Privacy Notice


We respect the privacy of every individual who visits this website, uses the RiskFly application and contacts us. We're committed to safeguarding your privacy and have written this privacy notice to explain what information we collect, and what we do with it.

This policy may change so please check it periodically. It was last updated on 4th June 2024.

Who is the data controller?

The data controller is Si Novi Limited, company number 11370658, registered in England & Wales.

Our registration reference with the Information Commissioner's Office (ICO) is ZA437640.

We operate in accordance with the Data Protection Act 1998 and EU 2016/679 (The GDPR).

How do we obtain your personal data?

we may obtain your personal data in a variety of ways, including:

  • From inbound enquiries via email
  • From inbound phone calls where we see the incoming phone number and you pass us information verbally
  • From your registration onto the RiskFly application
  • From content you input to the RiskFly application during the normal course of using the software
  • From website analytics

Any information you give us should be accurate, and if supplying anyone else’s data you must ensure that you have the authority and legal basis to do so.

What personal data is processed?

The personal data we process includes, but may not be limited to:

  • Name
  • Email address
  • Phone number
  • Job title
  • Business name and address
  • IP addresses
  • Browser information
  • Bank account / payment information

How is your personal information used?

The personal data you give us may be used in a variety of ways:

  • Communicating with you as a customer
  • Performing accounts tasks, such as raising and sending invoices
  • Storing in databases for reference by us and our suppliers

Who is my information shared with?

Your personal data will not be sold or disclosed to anyone outside of our business or our appointed suppliers, without obtaining your prior consent - unless we are required to do so by law.

Retention of your personal information

We will only keep your personal data for as long as it is relevant to the purpose for which it was collected or for as long as we am required to keep it by law.

What is my legal basis for processing your data?

In most cases the processing is necessary for the performance of a contract between ourselves and you.

Your rights

You have the right to request access to the personal data that we hold about you - this is known as a Subject Access Request (SAR). If you wish to make an SAR about the personal data we hold about you, please email hello@riskfly.com. we will respond within 30 days to provide you with the data we hold about you in a commonly-used electronic format. There is no charge for this service, however if requests becous manifestly unfounded, excessive or repetitive, we may charge a fee appropriate to the administrative work required.

You have the right to request a rectification of your personal data. To do so, please email hello@riskfly.com. we will respond within 30 days, although can be extended by two months if the request for rectification is complex. If we decide not take action in response to a request for rectification, we will explain to you our reasons.

You have the right to the deletion or removal of your personal data where there is no compelling reason for its continued processing. To request deletion of your personal data, please email hello@riskfly.com. we may refuse to comply with a request for erasure in some circumstances, for example in the case of requiring the information as part of a legal obligation, such as my statutory accounts and records.

You have the right to suppress or restrict the processing of your personal data. To request this, please email hello@riskfly.com.

You have the right to data portability, which allows you to obtain and reuse your personal data for your own purposes across different services. To request this, please email hello@riskfly.com. we will respond within 30 days to provide you with the data we hold about you in a commonly-used electronic format. This time can be extended by two months if the request is complex.

You have the right to object to:

  • direct marketing
  • processing based on legitimate interests
  • processing for purposes of scientific/historical research and statistics.

To make an objection to processing, please email hello@riskfly.com.

How we protect your information

We take a range of organisational and technical measures to protect your information. we maintain strict physical, electronic and administrative safeguards to protect your personal data from unauthorised or inappropriate access.

Where appropriate we use industry-standard encryption techniques, including encrypting web traffic using HTTPS.

We hold regular security reviews to ensure that my systems and processes remain safe and secure for the protection of your personal data.

We keep software up to date with latest security patches as advised by the vendors of the software.

Where you have registered onto RiskFly with a self-chosen password, we ask you not to use that same password on any other systems. You are responsible for the security of your own passwords.

Is any of my data sent outside of the EU?

Yes, possibly - we use suppliers such as Google and Amazon Web Services who are based in the US, but have data centres in the UK and EU. Wherever possible we select data centres in the EU, however it’s likely some data is stored in the US.

People under the age of 16

If you are under 16, please ensure that you obtain your parent/guardian's consent, and evidence of that consent, before you provide personal information to us.

How this website uses cookies

A cookie is a small amount of data, which often includes a unique identifier that is sent to your computer or mobile phone browser from a website's server and is stored on your device. Each website can send its own cookie to your browser if your browser's preferences allow it, but (to protect your privacy) your browser only permits a website to access the cookies it has already sent to you, not the cookies sent to you by other websites. Many websites do this whenever a user visits their website in order to track online traffic flows.

As a visitor, you are able to edit your browser settings to accept all cookies, to notify you when a cookie is issued, or not to receive cookies at any time. The last of these means that the website might not work properly. Each browser is different, so check the Help menu of your browser to find out how to change your cookie preferences.

When you visit this website, the pages you see, along with a cookie, are downloaded to your device. Many websites do this, because cookies enable website publishers to do useful things like identify whether the device (and probably its user) has visited the website before. This is done on a repeat visit by checking to see, and finding, the cookie left there on the last visit.

Third Party Cookies

During your visit, you may notice sous cookies that are not related to this site. When you visit a page with content embedded from, for example, YouTube or Flickr, you may be presented with cookies from these websites. we do not control the dissemination of these cookies. You should check the third party websites for more information about these.

How to control and delete cookies

We will not use cookies to collect personally identifiable information about you. However, if you wish to restrict or block the cookies which are set by this website, or indeed any other website, you can do this through your browser settings. The Help function within your browser should tell you how.

Alternatively, you may wish to visit www.aboutcookies.org which contains comprehensive information on how to do this on a wide variety of browsers. You will also find details on how to delete cookies from your computer as well as more general information about cookies. For information on how to do this in the browser of your mobile phone you will need to refer to your handset manual.

Please be aware that restricting cookies may impact on the functionality of this website.

The cookies used on this website

_ga, _gid, _utma, _utmz

Google Analytics

This is a service used to monitor traffic on this site. Google stores the information collected by the cookie on servers in the United States. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf.

PHPSESSID, _appIdentity Used to maintain your signed-in state to the RiskFly application.
__stripe_mid Used by our payment processor, Stripe.
_appCSRF, _csrf Used to improve the security of the application, ensuring that requests made are authentic.
TawkConnectionTime, _clck, _clsk, _fbp, _ga_*, twk_idm_key, twk_uuid_* Used to maintain your state with the Tawk.to Chat widget

Links to Other Websites

This website and other communications may contain links to other third-party websites. You should be aware that we do not have any control over other these third-party websites, and therefore we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites. Such sites are not governed by this privacy notice.

You should exercise caution and look at the privacy notice applicable to the website in question.

Contact

For any questions about this Privacy Notice, or my approach to data protection, please contact us:

hello@riskfly.com