CFT Group Ltd (Company number 09995879) (CFT Group, we, us or our) provides the products and services offered on the CFT Group website (cftgroup.co.uk) the Duesday website (duesday.com) and/or mobile application Duesday (Platform).
For the purposes of the Data Protection Act 1998 (Act), we are the data controller.
We have adopted this policy to ensure that we have standards in place to protect the data that we collect about individuals that is necessary and incidental to:
By publishing this policy we aim to make it easy for our users, customers and the public to understand what data we collect and store, why we do so, how we receive and/or obtain that information, and the rights an individual has with respect to their data in our possession. If you have any queries or concerns regarding these practices, please contact us by emailing firstname.lastname@example.org
We handle data in our own right and also for and on behalf of our customers and users.
Our policy does not apply to information we collect about businesses or companies; however it does apply to information about the people in those businesses or companies which we store.
The policy applies to all forms of information, physical and digital, whether collected or stored electronically or in hardcopy.
If, at any time, an individual provides data or other information about someone other than himself or herself, the individual warrants that they have that person’s consent to provide such information for the purpose specified.
CFT Group and Duesday is not available to children (persons under the age of 18 years).
1. Here’s why we collect the following personal information from you:
In order to comply with our anti-money-laundering obligations we may send this data to a third-party provider to verify your personal details. These details are not publicly accessible.
2. Here’s why we collect the following financial information from you:
The secure payment token is stored in an encrypted digital vault
We do not store card details other than the first six and the last four digits of the card number and the card’s expiry date
Your bank details are securely stored in an encrypted digital vault
3. And finally, we also collect the following statistical and device information. This isn’t personal to you, it’s more about the way Duesday is used by everyone so that we can keep making it better:
If you publicly post about Duesday or CFT Group, or communicate directly with us, on a social media website, we may collect and process the data contained in such posts or in your public profile for the purpose of addressing any customer service requests you may have and to monitor and influence public opinion of Duesday or CFT Group.
How your data is stored
The data we collect from you will be stored in the European Economic Area (EEA) with and by our hosting provider Amazon Web Services (AWS).
Data may also be processed by third parties and/or staff operating outside the EEA who work for us or for one of our third-party partners. Such staff may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing.
We will retain data for the period necessary to fulfil the purposes outlined in this policy unless a longer retention period is required or permitted by law.
We share your personal information with selected third parties for the purpose of managing and administering the accounts and services provided to you through Duesday. We may further share and disclose this information with
Transfer of business:
We may share non-personal aggregated statistics data about the usage of our website and products with third parties. Just to be clear, this information does not identify users in any personal capacity; it just gives generalised information about the way Duesday is used.
We may store information about you using cookies. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your device if you agree. Cookies contain information that is transferred to your device’s hard drive. You block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies.
If you want to delete any cookies that are already on your computer, please refer to the instructions for your file management software to locate the file or directory that stores cookies. Information on deleting or controlling cookies is available at www.allaboutcookies.org. Please note that by deleting our cookies or disabling future cookies you may not be able to access certain areas or features of our site.
We use Google Analytics and Mouseflow to better understand how our sites are used so that we can make them easier to understand and navigate. To opt out of using Google Analytics across all websites visit https://tools.google.com/dlpage/gaoptout. To opt out of using Mouseflow across all websites visit https://mouseflow.com/opt-out/.
We use data from Google's Interest-based advertising or 3rd-party audience data (such as age, gender and interests) with Google Analytics for marketing purposes.
By using our websites and products, you are agreeing to the use of the cookies listed above.
As required by the UK Data Protection laws, we follow strict security procedures in the storage and disclosure of information which you have given to us, to prevent unauthorised access. In particular, we use SHA256 to encrypt your password. Transport Layer Security (TLS V1.1 and above) encrypts the information you provide as it travels through the Internet. Encryption creates billions of code combinations to protect each transaction made on the website, so your password or information cannot be viewed by anyone else using the internet. Despite using this technology, we cannot guarantee the security of the information that you disclose to us. You accept the inherent risks of providing information and dealing on-line and will not hold us responsible for any breach of security unless this is due to our negligence or wilful default.
If you have any concerns about security, please email us at email@example.com.
You can click the unsubscribe link included in an email or edit your settings in the profile section of our Duesday app to stop receiving e-alerts or newsletters from us. You can also access and edit personal information provided in the profile section of our Duesday app.
Under the Data Protection Act you have the right to see the personal information that we hold about you, whether collected through your use of Duesday or through any communications that you have had with us. If you have any queries about your right or wish to make such a request please contact us by email at firstname.lastname@example.org or by post addressed to the
Duesday Data Protection Officer, 2 Pike Street, Liskeard, Cornwall, PL14 3HS
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by choosing certain options on the forms we use to collect your data. You can also exercise the right at any time by contacting us at the address provided above.
You can find out more in our T&Cs.