We’re committed to ensuring your privacy is protected
We promise to respect your privacy and treat any personal information you choose to share with us securely, fairly and lawfully. This privacy and cookies policy details the following:
- How do we get data?
- What information do we collect?
- What is the legal basis for processing this data?
- How do we use this information?
- How long do we keep your data?
- How do we store your data?
- Your rights
- Requests, enquiries & complaints: How to contact us?
- Cookies policy
- More information
- Changes to our privacy and cookies policy
How do we get data?
Most of the personal information we process is provided to us directly by you for one of the following reasons:
- You are representing your company.
- You have contacted us.
- You wish to leave a comment on an article we have published.
- You wish to attend, or have attended a conference, seminar or event we are holding or talking at.
- You wish to subscribe to our email newsletter.
- You or your organisation have engaged our services.
- You have voluntarily elected to to provide feedback or participate in a primary research activity, e.g. complete a survey or interview.
- You have applied for a job or internship.
We also receive personal information indirectly, in the following scenarios:
- Referrals from third-party individuals.
- Responding to public tenders.
- Reviewing inputs and data provided by our clients.
- Conducting secondary research.
What information do we collect?
We collect and hold the following information:
You use our website
We use first-party cookies provided by Google Analytics and HotJar, to collect standardised visitor information. We do this to help make sure the site is meeting the needs of its users and to help us make future improvements. This information is only processed in a way that does not identify anyone. We do not make, and do not allow Google or HotJar to make, any attempt to find out the identities of those visiting our website. The legal basis for collecting this data is; legitimate interests.
Hosting, security and performance
We use a third party service to host our website and maintain its security and performance. To deliver this services it processes the IP addresses of visitors to the website so it can block traffic that is not using the site as expected. To provide this service, website visitors’ IP addresses are processed. Firewall and server logs are stored for a maximum of 12 months. The legal basis for collecting this data is; legitimate interests.
You sign-up to our email newsletter
We hold your name and supplied email address. We may also track how you use our emails – for example whether you open them or not and what links you click on. The legal basis for collecting this data; is consent.
You contact us online or offline
We will keep a record of that enquiry and if applicable any associated contact details such as email address or telephone number. The legal basis for collecting this data is; consent.
You leave a comment or provide feedback
We will keep your name and the contact details you have elected to share. In addition to this we will also log your IP address and browser user agent string to help spam detection. The legal basis for collecting this data is; consent.
You or your company participates in research activities
We hold the information gathered from you during the recruitment and screening process including contact, demographic and any other personal information you supplied throughout the process. This information is only held for the duration of a project and is/was securely deleted as soon as it is no longer required or the project is complete. The legal basis for collecting this data is; consent.
You or your company ask us to submit a proposal, estimate or response to a tender
We will keep a record of the content information necessary to deliver this. This is likely to include your name, job title, office address, email address and telephone number. The legal basis for collecting this data is; contract.
You or your company are a potential client/supplier and have expressed interest in us and our services
We will hold the contact information you provide us with which may include your name, job title, office address, email address and telephone number. The legal basis for collecting this data is; consent.
You are applying for a job or internship
We will use the contact details you provide us to contact you and progress your application. We will use the other information you provide to assess your suitability for the role you have applied for. We do not collect more information than we need to fulfil this purpose and will not retain this information for longer than 2 years. The legal basis for collecting this data is; consent.
You visit our office and connect to the WiFi
We will record the device address and allocate you an IP address. The purpose for processing this information is to provide you with access to the internet whilst visiting our office. The legal basis for collecting this data is; legitimate interests.
You or your company engage our services or are a former client
We will keep the information necessary to fulfil the services we are/were engaged to provide. This usually includes the name, job title, email address and telephone numbers of all key individuals directly involved in a project. We also maintain a record of the contact details required for all relevant account administration purposes, e.g. invoicing and project logistics. The legal basis for collecting this data is; contract.
We reach out directly to you
In addition to this we may also collect personal data in the process of contacting prospective clients, suppliers and research participants we believe are likely to have an interest in the services we provide or the domain we are researching. In these instances we will always consider the interests of individuals and ensure permission for ongoing communications is obtained. The legal basis for collecting this data is; legitimate interests.
What is the legal basis for processing this data?
We process the information described above for one of three reasons:
- Contractual obligations
The processing is necessary for a contract you have with us, or because you have asked us to take specific steps before entering into a contract, for example, submit a proposal, estimate or response to a tender.
- Legitimate interests
The processing is necessary for your legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests, for example maintaining records of prospective, current and former clients and suppliers or to monitor usage of our website and interaction with our email newsletters.
You have given us clear consent for us to process your personal data for a specific purpose, such as responding to an enquiry or signing-up to receive our email newsletter.
- Legal obligation
The processing is necessary to comply with a legal obligation, such as keeping copies of invoices and information relating to payments received.
How do we use this information?
All data you share with us is controlled by Border Crossing UX, the trading name of Border Crossing Media Holdings Limited.
As the controller of this data we only ever use your data to communicate, maintain and/or fulfil our services to you and never request anything that is not essential to this. We will never sell, rent or share your information with any third parties for the purposes of direct marketing. We will only share your data if we are required to do so by law, for example, by court order, or to prevent fraud or other crime.
We do use third-party data processors and have GDPR-compliant contracts in place with all of our data processors. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will not share your personal information with any organisation apart from us. They will hold it securely and retain it for the period we instruct.
How long do we keep your data?
We will only retain your personal data for as long as:
- It is needed for the purposes set out in this document.
- The law requires us to.
In general, this means that we will hold your personal data for a maximum of 7 years.
How do we store your data?
We are committed to doing all that we can to keep your data secure. We have set up systems, processes and tools to prevent unauthorised access or disclosure and make sure your data is as safe as possible, for example, we protect your data using varying levels of encryption.
We store your information in secure environments. We also make sure that any third parties services, tools and servers keep all personal data they process on our behalf secure. Any third-party servers that we use are with the European Economic Area (EEA), or countries who have a reciprocal framework that matches the security of EEA-based services and are only accessed over secure connections.
Your data is yours and so you have ultimate control over all data we hold about you. You have the right to request:
- The information we hold about about
- A copy of that personal data
- That anything inaccurate in your personal data is corrected immediately.
You can also:
- Raise an objection about how your personal data is processed.
- Opt-out from our email newsletter by using the link at the bottom of the email to unsubscribe.
- Ask that the processing of your personal data is restricted in certain circumstances.
- Request that your personal data is erased if there is no longer a justification for keeping it.
Please note: if you work for an existing client then we are not able to remove your data until the project we have been engaged to fulfil is complete.
If you have any of these requests, please get in touch with our Data Protection Officer.
Requests, enquiries & complaints: How to contact us?
Phone: 0131 467 9227
Post: Border Crossing UX, Suite 4, Waterside House, 46 The Shore, Edinburgh, EH6 6QU.
We use first-party cookies to help us provide a better website. None of these cookies store sensitive information, or anything that could be used to personally identify you.
We believe there is no reason to be concerned about the privacy implications of any of the cookies we use. But we do recognise the importance of making you aware of them.
The list below details the cookies in use on this website:
Source: Border Crossing UX
Purpose: This allows the website to function as intended. We use this session to log information from page to page, such as the search term used to generate results.
More Information: This first-party cookie is deleted as soon as you close your browser window.
Source: Google Analytics
Purpose: Used to manage the rate at which page view requests are made.
More Information: Expires after 10 minutes
Source: Google Analytics
Purpose: This helps us count how many people visit our website by tracking if you’ve visited before.
More Information: Expires after 2 years.
Source: Google Analytics
Purpose: Thishelps count how many people visit our website by tracking if you’ve visited before.
More Information: Expires after 24 hours.
Purpose: This session cookie is set to let Hotjar know whether that visitor is included in the sample which is used to generate funnels.
More Information: Expires after 1 year.
Please note: we do not allow Google or HotJar to share our analytics data.
How to manage or remove cookies?
Most browsers allow you to identify and control cookies. Find out how you can manage cookies on the following browsers:
To find out how to manage cookies on other browsers, please visit the browser developer’s website.
To opt out of being tracked by Google Analytics across all websites, please visit:
To opt out of being tracked by HotJar across all websites that use it, please visit:
How do I learn more about cookies?
To find out more about cookies, including how to see what cookies have been set please visit:
Should you require any further information or assistance please feel free to contact us.
Changes to our privacy and cookies policy
Last updated 04/06/2018