We understand that privacy and the security of your personal information is extremely important. This policy sets out what we do with personal information and what we do to keep it secure. It also explains where and how we collect personal information, as well as rights over any personal information we hold.
We adhere to requirements of the General Data Protection Regulation (GDPR), Data Protection Act 1998 and the Privacy and Electronic Communications Regulations (PECR).
Who we are
When we say ‘we’, ‘us’, ‘our’ or ‘Qcode’ in this policy, we’re generally referring to Qcode Software Ltd. Qcode Software Ltd is a company registered in Scotland under company number SC272444. Our registered office is The Clark Thomson Building, Fairways Business Park, Inverness, IV2 6AA.
We are registered on the public register of data controllers which is looked after by the Information Commissioner’s Office (ICO). Our registration number is ZA347188.
Reasons for processing information
We process personal information to enable us to provide a service in which we design, test and demonstrate software, promote our services; maintain our accounts and records and to manage our staff.
Type of information processed
We process information relevant to the above reasons/purposes. This may include:
- Personal details.
- Family details.
- Lifestyle and social circumstances.
- Goods and services.
- Employment and education details.
- Financial details.
- Information necessary for the development and test of software.
We also process sensitive classes of information that may include physical or mental health details; racial or ethnic origin; religious or other beliefs.
We’re committed to maintaining the necessary technical and organisational security measures to safeguard personal data to the highest standard.
All data is encrypted when transmitted from our secure servers to browser using secure and modern forms of encryption.
All credit card transactions are processed using secure encryption. Card information is transmitted, stored, and processed securely on a PCI-compliant network. This protects personal data while being sent over the internet from being intercepted and misused by third parties.
We continually test and update our infrastructure to identify and patch security vulnerabilities, and we carry out penetration testing to identify ways to further strengthen security. We know how much data security matters to all of our customers. With this in mind, we will take all appropriate steps to to keep up with the state-of-the-art in web security and protect personal data.
Payment card protection
We tokenize card details at the earliest opportunity so we do not have to store full payment card details on our own servers. We work with an external PCI-compliant payment processor who stores these details. We only store the last 4 digits of card numbers and the card type on our systems so that customers can identify which card will be used for future payments. Point to Point Encryption protects our customers’ payment data at the point of interaction all the way through to settlement in order to protect it from fraud.
Who the information is processed about
We process personal information about our clients, employees, suppliers and individuals necessary for software development.
If you would like to exercise one of your rights, or you have a question or a complaint about this policy or the way your personal information is processed, please contact us by one of the following means:
The Clark Thomson Building,
Fairways Business Park,
If you wish to make a complaint about the way that we handle personal data, you have the right to lodge a complaint with the UK regulator, the Information Commissioner’s Office. Please go to www.ico.org.uk/concerns to find out more.