under the age of 18. If we become aware that we have inadvertently collected “personal information” (as defined by the United States Children’s Online Privacy Protection Act or General Data Protection Act in the EU) from children under the age of 18 without legally-valid parental consent, we will take reasonable steps to delete it as soon as possible. We also comply with other age restrictions and requirements in accordance with applicable local laws.

2.3 The Software uses Google Maps API(s). By using the Software, you agree that Google Privacy Policy available at http://www.google.com/policies/privacy will apply to your use of Google Maps API(s).

3. Personal data collected by the Company

3.1 For the purposes of this Privacy Policy, personal data means any data relating to an identified or identifiable natural person.

3.2 Personal data collected through the Website

3.2.1 If you sign up for our newsletter by using the “Sign up for newsletter” functionality available on the website http://www.yumapos.co.uk (hereinafter, referred to as the “Website”), the Company will collect your email address.

3.2.2 When you visit the Website, the Company collects your IP address.

3.2.3 When you fill in the contact form available on the Website, the Company will collect the following personal data: (i) name; (ii) email, (iii) phone, and (iv) any other information you wish to provide us.

3.3 Personal data collected through YumaPOS

3.3.1 The cloud based all-in-one Point-of-Sale (POS) software YumaPOS (hereinafter, referred to as “YumaPOS”) allows you to register an account. When you do so, the Company will collect the following personal data from you: (i) full name; (ii) company name; (iii) email address; (iv) physical address; (v) phone number; (vi) changed username; (vii) changed password; (viii) profile photo; (ix) job position; and (x) any other information that you may decide to provide us.

3.3.2 When you use YumaPOS, we may collect the following operational information: (i) products and services sold by you; (ii) inventory information; (iii) transaction information; (iv) pricing; (v) taxation; (vi) customer information; (vii) information about employees; and (viii) any other information that you may decide to provide us.

3.3.3 You can make payments related to YumaPOS either by direct debit or by using the services of our third party payment processor, Bacs Payment Schemes Limited (Bacs) (hereinafter, referred to as the “Third Party Payment Processor”).

3.3.4 If you decide to make payments by direct debit, we will collect payment information from you which is necessary to process your payment.

3.3.5 For more information on our Third Party Payment Processor, please visit www.bacs.co.uk. The Third Party Payment Processor may collect payment information from you, which is necessary to make the payments requested by you. If you would like to read the privacy policy of our Third Party Payment Processor, please visit https://www.bacs.co.uk/Pages/PrivacyPolicy.aspx.

4. The purpose of collection of personal data

4.1 The personal data collected through the Website is used only for:

4.2 The personal data collected through YumaPOS is used only for:

4.3 We will use your personal data for purposes that are different than the purposes identified in this Privacy Policy only if we obtain your prior express consent.

4.4 In case the Company is being sold partly or fully, the Company may also provide your personal data to a purchaser or a successor entity.

5. Non-personal data collected by us

5.1 The Company may collect non-personal data (e.g., browser types, operating systems, time/date stamps, search history) in order to analyse and improve the Software.

6. Protection of personal data

6.1 The Company employs information security tools to protect personal data collected and processed through the Software. Such information security tools include, but are not limited to, secured networks, pseudonymisation, and encryption.

6.2 Please note that, due to the inherent risks of using the Internet, we cannot be liable for any destruction, loss, leakage, and falsification of personal data caused by circumstances beyond our reasonable control.

6.3 We will put reasonable efforts to maintain the security of and to prevent misuse, loss, unauthorized access, and modification of your personal data.

6.4 Please note that you are solely responsible for keeping your login details and passwords in a private and secure manner.

6.5 We consider the confidentiality and security of your information to be of the utmost importance. YumaPOS takes a variety of technical, administrative, and physical measures to protect your information from disclosure to or access by third-parties. Please note that we do not guarantee the security of information, as no method of internet transmission or storage is completely secure. Also note that we may retain and store your information in our databases and systems even after your YumaPOS account is deactivated as long as we have a legitimate purpose to do so and in accordance with applicable law.

7. Third party access to personal data

7.1 Third party service providers that cooperate with us, such as software developers, hosting, website, and storing providers, customer support and marketing partners, may have access to your personal data for the purposes of service provision. Please note that such third party service providers perform services on behalf of the Company and they may be located outside the UK.

7.2 With the exceptions of the cases in Section 7.1, the Company does not give your personal data to third parties, unless the Company is legally bound to do so. The Company will respond to lawful requests from U.K. public authorities to disclose information about the users of the Software to the extent necessary for pursuing a public interest objective, such as national security or law enforcement.

7.3 If you decide to provide third parties with access to your personal data through the Software at your own discretion (e.g., using external email scheduling service for payment reminders), the performance of such services will be governed by the privacy policies of the chosen third party service providers. Please read carefully the terms and conditions statement and the privacy policy of the chosen service provider before opting for such a service.

7.4 The Company does not sell your personal information to third parties, and does not intend to do so in the future.

8. Accessing, correcting, and deleting your personal data

8.1 The Company takes reasonable steps to ensure that the personal data collected and processed by the Company is accurate, complete, and up-to-date. Thus, we ask you to keep your personal data as current as possible and update your personal data through the Software if necessary.

8.2 If you would like to access, modify, or delete your personal data that is processed through the Software, please send an email to the following email address: info@yumapos.co.uk. The Company will answer your request as soon as possible but no later than two weeks.

8.3 If you would like further information in relation to your legal rights under applicable law or would like to exercise any of them, please contact us using the information in the contact information section in our Legal Notice at any time. Your local laws, such as in the European Union, may permit you to request that we:

8.4 We will consider all requests and provide our response within the time period stated by applicable law. Please note, however, that certain information may be exempt from such requests in some circumstances, which may include if we need to keep processing your information for our legitimate interests or to comply with a legal obligation.

8.5 To the extent that you make such a request, we require certain information to help verify your request and prevent fraudulent information and removal requests. Specifically, we ask that you provide the following pieces of information:

8.6 Depending on the circumstances and the information you request, we may require additional methods of verification in our discretion.

8.7 You may instruct us not to use your contact information to contact you by email, postal mail, or phone regarding products, services, promotions and special events that might appeal to your interests by contacting us using the information below. In commercial email messages, you can also opt out by following the instructions located at the bottom of such emails. Please note that, regardless of your request, we may still use and share certain information as permitted by this Privacy Policy or as required by applicable law. For example, you may not opt out of certain operational emails, such as those reflecting our relationship or transactions with you.

9. Retention period

9.1 Your personal data will be kept for as long as is necessary to provide you with the requested service. For instance, if your personal data is collected to deliver the newsletter, the relevant personal data will be kept until you unsubscribe from the newsletter service.

9.2 When your personal data is no longer necessary to deliver the requested service (e.g., you cancel your account allowing you to use the Software), the Company will delete your data as soon as possible. Please note that the Company does not store or back up any personal data after you cancel your account allowing you to use the Software.

10. Links

10.1 The Software may contain links to third-party websites. The Company is not responsible for the privacy practices of such third-party websites.

11. Cookies

11.1 The Software uses cookies. A cookie is a small computer file. It typically consists of letters and numbers. When you visit a website, the website may send a cookie to your browser. Subsequently, the browser may store the cookie on your computer system. The main purpose of cookies is to allow a website to recognize a user’s device.

11.2 There are two types of cookies, namely, persistent cookies and session cookies. Persistent cookies remain valid until their expiration date, unless deleted by the user before that date. Session cookies will be stored on a web browser and will remain valid until the moment when the browser is closed.

11.3 Cookies do not typically contain personal data. However, personal data stored by us may be linked to the information stored in and obtained from cookies. Web servers can use cookies to: (1) identify and track users while they navigate through different pages on a website; and (2) identify users returning to a website.

11.4 The Company uses both session and persistent cookies. The Company uses session cookies in order to verify your details until you are navigating through the Software. The session cookies enable you to avoid re-entering your details each time you enter a new webpage. The Company uses persistent cookies in order to recognize you as a unique user when you return to the Software. As a result, you do not have to enter your login details multiple times. The Company will not use cookies for purposes which are not mentioned in this Privacy Policy.

11.5 The Company uses Google Analytics to analyze your use of the Software. Google Analytics generates statistical and other information about the Software by means of cookies. The information generated by Google Analytics in relation to the Software is used to create reports about the use of the Software. We use the following Google Analytics advertising features: (1) Remarketing with Google Analytics; (2) Google Display Network Impression Reporting; (3) Google Analytics Demographics and Interest Reporting; and (4) Integrated services that require Google Analytics to collect data via advertising cookies and identifiers.

11.6 If you would like to opt out from Google Analytics advertising features, you can do so through Ads Settings, Ad Settings for mobile apps, or any other available means (for example, the NAI’s consumer opt-out). You can also install a Google Analytics opt-out browser add-on available at https://tools.google.com/dlpage/gaoptout?hl=en.

11.7 Third party vendors, including Google, use cookies to serve ads based on users’ prior use of the Software. Google’s use of advertising cookies enables it and its partners to serve you ads based on your use of the Software and/or third-party websites on the Internet. You may opt out of the use of personalized advertising by visiting https://www.google.com/settings/u/0/ads/authenticated. Alternatively, you can opt out of a third-party vendor’s use of cookies for personalized advertising by visiting http://www.aboutads.info/choices.

11.8 Third-party vendors that are certified by Google for third-party ads may serve ads on the Software. The names of such third party-vendors and links to their websites can be found at https://support.google.com/adsense/answer/94149?hl=en. You may visit those websites to opt out of the use of cookies for personalized advertising (if the vendor or ad network offers this capability). Alternatively, you can opt out of a third-party vendor’s use of cookies for personalized advertising by visiting http://www.aboutads.info/choices.

11.9 By using the Software, you agree to our use of cookies as described in this Privacy Policy. If you do not agree to our use of cookies, you need to either (1) discontinue your use of the Software or (2) set your browser to refuse cookies. Please be aware that some parts of the Software may not function properly without cookies.

11.10 We may use cookies for a variety of reasons, including to:

11.11 You have the right to accept or stop cookies from being stored on your device at any time by modifying the settings in your web browser to reflect your cookie preferences. Please be aware that you may not be able to use all the interactive features of the website and/or content once cookies are disabled. Most browsers offer instructions on how to change your cookie settings. These settings will typically be found in the options or preferences menu of your browser.

11.12 If you have disabled one or more cookies, we may still use information collected from cookies prior to your disabled preference being set, however, we will stop using the disabled cookie to collect any further information.

11.13 Currently, we do not monitor or take any action with respect to Web browser signals or other mechanisms for the expression of choice regarding collection of information about an individual over time and across third-party web sites or online services (e.g., Web browser “do not track” signals).

12. Contact details & complaints

12.1 Below, you can find our contact details.

Our address is:

YumaPOS UK Ltd

Atlantic Business Centre

Atlantic St., Altringham

Manchester, WA14 5NQ

The United Kingdom

Our phone number is: +44 (0) 161 302 9276.

Our email address is: info@yumapos.co.uk

You can also contact us by using the contact form available on the Website.

12.2 You have the right to submit a complaint about the way in which your privacy has been handled by using the contact details indicated in Section 12.1 of this Privacy Policy. After you submit such a complaint, we will send you an email within 5 business days confirming that we have received your complaint. Afterwards, we will investigate your complaint and provide you with our response within a reasonable timeframe but no later than 2 weeks.

12.3 If you are not satisfied with our response, you have the right to lodge the complaint with the UK data protection authority, namely, UK Information Commissioner’s Office (ICO). For more information, please visit https://ico.org.uk.

12.4 YumaPOS stores information about visitors to our Website and users on servers located in the United Kingdom. By using our services, you consent to the storage of your information inside the United Kingdom. If you are using the services from outside the United Kingdom, please know the information you submit will be transferred to and stored in servers in the United Kingdom or other countries. The data protection and other laws of the United Kingdom and/or other countries might not be as comprehensive as those in your country. By submitting your data and/or using our services, you acknowledge the transfer, storing, and processing of your information in and to the United Kingdom.

12.5 As described above, YumaPOS also may subcontract the processing of your data to, or otherwise share your data with, service providers and others in countries other than your country of residence, including the United Kingdom, in accordance with applicable law. Such third-parties may be engaged in, among other things, the provision of services to you, the processing of transactions and/or the provision of support services. By providing us with your information, you acknowledge any such transfer, storage or use.

12.6 If we provide any information about you to any such non-United Kingdom entities, we will take appropriate measures to ensure such companies protect your information adequately in accordance with this Privacy Policy. These measures include signing Standard Contractual Clauses in accordance with United Kingdom and other data protection laws (e.g. the EU laws) to govern the transfers of such data. For more information about these transfer mechanisms, please contact us as detailed in the contact information in our Legal Notice.

12.7 If applicable, you may make a complaint to the data protection supervisory authority in the country where you are based. Alternatively, you may seek a remedy through local courts if you believe your rights have been breached.

13. Amendment of this Privacy Policy

13.1 We reserve the right to amend this Privacy Policy from time to time by posting an amended version on the Website and seeking for your consent. Your continued use of the Software after providing such a consent will constitute your acknowledgment of the amendments and your consent to abide and be bound by the amended Privacy Policy. We recommend that you check this page from time to time to inform yourself of any changes in this Privacy Policy or any of our other policies.

14. Last amendment

14.1 This Privacy Policy has been last amended on 30th of August 2018.

YUMAPOS PRIVACY NOTICE

Last updated: May 24, 2018

The GDPR enters into force on May 25, 2018.

The General Data Protection Regulation (“GDPR”) is a new European privacy regulation which will replace the current EU Data Protection Directive (“Directive 95/46/EC”). The GDPR aims to strengthen the security and protection of personal data of EU data subjects and harmonize EU data protection law.

Who is affected by GDPR?

The GDPR imposes new rules on companies, government agencies, non-profits, and other organizations that offer any goods and services to people in the European Union, or that collect and analyze data tied to European data subjects.

How has YumaPOS been preparing for the GDPR?

At YumaPOS we are committed to maintaining an effective security and privacy program. We recently updated our privacy policy and terms of use to meet the standard of GDPR and to reflect further transparency around our uses of user data. We are dedicated to ensuring our students, partners and other users have the highest confidence in our data protection practices and see GDPR as an opportunity to strengthen this devotion.

What key changes did YumaPOS make?

YumaPOS evaluated all new requirements and restrictions imposed by the GDPR and below are the steps taken. We are taking any action necessary to ensure that we handle your personal data in compliance with applicable law. You will receive notifications of changes to our Terms of Use within the YumaPOS website. As further regulations are published by the EU lawmakers, we will continue to review our terms.

If you’re already our student or partner you will have received updated consents for our Privacy Policy and Terms of Use when applicable.

DISCLAIMER

THIS PAGE IS PROVIDED AS A SOURCE OF GENERAL INFORMATION. IT IS NOT AND SHOULD NOT BE TREATED AS LEGAL ADVICE TO ANY INDIVIDUAL USER.

 

YUMAPOS LEGAL NOTICE

DISCLAIMER:

Despite continuous control of the content provided on https://yumapos.co.uk by YumaPOS UK Ltd. (“YumaPOS”), we assume no liability for the content of external links. The owner of any linked-to page is solely liable for its contents.

 

Our Head Office:

YumaPOS UK Ltd

Atlantic Business Centre

Atlantic St., Altringham

Manchester, WA14 5NQ

The United Kingdom

 

Mailing Address:

YumaPOS UK Ltd

Atlantic Business Centre

Atlantic St., Altringham

Manchester, WA14 5NQ

The United Kingdom

 

Email: info@yumapos.co.uk

Web: http://yumapos.co.uk

Tel.: +44 (0) 161 302 9276

 

General Directors / CEOs: Mr Daniel Simons

 

Data Protection Officer (GDPR): Mr Daniel Simons

Email: dpo@yumapos.co.uk

 

Consumer Protection Information:

Disputes on contractual obligations between YumaPOS ("YumaPOS") and a resident of the European Union regarding a closed online service contract can be settled on a European platform for extrajudicial online dispute resolution (ODR platform) for an independent, impartial, transparent, effective, fast and fair extrajudicial online settlement of disputes. The ODR platform can be accessed via the following link: http://ec.europa.eu/consumers/odr/

 

International Policies:

If you are using our services from outside the United Kingdom, please be aware that the information you submit may be transferred to and stored in servers in the United Kingdom and/or other countries. The data protection and other laws of the United Kingdom and/or other countries might not be as comprehensive as those in your country. By submitting your data and using our services, you consent to the transfer, storing, and processing of your data in and to the United Kingdom.

Personal data collected within the United States of America, Switzerland and the European Economic Area ("EEA") may be transferred to, and stored at, a destination outside of the United States of America, Switzerland and the European Economic Area. The data we hold may also be processed by employees operating outside of Switzerland and the EEA who work for us or one of our affiliates or for one of our vendors. Such staff may be engaged in, among other things:

By submitting your personal data or using YumaPOS services, you agree to such transfer, storing and processing.