PRIVACY POLICY
Introduction
The Paranimo and Matchifi platforms are provided by Paranimo Limited (Company Number 11992617), a company incorporated in England and Wales with its registered office at 28 Salisbury Road, Farnborough, England, GU14 7AL. This Privacy Policy explains how Paranimo Limited ("We," "Us," or "Our") collects, uses, and protects personal data from users of our websites and platforms (collectively, "Platform").
We prioritize the security and privacy of your personal data and aim to provide transparency to instill confidence in using our Platform without concern. This policy complies with the UK Data Protection Act 2018 and UK GDPR, which outline data protection rights for UK citizens. For more information, visit: https://ico.org.uk/for-organisations/guide-to-data-protection/.
The Platform serves as a marketplace to connect Service Providers with End Users, facilitating service delivery across various industries. Matchifi extends this functionality, allowing Business Customers to configure bespoke matching systems. Our user base includes "Service Providers" (those offering services) and "End Users" (those seeking services), with data requirements varying by user type as detailed below.
Our General Principles for Personal Data Collection and Processing
- We minimize personal data collection to what is essential for providing the Platform’s services.
- Data is collected only for specified, explicit, and legitimate purposes outlined in this policy.
- We use personal data solely for these purposes and will seek your consent before changing them.
- Data may be shared with third parties only where necessary for Platform functionality (see "How Do We Share Personal Data"), with consent required for sharing with Service Providers.
- We maintain technical and organizational measures to ensure your legal data rights are upheld.
- We implement safeguards to keep all data secure and processed lawfully.
What Data Do We Collect?
We collect only the data necessary to operate the Platform and facilitate connections between End Users and Service Providers. Specific requirements differ by user type:
- End Users:
- Required: Email address, password, and phone number (for registration and communication).
- Optional: Display name (real or pseudonym), additional profile details (e.g., preferences, availability).
- Note: Minimal data is required, but providing optional details may enhance service matching and delivery. You may share further information directly with Service Providers at your discretion.
- Service Providers:
- Required: Full name, email address, password, and phone number (for registration and profile setup).
- Optional: Professional credentials (e.g., qualifications, certifications), identification (e.g., driving license, passport), insurance details, biographical information, availability, profile images, or video content.
- Note: Additional data helps advertise your services via a public profile, but only what you choose to provide is shared.
- Business Customers:
- May provide End User data (e.g., email, phone number) with consent for scheme onboarding. Admin users, who manage Business Customer accounts, must provide an email address, password, and optionally a display name to create their accounts as End Users.
- General:
- Correspondence records if you contact us or other Users via the Platform.
- Phone number and identifier if arranging a phone-based interaction directly with Paranimo support.
We do not record content from interactions (e.g., video calls). Where data is received from third parties (e.g., Business Customers, professional organizations), we ensure GDPR-compliant consent via contractual agreements.
Age Restriction
We do not knowingly collect personal data from individuals under 18 years old unless facilitated through a Business Customer explicitly configuring the Platform for such use. By using the Platform, you confirm you are at least 18, or have Business Customer authorization if under 18.
How Do We Collect Your Data?
We collect personal data:
- Voluntarily provided by you via the Platform (e.g., during registration, profile creation).
- As metadata from standard online interactions (e.g., browser data).
- From referrals (email only) where an existing User suggests you join, with a registration link sent (ignored links result in data deletion after 3 days).
- From Business Customers onboarding End Users or Service Providers, with your consent.
- Manually, when Service Providers provide an email to a Paranimo representative to initiate registration.
Why Is Data Collected?
We collect data under the following legal bases:
- Consent: Where you voluntarily provide it (e.g., profile details).
- Contract: Where necessary to fulfill our agreement with you and ensure the Platform works as intended (e.g., Platform access).
- For End Users:
- Registration and login.
- Displaying your identifier (e.g., name) to Service Providers with your consent.
- Processing bookings and payments.
- Managing your account.
- For Service Providers:
- Registration and login.
- Advertising your services via a public profile.
- Processing bookings and payments.
- Managing your account and profile.
How Will We Process Your Data?
Processing occurs via Amazon Web Services (AWS) Serverless features and third-party services integral to Platform functionality, including:
- Service Delivery: Registration, login, profile creation/management, booking availability, calendar management, payment processing, and communication tools (e.g., video calls).
- Communication: Notifications about Platform changes, new features, scheduled events (e.g., booking confirmations, reminders), and responses to your inquiries.
- Analysis: Assessing Platform usage to improve functionality, ensure compatibility with devices/browsers, monitor growth, and enhance user experience.
How Do We Share Personal Data?
We do not share sensitive personal data without your consent, except as required for Platform functionality or by law. Sharing includes:
- End Users:
- Your identifier (e.g., name) is shared with your chosen Service Provider only with consent, revocable anytime via your profile.
- Business Customers managing portals you access may view your personal data (e.g., email, phone number, profile details) to provide customer support, limited to what is necessary for their scheme’s operation and support functions. This access is based on our contract with the Business Customer to enable their service delivery, and you will be informed during onboarding. For example, Company A might configure a service portal using Matchifi and need to view End Users and Service Providers within their portal to assist customers.
- Service Providers:
- Profile data is publicly viewable to promote your services, unless restricted by Business Customer settings. Business Customers may also access your data (e.g., name, email, profile details) for support within their portals. If you join through a Business Customer, your account will be visible to their admins.
- Invoicing:
- End Users, Service Providers, and Business Customers will see personal information (e.g., name, email, or payment details) required to create invoices for purchases.
- Third Parties:
- User IDs or emails with service providers (e.g., Stripe, Auth0) for core functionality.
- Verification of credentials with professional organizations (Service Providers only).
- Marketing purposes, with your explicit opt-in consent.
- Legal obligations (e.g., court orders).
- Safety or rights protection of Paranimo staff, partners, or Users.
- Compliant invoicing.
- Where data is transferred outside the UK/EEA (e.g., to US-based providers), we ensure safeguards like the EU-US Privacy Shield or Standard Contractual Clauses are in place.
If Paranimo is acquired, personal data may transfer as an asset, but the acquirer must obtain your consent for policy changes. Testimonials or feedback may be used for marketing with your negotiated consent.
Third-Party Services:
US-based providers comply with the EU-US Privacy Shield (https://www.privacyshield.gov/welcome).
How Do We Store Your Data?
Data is stored securely in the cloud on:
While we implement robust safeguards, we cannot guarantee absolute security. Required data (e.g., email, password) is minimal; optional data is provided at your risk. In the event of a data breach impacting your personal data, we will notify you and the ICO promptly, as required by law.
We limit staff access to personal data based on necessity and sensitivity. Data is retained only as long as needed for service delivery or legal compliance (typically 7 years), but you can modify or delete it anytime via your account.
Account Security
You are responsible for keeping your login credentials confidential. We recommend strong passwords, regular updates, and multi-factor authentication. Sharing credentials risks unauthorized access, and we treat actions from your account as yours. Sign out when not using the Platform to prevent unintended access. You are liable for transactions made with your login details.
Marketing
Marketing communications (e.g., updates, feature announcements) are opt-in only. You can unsubscribe via email links, your account settings, or by contacting support@paranimo.co.uk. We do not share your data with third-party advertisers without consent. Service Provider content may be shared with your opt-in permission.
Privacy Policies of Other Websites
This policy applies only to Paranimo-operated sites. Third-party links have separate policies.
Changes to Our Privacy Policy
We regularly review and update this policy, with changes posted at www.paranimo.co.uk/privacy-policy.
Your Data Protection Rights
Under UK GDPR, you have:
- Right to Access: Request your personal data and explanations of terms.
- Right to Rectification: Correct inaccurate or incomplete data.
- Right to Erasure: Request data deletion under certain conditions.
- Right to Restrict Processing: Limit data use under certain conditions.
- Right to Portability: Transfer your data to another entity or yourself under certain conditions.
- Right to Object: Oppose data processing under certain conditions.
- Right to Withdraw Consent: Withdraw consent for data processing (e.g., sharing with Service Providers or marketing) at any time via your account settings or by contacting support@paranimo.co.uk.
To exercise these rights, contact support@paranimo.co.uk. The UK’s data protection authority is the Information Commissioner’s Office (ICO): https://ico.org.uk.
COOKIE POLICY
Introduction
This Cookie Policy explains our use of cookies on Paranimo and Matchifi subdomains (e.g., app.paranimo.co.uk, therapist.paranimo.co.uk, admin.paranimo.co.uk). For questions, contact support@paranimo.co.uk.
What Are Cookies?
Cookies are text files stored by your browser to track visitor behavior, authenticate logins, and manage permissions. Most browsers accept cookies by default, but you can adjust settings. Disabling them may impair Platform functionality. Learn more at: www.allaboutcookies.org, www.yourchoicesonline.eu, www.networkadvertising.org.
How Do We Use Cookies?
We use strictly necessary cookies to ensure Platform security and functionality, including authentication and access control.
Third-Party Cookies
We use trusted third-party cookies:
Strictly Necessary Cookies
These cookies enable registration, login, and secure access. Accepting them is required to use the Platform; rejecting them prevents proper login and reduces support capabilities. Stripe may also require cookies for payments.
Managing Cookies
Adjust cookie settings via your browser or our Cookiehub tool on the Platform. Disabling cookies may block registration/login. Guides:
.png)