Introduction

NC Squared is committed to safeguarding the privacy of our website users, users of our Booking Engine and Distribution Engine software, and the personnel of our customers, prospective customers and suppliers.

For users of our Booking Engine software, this policy should be read alongside our supplemental privacy policy for Booking Engine, available here: nc-squared.com/privacy/booking-engine-privacy-policy

In this policy, “we”, “us” and “our” refer to NC Squared Limited, NC Squared, Inc and our other group companies from time to time. Information about our group companies is set out at the end of this policy.

When does this policy apply?

This policy applies where we act as a “controller” of personal data. In most cases, we act as a controller.

However, with respect to the personal data supplied to us under a support ticket, we do not act as a controller; instead, we act as a processor. Our legal obligations as a processor are set out in the contracts between us and our customers, and this policy does not apply with respect to our handling of that data.

The Personal Data We Collect

The table below sets out the general categories of personal data that we process and information about the source and specific categories of that data.

Customer data
Data stored in our customer relationship management systems, which may include your name, company name, email address, company telephone number, mobile phone number, country, categorisation data, and the content of communications sent between you and us.
Source: You or your employer

Marketing data
Data processed for direct marketing and targeted advertising, including your name, email address, marketing preferences and marketing history.
Source: You or your employer; LinkedIn

Other communication data
Contact details and communication content not included in the above categories.
Source: You or your employer; LinkedIn

Calendar, availability and booking data
Calendar data regarding availability and bookings made by users of our Booking Engine software.
Source: Integrated calendar service providers

Usage and analytics data
Data about your use of our website and software services, including IP address, location, browser type and version, operating system, referral source, length of visits, page views, navigation paths, and usage patterns.
Source: Our analytics systems

Endorsement data
Data included in reviews, testimonials and case studies, such as your name, image, email address, job title and company name.
Source: You or your employer; Salesforce; LinkedIn; other service providers

If you contact us via an online form, metadata may also be generated automatically, including the date and time of contact and associated usage data.

Purposes of Processing and Legal Bases

We process personal data for the following purposes and under the following legal bases:

Relationships
Communicating with you, including complaint handling.
Legal basis: Legitimate interests – managing and maintaining commercial relationships.

Operations
Contracting with customers, delivering services, invoicing, payments, taxation and credit control.
Legal basis: Legitimate interests – operating and securing our business and services.

Marketing
Sending marketing communications, targeted advertising and managing marketing activity.
Legal basis: Legitimate interests; consent where required.

Customer endorsements
Publishing reviews, testimonials and case studies.
Legal basis: Legitimate interests – transparency and credibility.

Research and analysis
Analysing use of our website and services to improve performance and security.
Legal basis: Legitimate interests.

Record keeping
Maintaining databases, backups and organisational records.
Legal basis: Legitimate interests.

Security
Preventing fraud and protecting systems and data.
Legal basis: Legitimate interests.

Insurance and risk management
Obtaining insurance coverage and professional advice.
Legal basis: Legitimate interests.

Business transactions
Evaluating or conducting mergers, restructures or sales.
Legal basis: Legitimate interests.

Legal claims and compliance
Establishing or defending legal claims and complying with legal obligations.
Legal basis: Legal obligations and protection of vital interests.

Calendar, availability and booking data is processed in accordance with: nc-squared.com/privacy/booking-engine-privacy-policy

Providing Your Personal Data to Others

Our group companies act as joint controllers and may share personal data where necessary for internal administration.

We may share personal data with service providers and integrated service partners as listed at: https://nc-squared.com/service-providers

When using Booking Engine, limited calendar and booking data may be shared with integrated calendar providers solely to enable functionality.

We may also disclose personal data to insurers, professional advisers, regulators or legal authorities where required.

International Transfers of Personal Data

We operate in the UK and USA. Transfers to the USA are protected by appropriate safeguards, including standard contractual clauses.

We may transfer data between the UK and EEA while adequacy decisions apply, and to other jurisdictions where appropriate safeguards are in place.

Retaining and Deleting Personal Data

Personal data is retained only as long as necessary.

Customer data: 7 years from contract termination or last communication
Marketing data: 7 years from last marketing communication
Other communication data: 7 years from collection
Calendar and booking data: transient storage only
Endorsement data: 3 years from last publication
Usage and analytics data: 7 years from collection

Data may be retained longer where required by law or to protect vital interests.

Your Rights

You have the following rights under data protection law:

• Right of access
• Right to rectification
• Right to erasure
• Right to restrict processing
• Right to object
• Right to data portability
• Right to complain to a supervisory authority
• Right to withdraw consent

More information is available at: https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/

Third Party Websites

Our website may link to third-party websites. We are not responsible for their privacy practices.

Updating Information

Please notify us if your personal data needs to be corrected or updated.

Amendments

We may update this policy by publishing a new version on our website. Please review it periodically.

Our Details

NC Squared Ltd
England and Wales (07823906)
60 Windsor Avenue, London, SW19 2RR

NC Squared, Inc
Delaware, USA
2810 N Church St PMB 74040, Wilmington, DE, 19802-4447

Personal Data Manager and Registration

Our data protection manager can be contacted at: privacy@nc-squared.com

We are registered with the UK Information Commissioner’s Office (ICO).
Registration number: ZB941157

If you are dissatisfied with our handling of your data, you may lodge a complaint with the ICO: https://ico.org.uk/global/contact-us/contact-us-public/

1. Introduction

Our website and our Distribution Engine and Booking Engine applications use cookies and local storage.

Insofar as cookies and local storage are not strictly necessary for the provision of our website and services or otherwise exempted, we will ask you to consent to their use when you first visit our website or use the relevant application.

This cookies policy should be read alongside our privacy policy at:

https://nc-squared.com/privacy-policy

Details of our business and companies are set out in that policy. 

For users of Booking Engine, that policy should be read alongside our supplemental privacy policy for Booking Engine, available here:

https://nc-squared.com/booking-engine/privacy-policy 

2. About Cookies

A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.

Cookies may be either "persistent" cookies or "session" cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.

Cookies may not contain any information that personally identifies a user, but personal data that we store about you may be linked to the information stored in and obtained from cookies.

Local storage is a browser-based key–value store that lets a web application save data on a user’s device so it persists across page loads and browser sessions. Like a cookie, it can hold information about a user's preferences or previous actions (for example, remembering consent choices or UI settings) and then be read on later visits to adapt the page. The main difference is that, unlike cookies, local storage data is not automatically sent with every HTTP request; instead, JavaScript reads and writes it on the client side, so developers can use it as a "cookie‑like" mechanism for storing identifiers or state while avoiding extra traffic on each request.

3. Cookie Details

We and our services providers use cookies and local storage for the following purposes: 

{{nc-squared-cookies-policy="/utility/matrix"}}

4. Managing Cookies

Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser and from version to version. You can obtain up-to-date information about managing cookies via these links:

• https://support.google.com/chrome/answer/95647 (Chrome);
• https://support.mozilla.org/en-US/products/firefox/privacy-and-security (Firefox);
• https://help.opera.com/en/latest/security-and-privacy/ (Opera);
• https://support.apple.com/en-gb/guide/safari/welcome/mac (Safari); and
• https://support.microsoft.com/en-gb/windows/microsoft-edge-browsing-data-and-privacy-bb8174ba-9d73-dcf2-9b4a-c582b4e640dd (Edge).

Blocking all cookies will have a negative impact upon the usability of many websites. If you block cookies, you will not be able to use all the features on our website.

Introduction

This notice contains information about how the Booking Engine service provided by NC Squared Ltd collects and processes personal data, and in particular personal data collected from users' calendar apps.

Policy details

In this notice, data collected from the calendar apps is referred to as "calendar data", data regarding the availability of participants derived from this is referred to as "availability data", and data describing specific bookings that is returned to the calendar apps is referred to as "booking data".

All data collection and processing will occur in the context of a contract between NC Squared and an NC Squared customer, referred to here as "our customer". Our customer may be your employer.

{{booking-engine-privacy="/utility/matrix"}}

Booking Engine will not use or transfer calendar data, availability data or booking data except as specified above.

We will never sell calendar data, availability data or booking data.

For the purpose of the UK and EU GDPRs, our customer will be a controller with respect to the processing activity referred to in this notice. For more information about how our customer uses personal data, see the customer's own privacy policy.

For more information about how we handle personal data, see the privacy policy in our Knowledge Base.

This page contains details of the service providers to which we may disclose personal data. For more information about how we handle personal data, see our privacy policies at:

https://nc-squared.com/privacy-policy 

https://nc-squared.com/booking-engine/privacy-policy 

Unless stated otherwise, transfers of personal data to or by the service providers referenced below shall, where required by EU or UK data protection law, be protected by adequacy determinations or approved contractual protections.

"Adequacy determinations" include, in the case of transfers of personal data to the US, a reference to the EU–US Data Privacy Framework and its extensions, including the US-UK Data Bridge; and "approved contractual protections" include the EU's Standard Contractual Clauses (sometimes referred to as the SCCs), the UK's International Data Transfer Agreement and the UK's International Data Transfer Addendum.

1. Relationships, Communication and Accounting

‍

2. Research, Marketing and Analytics

‍

3. Contracting and Workflows