Privacy

We look after your privacy and protect your data as if it were our own. We encourage you to read our Privacy Policy to better understand how you we keep your data safe and sound.


Who we are

This is the website of The Readability Group ltd. We are a publicly-registered organisation, whose details are available from Companies House. Our website address is https://thereadability.group.

You can contact us by emailing mail@thereadability.group


What personal data we collect and why we collect it

If you leave a comment

In some cases you may be able to leave comments on the site. We will store the data you enter and submit via the comments form, and also some other information sent by your web browser or ISP, such as your IP address and browser user agent string to help with spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to check if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture may be visible to the public along with your comment.

If you send us image files

As a rule, if you upload and share images on any website, you should avoid uploading images with embedded location data (EXIF GPS) included. It would be possible for other website visitors to download and extract such location data from images.

If you submit information to us via forms

If you choose to add your details to a contact form on our site and submit that data to us, we will save the data in our secure database. Your data will be kept private. By electing to submit your details you are indicating your agreement to allow us to store and see that information for the purposes of processing your request, and to keep a record of your correspondence as may be required by law, but if you later decide you would like to have your data erased from our records, you may contact us to ask that we do so.

When we use browser cookies

We use cookies on our website for essential, functional, and analytical purposes. These “cookies” are actually just small files which which contain information sent from our website to your browser in order to remember your preferences regarding how you use our website. For example if you sign in, we may use a cookie to remember that so you don’t have to sign in again when you next view that page.

The files that store cookie data must be generated by your own web browser and so are securely encrypted and protected by your browser so that only we can see the cookie files set by our website.

Any cookies we send you will automatically expire and be deleted in one year, but you can delete any or all cookies from your browser at any time you wish, or disable your browser from accepting cookies entirely by using the appropriate Settings or Preferences option of your browser.

Note that for essential and functional cookies, disabling your browser from accepting cookies may impact on the ability of our website to function properly as you use it. For further information about cookies, including how to change your browser settings, please visit www.allaboutcookies.org.

When we embed content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

When we collect analytics

We use Google Analytics to gain insights and improve the functionality of our website. Examples of the kind of data collected by Google Analytics are detailed in the documentation for Google Analytics. These include:

  • The HTTP request of the user, including any associated metadata sent by that user’s browser
  • Browser/system information, as indicated by the user’s browser
  • First-party cookies, that is cookies set and owned directly by Google

In addition, certain data can be derived from analysing the HTTP request, for example by examining the IP address of a request to our website it is possible to use geolocation lookup to estimate your approximate geographic location, such as the country or area of the country. Information that is normally sent by your web browser or computer may also be collected for purposes of measuring what kinds of devices and technologies our website visitors use. Please use the settings specific to your own browser to manage what level of privacy and information-sharing you are comfortable with.

Our analytics collection is a third-party service that is used as a way of measuring visitor traffic patterns, and as such Google’s standard Privacy Policy applies to any data collected using this service. You may prevent any analytics from being gathered by using Google’s analytics opt-out page: https://tools.google.com/dlpage/gaoptout


Where we store your data

Unless otherwise noted, all our servers and data processing centres are geographically located in the EU. Therefore all EU rules and regulations apply to our processing and retention of that data.

We may occasionally use services from trusted partners that independently collect, store or transfer data outside of the UK. In those cases we will list those services here.


Who has access to your data

In the cases of personal data, or data that you directly send to us, for example via a Contact Form, we do not share your data with anyone outside of this website.

Incidental data, collected via your usage of the website but not personally associated with you, such as server logs, website usage analytics or similar, are not shared with anyone outside this website except for the specific exceptions described in this document.

As with any company, we may be occasionally be required by law to share specific data with legal authorities conducting an investigation into a potential crime. In such cases we will fully comply up to our legal requirements to do so.


How long we retain your data

We only retain your information for as long as we need to in order provide you with the website features outlined in this document or that we inform you about when you use the website.

If you leave a comment, the comment and its metadata may be retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we may store the personal information they provide in their user profile. All users can see, edit, or delete their own personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.


Removing your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.


What we do to protect your data

We are committed to keeping your data safe so we design our website with data protection in mind.

The software used to run this website is regularly monitored and updated to include all appropriate security updates as they become available. We use well established, industry standard cloud service providers to host our website and process any communication generated from your use of that website. All stored data is encrypted and protected from access by anyone who is not authorised to do so. You can learn more about the data privacy measures that are applied by our hosting provider by reading their Data Privacy Policy page.


What data breach procedures we have in place

We comply with the European Union’s (EU) General Data Protection Regulation (GDPR) regarding breach notification. This states that we must notify the national data protection regulator no later than 72 hours after having become aware of a breach incident. We are responsible for finding out what happened, and who was affected, all the while trying to mitigate and contain the breach. In cases where the data breach could result in high risk to a person’s “rights and freedom”, i.e., in physical, material or moral damage, we are responsible to communicate the breach to any individuals affected.


Still have questions?

We are fully transparent and responsive about how we treat your data. If you have any questions not covered in this policy document, we invite you contact us by emailing mail@thereadability.group and start a conversation.