Last updated: March 25, 2024
Please read this Privacy Policy carefully. By accessing and using the Website, TagPoint and Related Services, you agree to this Policy. If you do not agree to this Policy, do not use this Website, TagPoint and Related Services.
TagPoint is a Software-as-a-Service (SaaS) platform for facility management and service request management (“TagPoint”), developed and owned by Nuzzl Ltd. (“we”, “us”).
Registered address: SWWS Belliver Way, Roborough, Plymouth Devon, PL6 7BP, UK.
Company number: 13555743
This Privacy Policy (the “Policy”) describes how we handle personal data collected through our websites, web and mobile applications, or other services.
We respect and protect your privacy and personal data. We are committed to following the principles outlined in the UK General Data Protection Regulation (the “GDPR”) and other applicable privacy laws.
No matter where you are in the world, where you reside or located, we offer the same high standards of privacy protection to all our customers.
SaaS Agreement means the Agreement published at https://app.tagpoint.co.uk/api/saas/.
TagPoint is a Software-as-a-Service (SaaS) platform for facility management and service request management, which includes the web version available at https://app.tagpoint.co.uk, mobile applications for iOS and Android operating systems available in app stores, a database and a server that processes Customer requests (“TagPoint”).
Controller has the meaning given in the EU GDPR. A controller determines the purposes and means (the why and how) of the processing of personal data.
Customer means an entity that uses TagPoint and Related Services under the terms of the Agreement.
Customer Account means an account or instance within TagPoint, including administrator and user accounts, which enables a Permitted User to access and use the Services.
Customer Account Data means data associated with an account or instance within TagPoint, including administrator and user accounts, which enables a Permitted User to access and use the Services.
Customer Content Data means all data, content, messages, or files and information (including Personal Information) owned, held, used or created by or on behalf of the Customer that is stored on, or uploaded to, or generated by the Services (excluding analytics data relating to the use of the Services and server log files).
External Users means those users who use TagPoint to send service requests to the Customer and who are not Customer’s Permitted Users.
Permitted Users means those personnel of the Customer who are team members and are authorized to access and use the Services on the Customer’s behalf.
Personal information, or personal data means any information relating to an identified or identifiable natural living person (“data subject”) as defined in the UK GDPR.
Processor has the meaning given in the EU GDPR. A processor only processes personal information on behalf of a controller based on the controller’s instructions.
Related Services means any service related to TagPoint and any further services that Nuzzl Ltd. agrees to provide to the Customer under the SaaS Agreement, including maintenance, support, and additional services.
Services means Website, TagPoint and any Related Services.
Subscription means fee-bearing right to use TagPoint on the then-current price list according to the Subscription plan.
Usage Data means any data that is derived from the use of Website and TagPoint, that does not directly or indirectly identify the Customer or its Permitted Users.
Website the internet site https://tagpoint.co.uk/ maintained by Nuzzl Ltd.
Nuzzl Ltd. provides its Customers with the TagPoint platform, which companies can use to automate their facility management tasks, process incoming service and support requests, and coordinate their teams.
TagPoint is intended for the use by companies in their own internal business purposes. The personal data covered by this Policy pertains to individuals acting in a business or commercial capacity.
Individual end users may be using TagPoint on behalf of a Customer they are affiliated with. The Customer authorizes access and use TagPoint and Related Services, controls and administers Customer Accounts.
Customer Account Data
When you visit our Website, sign up for a demo, submit contact forms, create a Customer Account, use TagPoint and Related Services, purchase Subscription, contact our sales or support teams, or communicate with us directly — Nuzzl Ltd. is acting as the Controller.
Customer Content Data
When you upload data, content, messages, files and other information to your Customer Account; add Permitted Users into your Customer Account; collect data from External Users or other third parties — you are acting as the Controller, and Nuzzl Ltd. is acting as the Processor.
Prior to submitting Customer Content Data to TagPoint, it is your responsibility as the Controller of Customer Content Data to comply with applicable data protection laws in your use of TagPoint and Related Services. That includes obtaining any permissions or consents from Permitted Users and External Users that are necessary for the lawful use of TagPoint and Related Services and the processing of Customer Content Data by or on behalf of Nuzzl Ltd.
Under no circumstances do we collect or process special categories of personal data (including, but not limited to sensitive data that includes details about race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about health, and genetic and biometric data).
We collect the minimal amount of information necessary to provide the Services to you. We may combine personal data we receive from you or collect automatically when you use the Services with personal data we obtain from other sources, such as our business partners, public sources, and social media platforms.
We only collect personal data which you provide voluntarily. You agree to provide true, accurate and complete information. You are not required to provide us with any of your personal data, but in this case, you may not be able to use certain features of the Services.
When you contact us through the Website
When you fill out contact forms on the Website to send an inquiry or request a demo, we may ask you to provide your contact data: full name, phone number, email address, job title, company name and other contact information.
When you use TagPoint and Related Services
When you create a Customer Account, including demo account, and use TagPoint and Related Services, we may ask you to provide your account data: full name, phone number, email address, password for the account, job title, company name, avatar, device data, usage data.
When you purchase TagPoint Subscription and Related Services
We may ask you to provide your transaction data: payment card data or company banking details you choose to provide, and other information about the transaction.
When you request support
We may ask you to provide your support data: issue description, screenshots and other information relating to your issue.
When you subscribe to marketing communications
We may ask you to provide your contact details, social media handles and other contact information to deliver you newsletters with TagPoint updates, special offers, news or other communications.
When we communicate directly
When we communicate by email, phone, social media, events, or when you participate in surveys and provide feedback, we may also obtain additional information relating to this communication, for example, your profile photos in your social media account when you message us through social media channels.
When you use our Services, we may automatically obtain information about you. We use this information to store users' preferences, analyze how people use our Services and improve your experience.
When you use the Website
We may collect Website Usage Data: your browsing actions; URL clickstream to, through and from the Website, including date and time; information about your device, browser, operating system, internet service provider; location data and time zone through IP address, and other technical information.
When you use TagPoint and Related Services
We may collect TagPoint Usage Data: system logs to record your interactions with TagPoint we and mobile applications, including date and time; errors; information about your device, browser, operating system; unique device identification numbers or other identifiers; language settings; location data and time zone through IP address; email delivery and click data; and other technical information.
Some data we collect automatically through cookies, web beacons and other similar technologies – read Section 12: Cookies and similar technologies.
To use certain TagPoint functionality, TagPoint web and mobile applications may require permissions on your specific device, including access to the following data:
Location permission (approximate or precise) — to provide location-based services;
Call permission — to provide features associated with telephony;
Camera permission — to capture images and videos from a device;
Photo library permission — to access and attach images and videos from the user's photo library;
Push notifications permission — to send push notifications to the user;
Storage permission — to access external storage, display and read any files.
When processing Personal Data, Nuzzl Ltd. may rely on one of the following legal bases:
The processing is necessary to perform a contract that we have entered into with your, or are about to enter into;
The processing is necessary for the purposes of the legitimate interests pursued by Nuzzl Ltd., or by a third party;
The processing is necessary for Nuzzl Ltd. to comply with laws or to fulfill certain legal obligations;
We have your specific consent to process your personal data for one or more specific purposes.
We use the collected information for the following purposes:
To provide you the Services
When you use the Services, we may use your personal data to provide you access to Website functionality, TagPoint web and mobile applications, and Related Services; to register and administer your Customer Account; to send you notifications (push, SMS, email) as a part of TagPoint functionality; to communicate with you regarding your Account.
To process orders
When you become our Customer, including when you purchase TagPoint Subscription and Related Services, we may use your data to process your orders and send you order-related information.
To provide support
When you request technical support, we may use your data to receive, respond to, follow up and otherwise communicate with you about your support issues, as well as use it for further TagPoint development.
To send marketing communications
When you subscribe to marketing communications, we will use your data to send you occasional newsletters about TagPoint updates, special offers, news or other communications.
To communicate with you
When you contact us with questions, share feedback, participate in surveys on the Website, during events, on social media or through other channels; or whenever we communicate directly, by email, phone or other means of communication, we may use your data to respond and follow-up on your inquiry, to further develop our Services, and to inform you about our products, services and events.
To improve the Services
We use your feedback, suggestions, comments about our products, as well as information about how you and other users collectively use the Services, we may use this information in order to analyze the performance of the Services, to carry out market and customer research, and to improve our Services and user experience.
To market and promote products and services
We may use data about you and other users to perform direct marketing activities, including personalized offers, retargeting, remarketing, advertisement campaigns. If you object to our use of your information for direct marketing purposes, please contact us at privacy@tagpoint.co.uk.
To ensure safety and security
We may use your personal data and Usage Data to monitor suspicious and fraudulent activity, and to identify violations of our policies. We may also use your data to contact you on security and privacy issues.
To operate our business
We may use information about you to operate our business, which includes developing and testing TagPoint, hosting, managing backups, accounting, auditing, protecting our legal rights and interests, reviewing the performance of our technical support and marketing communications, and other internal activities.
To comply with legal requirements
We may use your data when it is necessary to comply with applicable laws and regulations.
For the purposes listed above, we may combine information collected from different sources, as well as combine your personal and non-personal data. This helps us update our records, understand better how you engage with our Services.
We retain personal data no longer than it is necessary to fulfill the purpose for which this personal data was collected and processed, and as otherwise needed to comply with applicable legal requirements. If these purposes are no longer relevant, or if you request that we delete your personal data, we will either delete or anonymize your personal data, unless we are required to retain it longer by applicable law. Therefore:
Personal Data collected for purposes related to the performance of a contract shall be retained until such contract has been fully performed;
Personal Data collected for the purposes of legitimate interests shall be retained as long as needed to fulfill such purposes;
Nuzzl Ltd. may be allowed to retain Personal Data for a longer period whenever the user has given consent to such processing, as long as such consent is not withdrawn;
Nuzzl Ltd. may have to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.
Under no circumstances do we sell, trade or rent your personal data with any third parties for their own business interests, nor do we allow third parties to use it for their own business interests.
We may share generic non-personal data and aggregated anonymized information that does not allow any direct association with you, for example, Usage Data, for any purpose.
We may share your personal data when you have given your consent; to perform a contract with you; when it is required by applicable law; in connection with audit requirements; to protect our legal rights and interests; or in connection with acquisition, merger or sale of a business.
In order to provide you with the Services, we may share your personal data with our trusted third-party providers that help us operate our business, develop, market and promote our Services. They provide us with software development tools, hosting services, analytics services, marketing and email automation, advertising, sales, legal and other services, which may require them to access your data on our behalf.
We require all third parties to respect the security of personal data and provide reasonable assurances that they will appropriately safeguard the personal information.
Where necessary, Nuzzl Ltd. appoint these third parties as sub-processors and list them in Annex A: List of Sub-processors of the Data Processing Addendum.
While we take every step to protect your information, please note that no system can be 100% secure.
We take all appropriate legal, technical and organizational measures to protect personal data from unauthorized access, use, disclosure, copying, modification or destruction, and from unintentional loss, misuse and alteration. These measures vary based on the sensitivity of the information that we collect, process and store and the current state of technology.
We use a variety of secure techniques, including SSL protocol to encrypt the information sent through the Website and TagPoint, secure servers, firewalls, authorization methods, role-based access, intrusion detection systems, and system penetration testing. Only authorized personnel can access your data.
The internet is a global environment and our customers, resellers and service providers are located in many countries around the world, so international data transfers may be necessary to provide you with the Services.
Customer Account Data and Customer Content Data may be transferred outside the country where you reside or are located to another country, where we, our affiliates, resellers, contractors, or our third-party service providers operate. Nuzzl Ltd. employs appropriate safeguards for cross-border transfers of personal information, as required by applicable law.
Where necessary, Nuzzl Ltd. has entered into standard European Commission (for transfers from the EEA) or UK (for transfers from the UK) approved form model data protection clauses (“Standard Contractual Clauses”) with third parties, to provide the Services required. Legal regimes of some territories outside of the EEA and/or UK do not always offer the same standard of data protection as those inside the EEA and/or UK, although Nuzzl Ltd. ensures that data is only ever treated in accordance with this Policy.
You consent to the transfer of all such information internationally, including to countries which may not offer the same level of protection as your country requires, and consent to the processing of that information by us and our trusted third-party service providers internationally as described in this Policy.
If you do not want your data transferred or processed outside of your country, please do not submit your information to us.
When you provide us with your personal data, you have certain rights to make choices regarding your personal information to the extent permitted by law.
Right to request access
You may request details of personal data which we have about you, information about the legal basis and purposes for processing this data, how we have obtained it, who we may share it with, how long we retain it and other information about the processing of your personal data for the period of twelve (12) months prior to the request.
Right to request rectification
If you believe that any personal data we have about you is incorrect or incomplete, you may also ask us to correct it. We will review your request and make changes within seven (7) days. We may need to verify the accuracy of the new data you provide to us.
Right to request erasure
You may request us to delete your personal data when data is no longer necessary for the purposes for which it was originally collected for; there is no lawful basis for us to continue processing it and you have withdrawn your consent; when you have objected to processing (see below); when data has been processed unlawfully; or when we are required to comply with applicable law.
Right to object to processing
At any time you may object to the processing of your personal data if we are processing your data on the grounds of legitimate interest, or if we are processing your personal data for direct marketing purposes.
Right to request restriction of processing
You may ask us to suspend the processing of your personal data when you want us to establish the data’s accuracy; when the processing is unlawful but you do not want us to erase it; when we no longer require your data but you need us to hold the data because you need it in order to establish, exercise or defend a legal claim; or when you have objected to the processing of your data and we need to verify whether we override our legitimate grounds.
Right to request transfer of your personal data to you or to a third party
You may ask us to provide you, or a third party you have chosen, with your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to your personal data which you originally provided consent for us to use, or where we used your personal data to perform a contract with you.
Right to withdraw consent
If you have previously consented to our collection and processing of your personal data, you may withdraw your consent at any time. Note that this will not affect processing that has already taken place. If you withdraw your consent, you may not be able to use certain features of the Services, participate in events, or receive marketing communications.
Right to lodge a complaint
You have the right to bring a complaint before the competent data protection supervisory authority. The supervisory authorities can be contacted at: Information Commissioner's Office (ICO).https://ico.org.uk
If you want to exercise any of these rights, please contact us at privacy@tagpoint.co.uk. We will review your request and reply within thirty (30) days.
Note that we may not always be able to comply with your request for security, legal, or anti-fraud reasons. For example, we may not be able to erase data on your request, if we need to keep processing it to comply with accounting regulations.
Device permissions
You can revoke permissions you granted to web and mobile TagPoint applications at any time. The exact procedure of changing app permissions depends on your specific device, browser and operating system. Note that revoking of such permissions might disable certain TagPoint functionality.
Push, SMS and email notifications
Depending on your Customer Account settings, TagPoint may send push, SMS and email notifications to users. You can opt-out of receiving notifications in your device settings, or change Customer Account settings.
Update or delete Customer Account
Within your Customer Account you are able to access, update or delete certain Customer Account Data and Customer Content Data, and request Account deletion.
Marketing communications
You can always choose to opt-out of marketing newsletters at any time by following the unsubscribe link in any of those emails, or by contacting us at privacy@tagpoint.co.uk. Note that we may still send you non-promotional messages relating to updates of our agreements and policies, and other notices relating to your use of the Services.
Cookies
Most browsers let you remove or reject cookies – read Section 12: Cookies and similar technologies.
When you use our Website or TagPoint, or when you interact with the emails we send you, we may use common information-gathering tools such as cookies, web beacons, pixels and other similar tracking technologies to automatically collect information.
We use cookies to maintain Website and TagPoint functionality, store preferences, analyze usage, provide social media features, and personalize content and ads. Read more in our Cookie Notice.
iubenda cookie consent tool. We use “iubenda” as our cookie consent tool. When you visit our Website for the first time, a cookie consent banner will pop up and ask you to customize your cookie preferences. You can change your preferences at any time by clicking on the cookie consent banner at the bottom of the website.
Browser settings. You can also use your browser settings to opt out of cookies. For more information on how to do that, read https://www.aboutcookies.org, or see the guides for Chrome, Internet Explorer, Edge, Firefox, and Safari.
Do Not Track. Some browsers allow a “do not track” (DNT) setting that requests that a web application disable its tracking of an individual user. To set up DNT, you can visit https://allaboutdnt.com.
Opting out of advertising Cookies. To learn more about how to opt out of targeting and advertising cookies, you can visit the pages of these third-party solutions: YourOnlineChoices, Network Advertising Initiative, WebChoices, YourAdChoices, Google Ad Settings, and Facebook ad preferences.
Apart from cookies, we may use web beacons. Also known as pixel tags and clear GIFs, these are tiny transparent pixel images with a unique identifier. We use web beacons on the Website and in our HTML-based emails to determine, for example, whether you have opened an email and acted upon it. We use web beacons to operate and improve our Services.
You can unsubscribe from our marketing communications at any time by clicking the unsubscribe link in any of these emails.
If you are in the European Economic Area (EEA), note that we collect and process information about you according to the General Data Protection Regulation (GDPR).
Nuzzl Ltd. is located in the UK, and the EU Commission has recognized the UK GDPR as providing adequate protection. This means that data can flow freely from the EU to the UK in the majority of cases and there is no need for other safeguards.
Our legal bases to collect personal information from you are normally to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms, or where we have your consent to do so. In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person such as in the case where we request personal information from you in response to a request from law enforcement.
If you are unhappy with the way we process your personal data, please contact us at privacy@tagpoint.co.uk. If you remain dissatisfied, you have the right to apply directly to your national European Data Protection Supervisor authorities at httрs://edps.europa.eu/.
If you are a California resident, note that we collect and process information about you according to the California Consumer Privacy Act (CCPA). Under the CCPA California residents will have the right to request:
The categories of personal information that are processed;
The categories of sources from which personal information is obtained;
The purpose for processing of user personal data;
The categories of third parties with whom we may share your personal information;
The specific pieces of personal information that we might have obtained about a particular user provided that the data given in the request is reliable enough and allows us to identify the user.
If you are unhappy with the way we process your personal data, please contact us at privacy@tagpoint.co.uk.
Our Services may contain links to third party websites, or integrations with third party products, widgets or social media features. These links and integrations are not an endorsement of, or representation that we are affiliated with, any third party. We do not control websites or other online services operated by third parties, and we are not responsible for their actions. We encourage you to read the privacy policies of these third parties.
We may change this Policy from time to time. The most recent revision of the Policy will be published at https://app.tagpoint.co.uk/api/privacy/. The updated Policy will become effective on the date of publication indicated at the top of this page.
If you do not agree with the changes to this Policy, you must stop using the Website, TagPoint and Related Services.
We will notify you of any material changes to the Policy by email or by posting a notice on the Website. We encourage you to check this Policy periodically for changes. Your continued use of the Services after any changes to the Policy means that you accept and agree to the changes.
If you have any questions about this Policy, or if you want to exercise your legal rights, please contact us:
Nuzzl Ltd.
Email: privacy@tagpoint.co.uk
Registered address: SWWS Belliver Way, Roborough, Plymouth, Devon, PL6 7BP (UK)