PRIVACY POLICY

1. Introduction

We appreciate the trust you place in us when sharing your personal data. The security of that data is very important to us. In this document, we will explain how we collect, use, and protect your personal data.

This Privacy Policy applies to personal information collected from users in the operation of our business to ensure that we provide a good service to our users. We will make every effort to protect your privacy by adopting a consistently high level of site security aligned with strict company policies on how we store and use personal information.

This policy may be updated from time to time without notice, and we encourage you to review this policy at intervals.

2. Legal Basis and Requirement for Collecting and Processing Personal Data

Neovation processes personal data only where we have a lawful basis to do so in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR). The legal bases on which we rely include:

Consent: Where you have provided clear consent for us to process your personal data for a specific purpose, such as receiving information about our services or participating in surveys or conferences.

Contractual Necessity: Where processing your personal data is necessary to perform a contract with you or to take steps at your request before entering into a contract.

Legitimate Interests: Where it is necessary for our legitimate business interests and your interests and fundamental rights do not override those interests. This may include improving our services, website functionality, and customer experience.

Legal Obligations: Where processing is necessary for compliance with legal or regulatory obligations applicable to Neovation.

Where consent is relied upon as the legal basis, you have the right to withdraw your consent at any time.

3. What Information is Being Collected?

Data collected varies from activity to activity but might include:

• Information that you provide by completing forms (e.g. your name, address, postcode, email address, telephone number, occupation).

• Technical information about your use of our services (e.g. details of your domain name, location and internet protocol [IP] address, operating system, browser version, the content you view, how long you stayed on a page).

• Data collected through ‘cookies’ and/or other devices.

• Comments and feedback by individuals.

• Purchase and search history.

• Other ad hoc data to help us provide you with improved products and services (e.g. when we ask you to fill in a survey or questionnaire).

4. How is Information Being Collected?

All Users

As you browse our website, we collect information about your use of the site including, but not limited to, traffic data and location data. This will normally be the pages you have visited, how long you stay online, and where you are located. We will not be able to identify who you are from the information we store, but we will be able to identify where you are located.

Mobile Users

The Neovation website is designed specifically for use on mobile devices. By default, we track mobile usage metrics anonymously. Some mobile versions of our websites may require that you log in with your user account for that website. Neovation may use non-identifiable information transmitted for quality improvement and as otherwise described in this policy or in other notices from the company.

5. What Else Does Neovation Collect When You Use Our Websites?

Each time you use the internet, an IP address is assigned to your computer or internet-capable device via the internet service provider. This number may either be the same or different each time you access the internet. Each time your computer or internet-capable device requests information from our website, we log your IP address on our server. We may also log operating systems and browser types for the purposes of system administration and to report aggregate information. We may use this in order to gather information about the website traffic and usage.

Whether you are a registered user or not, our web server collects certain information including IP address, hostnames, domain name, time and date, the browser version and platform, a record of which pages have been requested, and location data from your IP address. Location data may be necessary for us to ‘geo-block’ or regionalise our website content or services.

6. Automated Profiling Using Your Personal Data

Neovation does no automated profiling of personal data.

7. Categories of Third Parties with Whom We Share Personal Data

Other than as expressly agreed by you or stated when data is collected or stated within this policy, we will not disclose your personal data to any third parties other than:

• To third parties authorised by us, such as our licensors and contractors, who must keep this data confidential and are GDPR compliant.

• As required for conferences, such as to venue organisers, or where you consent for an exhibitor or supporter to be scanned at a conference – in this case, your personal details may be supplied to them.

• As required to enforce our legal rights for fraud protection and credit risk reduction.

• As required to enforce our legal rights (including property, safety, our customers, or others) for fraud protection and credit risk reduction.

• Where our company or its assets (to which your data relates) are to be acquired by a new company, in which case location data may be shared.

• Aggregated and anonymised usage statistics to third parties that do not reveal your identity or personal information.

In addition to the above, Neovation may share personal data with trusted service providers who support the operation of our business and the delivery of our services, including information technology providers, cloud hosting services, analytics providers, and event management partners. These third parties are permitted to process personal data only for specified purposes and in accordance with our instructions. Neovation ensures that appropriate contractual and organisational safeguards are in place to protect personal data and that such third parties comply with applicable data protection laws and confidentiality obligations.

8. Security Measures

• We have put in place appropriate security measures to protect personal data.

• In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.

• They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.

• We have also put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. Risk assessment, including assessing risks to the rights and freedoms of data subjects, is at the heart of our ISMS.

• We do not, however, have any control over what happens between your device and the boundary of our information infrastructure.

• You should be aware of the many information security risks that exist and take appropriate steps to safeguard your own information. We accept no liability in respect of breaches that occur beyond our sphere of control.

9. Cross-Border Transfer of Information

Your personal data is stored in our databases or those of our contractors and is only available to our technicians and selected authorised people on a password-protected basis. Neovation takes all necessary steps to ensure that personal information is protected and that destinations are GDPR compliant.

10. How Does Neovation Keep Your Personal Information Protected?

We will use appropriate physical, technical, and administrative safeguards to protect your data. Access to your personal data will be restricted to only those who need to know that information as required to perform their job function. In addition, we train our employees about the importance of maintaining the confidentiality and security of your information.

As part of the protection process, you should not share your username and password with other people. If a username/password is forgotten, we will email the username and password details ONLY on request and to the email address used to register the account.

11. What are Cookies?

Cookies are small text files that a website may put on your computer or mobile device when you first visit a website and are widely used to remember small amounts of information and give you a better experience using the website. Certain cookies contain a limited amount of personal information. For example, if you click ‘remember me’ when logging in, a cookie will store your username.

Most cookies will not collect information that personally identifies you, but collect more general information to help us analyse how well our website is performing overall so we can improve it. Neovation only uses session or temporary cookies: that is, those that are deleted once users close their browsers and automatically expire after 20 minutes of inactivity or logging out of the system. You can adjust the use of cookies through your browser (see here for more information: www.aboutcookies.org); however, disabling them may limit the use of some functions on our websites.

12. Disclosure of Personal Data

• Third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them.

• If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy policy.

• We require all third parties to respect the security of your personal data and to treat it in accordance with the law.

• We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

13. Third Parties

Neovation’s services may include links to third-party websites. In using such links, please be aware that each third party is subject to its own privacy and data protection policies and is not covered by our Privacy Policy.

We will receive personal data about you from various third parties and public sources as set out below:

• Technical Data from the following parties:

a) Google as an analytics provider

b) LinkedIn as a provider of advertising and contact information

14. Your Data Protection Rights

Depending on your location and applicable data protection laws, you may have the following rights regarding your personal data:

• Right of Access – to request access to your personal data and obtain a copy of the information we hold about you.

• Right to Rectification – to request correction of inaccurate or incomplete personal data.

• Right to Erasure – to request deletion of your personal data where there is no lawful reason for us to continue processing it.

• Right to Restrict Processing – to request that we suspend processing of your personal data under certain circumstances.

• Right to Data Portability – to receive your personal data in a structured, commonly used format.

• Right to Object – to object to processing of your personal data where we rely on legitimate interests.

• Right to Withdraw Consent – where processing is based on consent.

Requests regarding these rights can be submitted by contacting us using the details provided on our website. We will respond to such requests in accordance with applicable data protection laws.

15. Updates to Our Privacy Policy

These may occur at any time and without notice. We will post a notice on our website if there have been significant changes.