• Birchwood, Warrington WA3 7QX, UK

Privacy Policy

Privacy Notice

Your data is in safe hands. Find out more about how we collect, store, and handle your data.

CONTENTS OF PRIVACY NOTICE

  1. Introduction
  2. The lawful basis we rely on to process personal data
  3. The reasons we collect personal data
  4. The types of personal data we collect
  5. When we collect personal data
  6. How we use personal data
    • 6.1 Services
    • 6.2 Websites and Cookies
    • 6.3 Recruitment
    • 6.4 How we use personal data for marketing
    • 6.5 Automated decision-making and profiling
    • 6.6 Change of purpose
  7. When we may share personal data
  8. International transfers of personal data
  9. How long we keep personal data
  10. How you can make changes to your personal data
  11. How we protect personal data
  12. Your legal rights over your personal data
  13. Data breach notification
  14. Changes to this Privacy Notice
  15. Accessibility and alternative formats
  16. Any questions?
  1. Introduction

Welcome to Inventya Group’s Privacy Notice.

We take your data very seriously and are committed to ensuring its privacy and security. This notice explains how we collect and use your personal data and what you can expect regarding the personal information we gather about you.

We understand there’s a lot of information here, so we’ve structured it to enable you to navigate to specific sections easily.

It’s important that you read this privacy notice, along with any other privacy or fair processing notices we may provide on specific occasions when we’re collecting or processing personal data about you, so you’re fully aware of how and why we’re using your data. This privacy notice supplements other notices and isn’t intended to override them.

Our policy will be continuously assessed against new technologies, business practices, regulatory changes, and the evolving needs of the organisation and the services we provide to clients and stakeholders.

Who We Are

We are the Inventya Group, which comprises the following companies registered in England and Wales:

  • Inventya Ltd (Company No: 07144394)
  • Innova Grants Ltd (Company No: 13678839)
  • Technovedge Ltd (Company No: 13033102)
  • Elmers Green Financial Services Ltd (Company No: 05820717)

And the following company registered in Ireland:

  • Inventya Ventures (EU) Limited (Company No: 585866)

Our registered office for the UK companies is:

520 Birchwood Boulevard

Birchwood, Warrington

Cheshire WA3 7QX, UK

Our registered office for Inventya Ventures (EU) Limited is:

Dublin Enterprise & Technology Centre Limited

T/A Guinness Enterprise Centre

Taylor’s Lane

Dublin 8, Ireland

We are a group of companies dedicated to accelerating business growth through innovation, funding support, financial services, and technological solutions. We achieve this by offering services such as innovation funding, R&D tax credits, market research, business development, financial planning, and advanced technology solutions.

Contact Details

  • Phone Number: +44 1925 506 100
  • Email: dataprotection@inventyagroup.com

Data Protection Officer (DPO)

Our Data Protection Officer is:

  • Name: Lacra Aciobanitei
  • Email: dataprotection@inventyagroup.com
  • Address: 520 Birchwood Boulevard, Birchwood, Warrington, Cheshire WA3 7QX, UK

If you have any questions regarding this privacy notice or wish to exercise your legal rights, please contact our DPO.

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues—www.ico.org.uk. If you are in the EU, you can contact your local data protection authority. However, we’d appreciate the opportunity to address your concerns before you approach any supervisory authority, so please contact us in the first instance.

We are the data controller of the personal data we keep and use, responsible for ensuring that our systems, processes, and people comply with relevant data protection laws concerning that personal data.

We adhere to the six principles of the UK General Data Protection Regulation (UK GDPR) and the EU General Data Protection Regulation (EU GDPR) concerning personal data:

  1. Lawfulness, fairness, and transparency
  2. Purpose limitation
  3. Data minimisation
  4. Accuracy
  5. Storage limitation
  6. Integrity and confidentiality
  1. The Lawful Basis We Rely on to Process Personal Data

Inventya Group does not collect personal data about individuals except when there’s a legitimate business requirement or when such information is provided voluntarily. Data protection law sets out several different reasons (lawful bases) why a company may collect and process personal data. We rely on the following lawful bases:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose.
    • Example: Sending you marketing communications after you have opted in.
  • Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
    • Example: Processing your data to provide consultancy services you’ve requested.
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation.
    • Example: Keeping records for tax purposes.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests.
    • Example: Using your data to conduct market research to improve our services.
  • Vital Interests: Where processing is necessary to protect someone’s life.
    • Example: Not typically applicable to our operations but included for completeness.
  • Public Interest: Where processing is necessary for the performance of a task carried out in the public interest.
    • Example: Not typically applicable to our operations but included for completeness.
  1. The Reasons We Collect Personal Data

We collect and process personal data to:

  • Respond to enquiries.
  • Provide and support users of our services.
  • Offer business consultancy, financial services, grant funding support, and technology solutions.
  • Conduct market research and surveys.
  • Manage events and training programs.
  • Market services that may be of interest to you.
  • Handle enquiries about job opportunities within the Inventya Group.
  • Comply with legal obligations.
  1. The Types of Personal Data We Collect

We may collect, use, store, and transfer different kinds of personal data about you, grouped as follows:

  • Identity and Contact Data: Names, addresses, email addresses, phone numbers, marital status, gender, date of birth.
  • Business Information: Job title, company name, business address, business email, and phone number.
  • Financial Data: Bank account details, payment card information.
  • Transaction Data: Details about payments to and from you and other details of services you’ve taken from us.
  • Technical Data: IP addresses, login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system, and platform.
  • Usage Data: Information about how you use our websites and services.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

Special Categories of Data

We may collect and use special categories of personal data:

  • Event Participation: Details of accessibility or dietary requirements you may have, which could reveal information about health or religious beliefs.
  • Recruitment Activities: Information required for employment purposes, including health information, racial or ethnic origin, and criminal convictions (as required).

Children’s Data

Our services are not intended for individuals under the age of 16, and we do not knowingly collect data relating to children. If you are under 16, please do not provide any personal information to us.

If You Fail to Provide Personal Data

Where we need to collect personal data by law or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract. In this case, we may have to cancel a service you’ve requested, but we’ll notify you if this is the case.

  1. When We Collect Personal Data

We collect personal data from and about you through:

Direct Interactions

  • When you enquire about or apply for our services.
  • When you purchase our services.
  • When you attend our events.
  • When you register or use our websites.
  • When you provide feedback.
  • When you contact us with queries or complaints.
  • When you apply for a job with us.
  • When you visit our premises (which may have CCTV).

Automated Technologies or Interactions

We may automatically collect Technical Data about your equipment, browsing actions, and patterns through cookies, server logs, and other similar technologies.

Third Parties or Publicly Available Sources

We may receive personal data about you from various third parties:

  • Technical Data from analytics providers, advertising networks, and search information providers.
  • Contact, Financial, and Transaction Data from providers of technical, payment, and delivery services.
  • Identity and Contact Data from data brokers, aggregators, or publicly available sources such as Companies House.
  1. How We Use Personal Data

6.1 Services

We collect personal data to:

  • Send you relevant information on our services.
  • Administer event bookings.
  • Respond to enquiries.
  • Process applications for our services.
  • Provide consultancy, financial, and technological services.
  • Conduct market research and surveys.
  • Manage your online account on our websites.
  • Notify you about significant changes to our terms or privacy policy.
  • Comply with legal obligations.

If you do not wish for your data to be used for any of these purposes, please let us know by emailing dataprotection@inventyagroup.com.

6.2 Websites and Cookies

We operate the following websites:

  • cowork520.com
  • crescoinnovation.eu
  • elmersgreen.co.uk
  • elmersgreenfs.com
  • growit360.co.uk
  • growit360.com
  • growit360.eu
  • i2monline.com
  • innovagrants.co.uk
  • innovagrants.com
  • innovagrants.eu
  • innovation-panel.com
  • innovationpanel.com
  • inventya.co.uk
  • inventya.com
  • inventya.eu
  • inventyacloud.co.uk
  • inventyacloud.com
  • inventyafoundation.com
  • inventyafoundation.org
  • inventyagroup.com
  • inventyasolutions.com
  • inventyaventures.com
  • inventyaventures.eu
  • scaleit360.co.uk
  • scaleit360.com
  • scaleit360.eu
  • scaling-deep.com
  • scalingdeep.co.uk
  • scalingdeep.org
  • startit360.co.uk
  • startit360.com
  • startit360.eu
  • technovedge.co.uk
  • technovedge.com

These websites are not intended for children under 16, and we do not knowingly collect data relating to children.

We collect personal data to enhance your experience while using our sites.

Cookies

Cookies are small text files placed on your device when you visit our websites. We use cookies to:

  • Enhance Website Functionality: Remember your preferences and improve user experience.
  • Analyse Website Usage: Collect data on how visitors interact with our sites to improve performance.
  • Support Marketing Activities: Deliver relevant content and advertisements.

For detailed information, please see our Cookie Policy.

Third-Party Links

Our websites may include links to third-party websites, plug-ins, and applications. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party websites and aren’t responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

6.3 Recruitment

We collect personal data for recruitment purposes:

  • Identity and Contact Data: Names, addresses, contact details.
  • Professional Data: Education and employment history, references.
  • Special Categories of Data: Health information, racial or ethnic origin, criminal convictions (as required).

We collect this data during the recruitment process to assess your suitability for a role within the Inventya Group.

6.4 How We Use Personal Data for Marketing

We aim to keep you informed about services that may be of interest to you. We will only send you marketing communications if you have given us your consent or if we have a legitimate interest to do so.

Your Preferences and Consent

You can opt-in to receive marketing communications by:

  • Signing up on our websites.
  • Providing consent during a service engagement.

You can withdraw your consent or opt-out of marketing communications at any time by:

  • Clicking the ‘unsubscribe’ link in any marketing email.
  • Updating your preferences in your online account.
  • Contacting us at dataprotection@inventyagroup.com.

Please note that even if you opt out of marketing messages, we may still send you non-marketing communications, such as those related to a service you’ve requested.

Third-Party Marketing

We will not share your personal data with any third party for marketing purposes without your explicit consent.

6.5 Automated Decision-Making and Profiling

We may use automated decision-making or profiling to tailor our marketing communications and services. This helps us to ensure that you receive relevant information and offers.

How We Use Automated Decision-Making

  • We analyse your interaction with our websites and services to predict your interests.

Your Rights Regarding Automated Decision-Making

You have the right to object to automated decision-making and profiling. If you wish to do so, please contact us at dataprotection@inventyagroup.com.

6.6 Change of Purpose

We will only use your personal data for the purposes for which we collected it unless we reasonably consider we need to use it for another reason compatible with the original purpose. If we need to use your personal data for an unrelated purpose, we’ll notify you and explain the legal basis which allows us to do so.

  1. When We May Share Personal Data

We may share your personal data with third parties in the following circumstances:

  • Third-Party Service Providers (Data Processors): Companies that provide services on our behalf, such as IT services, payment processors, marketing platforms, and professional advisers.
  • Joint Controllers: In some cases, we may act as joint controllers with other entities, sharing responsibility for your personal data.
  • Legal Requirements: Where we’re under a duty to disclose or share your personal data to comply with legal obligations.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to a third party.
  • Professional Advisers: Including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.

We require all third parties to respect the security of your personal data and treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes.

  1. International Transfers of Personal Data

We may transfer your personal data outside the UK and the European Economic Area (EEA) to countries that may not have equivalent data protection laws. Whenever we transfer your personal data out of the UK and EEA, we ensure a similar degree of protection is afforded to it by implementing at least one of the following safeguards:

  • Standard Contractual Clauses (SCCs): We may use specific contracts approved by the European Commission and the UK Information Commissioner’s Office which give personal data the same protection it has in Europe.
  • Adequacy Decisions: We may transfer data to countries that have been deemed to provide an adequate level of protection for personal data.
  • Consent: Where you have explicitly consented to the proposed transfer after being informed of any potential risks.

You can request further information about the specific mechanism used when transferring your personal data outside the UK and EEA by contacting us at dataprotection@inventyagroup.com.

  1. How Long We Keep Personal Data

We’ll only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including satisfying any legal, accounting, or reporting requirements.

Retention Periods

  • Service Contracts: We retain your personal data for up to 6 years after the end of our contract to comply with legal obligations and in case of any legal claims.
  • Marketing Data: We retain your personal data for marketing purposes until you withdraw your consent or opt-out.
  • Recruitment Data: If your application is unsuccessful, we will retain your data for up to 24 months unless you consent to a longer period.

In some circumstances, you can ask us to delete your data. In some cases, we may anonymise your personal data for research or statistical purposes.

  1. How You Can Make Changes to Your Personal Data

It’s important that your personal data is accurate and up to date. Please keep us informed if your personal data changes during your relationship with us.

You can update your data by:

  • Logging into your account on our website and updating your details.
  • Emailing us at dataprotection@inventyagroup.com.

We aim to process all requests within one month.

  1. How We Protect Personal Data

We’ve implemented appropriate security measures to prevent your personal data from being accidentally lost, used, altered, disclosed, or accessed without authorisation. Access to your personal data is limited to those employees, agents, contractors, and other third parties who have a business need to know.

We have procedures in place to deal with any suspected data security breach and will notify you and any applicable regulator of a breach where we’re legally required to do so.

  1. Your Legal Rights Over Your Personal Data

Under data protection laws, you have rights regarding your personal data:

  • Access: Request access to your personal data (commonly known as a “data subject access request”).
  • Correction: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data.
  • Restriction: Request restriction of processing your personal data.
  • Objection: Object to processing of your personal data where we’re relying on legitimate interests.
  • Data Portability: Request transfer of your personal data to you or a third party.
  • Withdraw Consent: Withdraw consent at any time where we’re relying on consent to process your personal data.

How to Exercise Your Rights

  • Contact Us: Email dataprotection@inventyagroup.com or call us at +44 1925 506 100.
  • Verification: We may need to request specific information to verify your identity.
  • Response Time: We aim to respond to all legitimate requests within one month.

You won’t have to pay a fee to access your personal data or exercise any of the other rights. However, we may charge a reasonable fee if your request is unfounded, repetitive, or excessive.

  1. Data Breach Notification

We have procedures in place to deal with any suspected personal data breach. In the event of a data breach, we will:

  • Notify the ICO: We will notify the Information Commissioner’s Office (ICO) within 72 hours if the breach is likely to result in a risk to the rights and freedoms of individuals.
  • Notify Other Authorities: If applicable, we will notify relevant EU data protection authorities in accordance with the EU GDPR.
  • Notify You: We will notify affected individuals without undue delay if the breach is likely to result in a high risk to their rights and freedoms.
  1. Changes to This Privacy Notice

We may update this privacy notice from time to time. Any changes will be posted on this page with an updated revision date.

How We Will Inform You of Changes

  • Minor Changes: Updated on our website.
  • Significant Changes: We may notify you via email or through a prominent notice on our website.
  1. Accessibility and Alternative Formats

We are committed to making our privacy notice accessible to all individuals. If you require this notice in an alternative format (e.g., large print, audio, braille), please contact us at dataprotection@inventyagroup.com or call us at +44 1925 506 100.

  1. Any Questions?

We hope this notice has clarified how we collect and use your personal data and your rights.

If you have any questions or concerns, please contact our Data Protection Officer:

  • Name: Lacra Aciobanitei
  • Email: dataprotection@inventyagroup.com
  • Phone: +44 1925 506 100
  • Address: 520 Birchwood Boulevard, Birchwood, Warrington, Cheshire WA3 7QX, UK

Version 2.2

Last updated: September 2024

Legal Compliance

We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, the EU General Data Protection Regulation (EU GDPR), and the Privacy and Electronic Communications Regulations (PECR). We are committed to upholding the highest standards of data protection and privacy.

Please note: This privacy notice is available in alternative formats upon request.