What type of information do we have?
SuperByte collect name and contact details from potential clients, current clients, suppliers and those who have
expressed interest in SuperByte. This information is collected online and in person, including through enquiries from
Third party data is accessed through our clients – who provide us with this information to add users to their platform.
We also collect personal information from our employees and consultants – including contacts, registration, tax,
insurance and other details in line with our employer obligations.
How do we use personal information?
We use data for the :
- Personalisation of content, business information or user experience
- Account set up and administration
- Delivering marketing and events communication
- Carrying out polls and surveys
- Internal research and development purposes
- Providing goods and services
- Legal obligations (eg prevention of fraud)
- Meeting internal audit requirements
- Fulfilling employer responsibilities
What do we do with the information?
Under the General Data Protection Regulation (GDPR), the lawful bases we rely on for processing this information are:
- We have a contractual obligation.
We do not make automated decisions or do profiling based on the data we hold
How do we store your information?
We store your information securely – and when online, with encryption.
We intend to store and process data within the UK.
When data is stored or processed outside of the UK or EEA, it is transferred or provided to the clients storage following legal requirements.
We protect your personal information:
- to protect data against accidental loss
- to prevent unauthorised access, use, destruction or disclosure
- to ensure business continuity and disaster recovery
- to restrict access to personal information
- to conduct privacy impact assessments in accordance with the law and your business policies
- to train staff and contractors on data security
- to manage third party risks, through use of contracts and security reviews
We keep your information for while it is in use, and then no more than 3 years following. We will then dispose your
information by deleting this from our secure storage.
For user log in’s for clients customized platforms (thewaywe.work, Reflow and RE), data may be deleted sooner.
Your data protection rights
Under data protection law, you have rights including:
Your right of access - You have the right to ask us for copies of your personal information.
Your right to rectification - You have the right to ask us to rectify information you think is inaccurate.
You also have the right to ask us to complete information you think is incomplete.
Your right to erasure - You have the right to ask us to erase your personal information
in certain circumstances.
Your right to restriction of processing - You have the right to ask us to
restrict the processing of your information in certain circumstances.
Your right to object to processing - You have the the right to object to
the processing of your personal data in certain circumstances.
Your right to data portability - You have the right to ask that we transfer
the information you gave us to another organisation, or to you, in certain circumstances.
For any data protection enquiries, please first contact us via
Cookies and tracking
(WayWeWork, Reflow and RE), session cookies are used only for legitimising users and load balancing cookies
to ensure your page loads quickly. For sites where user login is required - your company or the company giving
you access, takes responsibility for GDPR requirements.
How to complain
For any data protection enquiries, please first contact us via:
You can also complain to the ICO if you are unhappy with how we have used your data. The ICO’s address:
Information Commissioner’s Office
Helpline number: 0303 123 1113
Come and say hello!