PRIVACY

Our Privacy Policy

Inbound Scaling Ltd (“Inbound Scaling,” “we,” “our”, “us”, website (the “Service”) and www.inboundcaling.com) are committed to protecting your privacy in accordance with data regulations covered by the UK & European Union General Data Protection Laws (GDPR) for cookie and privacy laws. GDPR is the General Data Protection Regulation, a legal framework for data protection and privacy in the European Union. If you are not based in the EU, we still follow GDPR data collection and protection policies.

We respect and value the privacy of all of our website users and customers and will only collect and use personal data in ways that are described here, and in a way that is consistent with our obligations and your rights under the law. See the Information Commissioner's website for more details on the rights and responsibilities of data protection at https://ico.org.uk/

Our Privacy Policy explains how we collect, use, disclose, and protect information about you or associated with you (“personal information”), your choices about the collection and use of your information, as well as the choices you have associated with that data.

We are committed to:

Transparency, fairness and lawfulness
Purpose limitation
Data minimisation
Accuracy
Storage limitation
Integrity and confidentiality (security)
Accountability

Privacy Summary:

Your data protection rights (GDPR)
Data Controller responsibilities (inbound Scaling)
How we collect, use and store personal data
Types of personal data collected
How to opt-out of third-party cookies
Links to other websites
Exercise your GDPR rights
WhatsApp, Messenger and text messages
How to complain about GDPR
Changes to this Privacy Policy
Contact Us

1. Your Data Protection Rights (GDPR)

The right to be informed about the collection and use of your personal data
The right to access the data we hold about you
The right to rectification of the data we hold about you
The right to erase the data we hold about you.
The right to restrict the processing of your personal data or use your personal data for a particular purpose
The right to data portability. If you have provided personal data to us directly, we are using it with your consent to provide you with more details about us as a company, or in the performance of a contract as a supplier to you.
The right to object to us holding data about you.
Rights in relation to automated decision-making and profiling.

To exercise your right to data portability, email us at support@inboundscaling.com. We will respond to your request within one month, as required by GDPR

2. Data Controller Responsibilities

Data protection regulates how information is shared between data controllers and data processors, each with its own designated responsibilities and means for meeting data protection regulations. The goal is to take all possible means to protect individual privacy while storing and sharing information about website users, prospects and customers for transparent purposes.

Inbound Scaling Ltd as a company and website owner is a (Data Controller) with responsibilities stipulated by data protection laws, the GDPR (General Data Protection Regulation). Newquay Orchard, Trevenson Road, United Kingdom
www.inboundscaling.com

Our Data Protection Officer (DPO) is Liam Holmes
Email address: support@inboundscaling.com and Tel: 0163 780 5380

Data Controller:

A website owner, or a company that collects personally identifiable information such as website cookies, or email addresses recorded as leads through web contact request forms.

A data controller must define the purposes and means of processing personal data such as information about website users (Inbound Scaling Ltd is the data controller for the website inboundscaling.com)

Data Processor:

Data processors are responsible for processing personal data on behalf of a data controller. Examples of data processors we use include online advertising and analytics systems such as Google Analytics, Google Ads, Facebook Ads, and LinkedIn Ads, as well as cloud services like HubSpot CRM and Xero Accounts.

We engage third-party companies (“Service Providers”) to facilitate our services, perform service-related activities, or assist us in analysing how our services are utilised. These third parties are granted limited access to your personal data solely to perform these tasks on our behalf and are strictly obligated not to disclose or use the data for any other purpose. Examples of such third-party companies include specialists providing services such as accounting, auditing, web hosting, web development, or subcontracting. To ensure data security, we apply permission-level settings to limit data sharing strictly to what is necessary for the intended purpose.

Data Sub-Processor:

In the modern internet era, many software providers rely on third-party hosted cloud platforms and services, such as web hosting, to deliver their solutions. These software providers, in turn, utilise their own sub-processors, including industry-leading platforms like Amazon Cloud, Microsoft Cloud, and Google Cloud, to support their operations and infrastructure.

3. How we collect, use and store personal data:

We collect several different types of information to provide and improve our service to you.

We may also collect information on how the Service is accessed and used (“Usage Data”). This usage data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

Personal data is defined by the General Data Protection Regulation (“GDPR”) as ‘any information relating to an identifiable person who can be identified by reference.’ Personal data is information about you that enables you to be identified such as an email address, name, phone number, Cookies and Usage Data, and (ID) identification numbers.

Use of Data

inbound Scaling Ltd uses the collected data for various purposes:

To provide and maintain the Service
To notify you about changes to our Service
To allow you to participate in interactive features of our Service when you choose to do so
To provide customer care and support
To provide analysis or valuable information so that we can improve the Service
To monitor the usage of the Service
To detect, prevent and address technical issues

Disclosure Policy

inbound Scaling Ltd may disclose your personal data in the good faith belief that such action is necessary:

To comply with a legal obligation
To protect and defend the rights or property of Inbound Scaling Ltd
To prevent or investigate wrongdoing in connection with the Service
To protect the personal safety of users of the Service or the public
To protect against legal liability

Data Storage & Retention

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). We retain data only as long as necessary to fulfil its purpose or comply with legal obligations.
If you are located outside the United Kingdom and choose to provide information to us, please note that we transfer the data, including personal data, to the United Kingdom and process it there.

Security Of Data

We use a range of security measures including data encryption, access controls, and periodic security assessments.
The security of your data is of vital importance to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security. Inbound Scaling Ltd will take all steps reasonably necessary to ensure that your data is treated securely and under this Privacy Policy and no transfer of your personal data will take place to an organisation or a country unless there are adequate controls in place including the security of your data and other personal information.

Include a data breach notification policy (e.g., "In the event of a data breach, we will notify affected individuals and relevant authorities within 72 hours.").

4. Types of Personal Data Collected

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally, identifiable information may include, but is not limited to:

Email address
First name and last name
Phone number
Cookies and Usage Data

We may also collect information on how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

Examples of Cookies we use:

Cookies are sent to your browser from a website and stored on your device. You can instruct your browser to refuse cookies that are not neccesary using this website's cookie banner. However, if you do not accept cookies, you may not be able to use some portions of our Service.

Cookies allow websites to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

Types of Cookies:

Cookies are small data files stored on a user's device by websites to enhance functionality, analyse usage, and deliver personalised content. They are categorised based on their purpose and origin:

1. Necessary Cookies: These cookies are essential for the basic functioning of a website. They enable core features such as user authentication, security, and accessibility. For instance, necessary cookies facilitate actions like logging in, filling out forms, or setting privacy preferences. Without these cookies, certain services or functionalities may become unavailable. Importantly, necessary cookies do not require user consent under most data protection laws, including the General Data Protection Regulation (GDPR).

2. Analytics Cookies: These cookies collect information about how visitors interact with a website, such as pages visited, time spent on the site, and any encountered errors. The data gathered helps website owners understand user behaviour, enabling them to improve site performance and user experience. Analytics cookies are not strictly necessary and therefore require user consent before being placed on the user's device.

3. Advertisement Cookies: Also known as targeting cookies, these are employed to deliver advertisements more relevant to the user and their interests. They track browsing habits and are often placed by third-party advertising networks with the website operator's permission. These cookies remember that a user has visited a website and share this information with other organisations, such as advertisers. Consequently, users may see ads on other sites that are tailored to their browsing history. Due to their intrusive nature, advertisement cookies require explicit user consent.

How we use Cookies

We use traffic log cookies to identify records of which pages are being used. This helps us analyse data about web page traffic as an anonymous aggregate and improve our website to tailor it to site visitor’s usage.

We use cookies and similar tracking technologies to track the activity on our Service and hold certain information.

Inbound Scaling Ltd uses 1st party cookies for Google Analytics as well as 3rd party cookies to serve you remarketing advertisements that we believe are relevant to your previous interests. For example, if you have visited our site and or purchased a product you could see a Inbound Scaling Ltd advertisement on other sites within the Google Display Network that you visit. We may also build Lookalike Audiences and Similar Audience targeting using seed remarketing audiences.

You can change your data collection preferences at any time using our cookie banner. If you have provided your email, you can also manage your subscription preferences.

Advertising & Analytics Cookies

To ensure transparency regarding our use of cookies and similar technologies, we provide the following detailed information about the analytics and advertising cookies employed on our website. This includes their purposes, types, and durations.

Cookie Name	Purpose	Type	Duration
Google Analytics (_ga)	Used to distinguish users by assigning a unique identifier, enabling analysis of user interactions on the website.	Analytics	2 years
Google Analytics (_gid)	Stores information about how visitors use the website and help in creating analytical reports.	Analytics	24 hours
Google Analytics (_gat)	Used to throttle request rates, limiting data collection on high-traffic sites.	Analytics	1 minute
Google Ads (IDE)	Utilised by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads, measuring the efficacy of an ad and presenting targeted ads to the user.	Advertising	13 months
Google Tag Manager	Facilitates the management and deployment of marketing tags on the website without extensive code changes.	Functional	Session
Facebook Pixel	Collects data on user interactions with the website, which is used to measure the effectiveness of advertising and to deliver targeted ads.	Advertising	Session
HubSpot (__hstc)	The main cookie for tracking visitors, contains the domain, user token, initial timestamp, and session number.	Analytics	13 months
HubSpot (hubspotutk)	Keeps track of a visitor's identity, passed to HubSpot on form submission, and used for deduplicating contacts.	Analytics	13 months
HubSpot (__hssc)	Keeps track of sessions, determining if HubSpot should increment the session number and timestamps in the __hstc cookie.	Analytics	30 minutes
HubSpot (__hssrc)	Set to determine if the visitor has restarted their browser; if not present when HubSpot manages cookies, it is considered a new session.	Analytics	Session

Cookies used by our service providers

Our service providers use cookies and those cookies may be stored on your computer when you visit our website.

We use Google Analytics to analyse the use of our website. Google Analytics gathers information about website use using cookies. The information gathered relating to our website is used to create reports about the use of our website. Google’s privacy policy is available at: https://www.google.co.uk/policies/privacy/. We also use Google Ads, Facebook Ads and LinkedIn Ads tracking features.

We use HubSpot CRM to report on and manage website activity. This service uses cookies for tracking activity across our site. You can view the privacy policy of this service provider at https://legal.hubspot.co.uk/privacy-policy.
Our cookie banner uses HubSpot CRM for you to accept, reject or modify cookie tracking on both our website and CRM.

HubSpot CRM and Website Usage

Inbound Scaling Ltd uses HubSpot as our Customer Relationship Management (CRM) system and for managing website functionality. HubSpot enables us to efficiently manage customer relationships, track user interactions, and enhance the services we provide to you. Below is an overview of how we use HubSpot and how it complies with GDPR requirements.

Purpose of Using HubSpot CRM

We use HubSpot for the following purposes:

Managing and organising customer contact details.
Recording interactions, including email correspondence, forms submitted via the website, and other communications.
Tracking website analytics to better understand how users interact with our services.
Providing tailored content and improving user experience.
Facilitating GDPR compliance, including handling data access, rectification, and deletion requests.

Data Collected via HubSpot

Through HubSpot, we may collect the following personal data:

Contact information, such as name, email address, and phone number.
Information is submitted through website forms (e.g., inquiries, and subscription forms).
Interaction data, including the pages you visit on our website, links clicked, and time spent on our site.
Technical information, such as IP address, browser type, and operating system.

How We Ensure Data Security with HubSpot

HubSpot is a GDPR-compliant platform that provides robust security measures to protect your data. These measures include:

Encrypted storage and transmission of personal data.
Restricted access to sensitive information within our organisation.
Data processing agreements to ensure compliance with GDPR when personal data is processed by HubSpot.

Third-Party Integrations with HubSpot

HubSpot integrates with third-party tools and platforms that we use to enhance service delivery, such as email marketing systems and analytics tools. Any data shared with these tools is processed under strict security protocols and only for legitimate business purposes.

GDPR Features in HubSpot

HubSpot provides tools that help us comply with GDPR, including:

Data Access and Portability: We can export your data in a structured, machine-readable format upon request.
Data Deletion: Personal data can be permanently deleted from the CRM upon request, under your right to erasure.
Consent Tracking: We use HubSpot to record and manage user consent for communications, ensuring compliance with GDPR.
Accept or Reject Constent: This website cookie banner can be used to accept or reject data collection. The cookie banner is a constent manager which controls this website, HubSpot and third party analytics & advertising tracking scripts.

Data Retention in HubSpot

Personal data stored in HubSpot is retained only as long as necessary for the purposes outlined in this policy or as required by applicable law. We regularly review and securely delete data that is no longer needed.

Your Rights and HubSpot

If you wish to exercise your GDPR rights about the data stored in HubSpot, such as accessing, rectifying, or deleting your personal data, please contact us at support@inboundscaling.com. We will respond to your request within one month, following GDPR requirements. Upon your request, we can delete all information we hold about you upon request through our CRM.

For more information about HubSpot's privacy practices, please refer to their Privacy Policy.

5 How to Opt-out of third-party Cookies

When you visit our website, you have the option to accept or reject our privacy and cookie policy. However, if you do accept our cookie policy, we may show you remarket adverts by sharing your cookie data with data processors like Google and Facebook. You can opt out of seeing our ads if you want to by following the instructions below.

Disable website cookies

Cookies help you to get the most out of our websites. However, if you wish to disable our cookies, then follow the steps provided by your browser. (e.g. Chrome, Firefox, Safari).

How to Opt-out of adverts shown by Google Ads
https://www.google.co.uk/settings/anonymous
https://support.google.co.uk/adsense/

How to Opt-out of adverts shown by Facebook Ads.
https://en-gb.facebook.co.uk/opt-out

How to Opt-out of adverts shown by LinkedIn Ads.
https://www.linkedin.co.uk/opt-out

How to Opt-out of adverts shown by Twitter Ads.
https://help.twitter.co.uk/privacy-controls-for-tailored-ads

How to Opt-out of WhatsApp and Facebook Messenger
https://www.whatsapp.co.uk/legal/privacy-policy
https://www.messenger.co.uk/privacy

How to opt-out of HubSpot Cookie tracking
https://knowledge.hubspot.com/privacy-and-consent/what-cookies-does-hubspot-set-in-a-visitor-s-browser.

General information on the practice of display and social advertising in the EU and America.

Internet users based in the UK and the rest of the European Union can visit www.youronlinechoices.eu.
Users in the US or Canada can visit http://www.aboutads.info/choice. The above websites are independent of inboundscaling Ltd, and we are not responsible for their content.

6. Links to Other Websites

Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third-party's site. We strongly advise you to review the Privacy Policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

7. Exercise your GDPR Rights with Inboundscaling Ltd

This website privacy policy informs you how we collect and use your data and our purposes for processing your personal data.

Our website cookie banner gives you the choice of accepting or rejecting our privacy and cookie policies. We give you transparency on how we collect your data, as well as the control to prevent or restrict the sharing of your data.

We retain your data indefinitely and give you control over who it will be shared with. We will not share your data with data processors like Google and Facebook unless you choose to accept our cookie banner policy.

How to exercise your right to access the data we hold about you

You can make a subject access request to obtain a copy of the personal data we have about you. All subject access requests should be made in writing and sent to our email at support@inboundscaling.com.

You can also ask us for copies of your personal information in writing or verbally. This is called the right of access and is commonly known as making a SAR (subject access request).

How to exercise your right to rectify the data we hold about you

You can request rectification verbally or in writing. We will respond to you within the permitted time of 1 month or sooner with confirmation of the updated changes.

How to exercise your right to erase the data we hold about you

Also known as 'the right to be forgotten’, we provide you with the right to the erasure of the data we hold about you. You have the right to ask us whether or not we are using or storing your personal information. You can request what information we have recorded about you. This includes contact details you have previously provided us with like your email address, phone number and first-party website cookie and IP data.

You can execute your right with a written request to our organisation, addressed to our Data Protection Officer (DPO), Liam Holmes at support@inboundscaling.com

Upon request, we shall delete all electronic records we have of you including your email and contact record from our CRM system, as well as your first-party website cookie history.

For past customers, the only information we are obligated to maintain is your invoices and payment history for financial accounting compliance.

How to exercise your right to restrict the processing of your personal data or use your personal data for a particular purpose

You can limit the way our organisation uses your data. This is an alternative to requesting the erasure of your data.
For example, you can unsubscribe from our email marketing emails while still being able to use our website or be a customer. You can contact us to exercise your right to restrict the processing of your personal data.

How to exercise your right to data portability

You can request your personal data from us in a format that is: Structured, commonly used, and machine-readable.

How to exercise your right to object to us holding data about you

You can object to the organisation processing your data when it is:

for a task carried out in the public interest.
for the exercise of official authority.
for their legitimate interests.
for scientific or historical research, or statistical purposes; or
for direct marketing purposes.

To object you should inform us directly that you don’t want us to process your data and explain why you believe we should stop using your data in this way. You can make your request verbally or in writing.

How to exercise rights in relation to automated decision-making and profiling.

You have the right to not be subject to a decision based solely on automated processing. Processing is “automated” where it is carried out without human intervention and where it produces legal effects or significantly affects you.

8. WhatsApp, Messenger and Text Messages

Use of WhatsApp, Messenger and text messages to follow up your request for communication.

At Inbound Scaling Ltd, we understand that convenience and efficient communication are essential for our customers. To facilitate this, we use WhatsApp, Messenger and text messages for specific purposes related to our services. Here's how we use these platforms:

Initial Contact: We may initiate contact with you using WhatsApp, Messenger or text message to discuss your enquiry, or to provide information about our service. You may also choose to contact us through these platforms for your convenience.

Please note that while we use WhatsApp, Messenger and text messages for these communication purposes, we are committed to maintaining the privacy and security of your data. We recommend reviewing the privacy policies of these platforms to understand how they handle your information.

Additionally, we may retain records of our conversations for customer service and administrative purposes, but we will handle your data following our data protection policies and applicable laws.

By using WhatsApp, Messenger or text message to communicate with us, you agree to the terms of service and acknowledge that these platforms may process your data by their own privacy policies.

If you have any concerns about the use of WhatsApp, Messenger or text messages for communication or data privacy, please refer to the How to Raise Concerns, Make Complaints, or Request a GDPR Delete Request About Your Data section of this privacy policy for information on how to contact us and voice your concerns. We are committed to addressing any issues promptly and transparently.

9. How to Complain about GDPR

How to Raise Concerns, Make Complaints, or Request a GDPR Delete Request About Your Data.

At Inbound ScalingLtd, we take the protection of your personal data seriously. If you have concerns, wish to make a complaint, or want to request a GDPR deletion request, we encourage you to reach out to us. Here's how you can do that:

Contact Our Data Protection Officer: You can contact our designated Data Protection Officer (DPO) at support@inboundscaling.com.
Our DPO is responsible for ensuring that your concerns are addressed promptly and following data protection regulations.
Submit a Written Complaint: If you prefer, you can submit a written complaint to our postal address: Inbound ScalingLtd, Newquay Orchard, Trevenson Road, United Kingdom. Please include your contact information and a detailed description of your concerns or the reasons for your GDPR deletion request. We will acknowledge your complaint within one calendar month and strive to provide a resolution within three calendar months.
Request a GDPR Delete Request: If you wish to have your data deleted under the General Data Protection Regulation (GDPR), you can make a delete request by contacting us at support@inboundscaling.com.
Please include your contact details and specify the data you want to be deleted. We will process your request within three calendar months and confirm the deletion of your data, subject to legal obligations.
Contact the Supervisory Authority: If you believe that we have not adequately addressed your concerns, or if you are dissatisfied with our response to your GDPR delete request, you have the right to contact the relevant supervisory authority in your country. They are responsible for overseeing data protection compliance and can investigate your complaint further. For the UK, this is the Information Commissioner’s Office (ICO), the contact details for which can be found at www.ico.org.uk

We are committed to resolving any concerns or complaints you may have regarding your data privacy, as well as processing GDPR deletion requests in accordance with the law. Rest assured that we will handle your concerns and delete requests promptly, fairly, and following applicable data protection laws.

Changes To This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

11. How to Contact Us

If you have any questions about this Privacy Policy, please contact us by email:
support@inboundscaling.com