Privacy Notice

This privacy notice explains how InXpress collects, uses, shares and safeguards Personal Data (information that allows InXpress to identify or contact you) and Non-Personal Data (information that does not directly identify you as you interact with the Sites) on www.inxpress.com, the customer interface Webship, mobile applications, customer information on our proprietary software XMS and any other digital services and platforms officially operated or used by InXpress from time to time (“Sites”) as well as by phone or by paper.  It will notify you of the following:

1.What personally identifiable information is collected from you through the Sites, how it is used and with whom it may be shared.

2.What choices are available to you regarding the use of your data.

3.The security procedures in place to protect the misuse of your information.

4.How you can correct any inaccuracies in the information.

Registration

In order to use the Sites a user must first complete the registration form that include terms and conditions and incorporate our policies and safeguards around personally identifiable information.  This provides the assurances and protection on any personally identifiable information, irrespective of the source and owner. During registration a user is required to give certain information (such as name and email address). This information is used to contact you about the products/services on the Sites in which you have expressed interest. At your option, you may also provide demographic information (such as gender or age) about yourself, but it is not required.

Information Collection, Use, and Sharing

Whether in our role as a data controller or processor depending on the nature and source of the data we only have access to/collect information that you voluntarily give us via email or other direct contact from you for the purpose of fulfilling our contractual and legal obligations with you.  In the case of shipping customers and the collection of data in relation to fulfilling shipments such as sender and receiver details we apply the same data and security policies to all data irrespective of the data ownership and whether we have a specific individual contract with the subject of the data. We will not sell or rent this information to anyone.

We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request, e.g. to ship an order.  We ensure that any party with whom we share personal data, such as carriers for the purpose of fulfilling orders that all data processors comply and adhere to our data and security policies and with all relevant and applicable data legislation.

Your rights

Unless you ask us not to, we may contact you via email in the future to tell you about specials, new products or services, or changes to this privacy policy. You may elect to stop receiving our marketing emails by following the unsubscribe instructions included in such emails.

We send notification emails relating to specific shipments when it is necessary to do so.

Orders

We request information from you on our order form. To buy from us and use our shipping solutions, you must provide personally identifiable information  (like name, shipping addresses, email addresses, phone numbers, purchase details from e-commerce integration, and digital fingerprint information for both the sender and recipient) and financial information (like credit card number, expiration date). This information is used exclusively for billing purposes and to fulfill your orders and shipping requirements. If we have trouble processing an order, we’ll use this information to contact you.

Email / IP Addresses

We hate spam and assume you do also. We won’t sell your email address or give your IP Address to anyone for any other purpose. We use IP addresses internally to maintain system security, analyze trends, manage our product and services and gather aggregated data for analysis. We will also use your email and information to communicate with you in conjunction with services we offer.

Your Access to and Control Over Information

You may opt out of any future contacts from us at any time. You can do the following at any time by contacting us via the email address or phone number given on our website:

– See what data we have about you, if any.
– Change/correct any data we have about you.
– Have us delete any data we have about you.
– Express any concern you have about our use of your data.

If you are under 16 years of age

If you’re under the age of 16, you may not have an account on the Service. We do not knowingly collect information from or direct any of our content specifically to children under 16. If we learn or have reason to suspect that you are a user who is under the age of 16, we will unfortunately have to close your account. Please see the Agreement for information about account termination.

Cookies

We use “cookies” on this site. A cookie is a piece of data stored on a site visitor’s hard drive to help us improve your access to our site and identify repeat visitors to our site. For instance, when we use a cookie to identify you, you would not have to log in a password more than once, thereby saving time while on our site. Cookies can also enable us to track and target the interests of our users to enhance the experience on our site. Usage of a cookie is in no way linked to any personally identifiable information on our site.

Sharing

We use reputable and contracted outside shipping companies (such as DHL, DHL Parcel, FedEx, TNT, LSO, Canpar, and UPS) to ship orders, and a credit card processing company to bill users for goods and services. These companies do not retain, share, store or use personally identifiable information for any secondary purposes beyond filling your order.

And/or:

We partner with another party to provide specific services. When the user signs up for these services, we will share names, or other contact information that is necessary for the third party to provide these services. These parties are not allowed to use personally identifiable information except for the purpose of providing these services.

In line with legislation and security best practices we ensure that all third parties adhere to the latest data legislation and have robust security and policies in line with that of InXpress to ensure all obligations and commitments of InXpress and that of our customers and any other data subjects are adhered to and protected, and that individuals’ rights remain fully protected throughout the fulfilment of arranged shipments..

Links

This website contains links to other sites. Please be aware that we are not responsible for the content or privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of any other site that collects personally identifiable information. Please note that if you move to another site not operated by InXpress you may be subject to the privacy policies of these third-party sites.

Surveys & Contests

From time-to-time our site requests information via surveys or contests. Participation in these surveys or contests is completely voluntary and you may choose whether or not to participate and therefore disclose this information. Information requested may include contact information (such as name and shipping address), and demographic information (such as zip code, age level). Contact information will be used to notify the winners and award prizes. Survey information will be used for purposes of monitoring or improving the use and satisfaction of this site.

Security

We take commercially reasonable security precautions to help protect your information. When you submit personal information via the website, your information is protected both online and offline.

Wherever we collect personal information (such as names, addresses, emails, contact numbers, order details, etc), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a lock icon in the address bar and looking for “https” at the beginning of the address of the Web page.

All users and developers of our shipping solutions, administrative systems, code and databases have unique identifiers and passwords.  Our solutions are built with audit trails and identifiers to identify all activity.  The use of generic/shared logins is strictly prohibited.

While we use encryption to protect personal information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment using AES-256 encryption. Our code and server architecture is structured in such a way using AWS to provide the best security protection to our system and databases.  In relation to people with direct access to the databases this is controlled and limited very strictly.  Our firewalls and IP access controls are further areas in which protection is provided.

In addition to the security measures and data protection in place there are policies and tools used to detect intrusion attempts, identify any breaches, and for the use of external security consultants to conduct regular penetration tests.

Our escalation process for the identification and notification of incidents ensure we comply with our legal and contractual obligations.

We restrict access to your Personal Data to certain companies who need the data to operate, develop, or improve the Services.  These individuals or partner organizations are bound by confidentiality obligations and may be subject to discipline, including termination and criminal prosecution, if they fail to meet these obligations.  All such parties have also been checked to ensure the same standard and legal obligations around security and data protection are met. In the event we determine the occurrence of a data security incident, we will notify you by mail, post, telephone or other means as permitted by law.

Access to information

You have the right to access information held about you.

Right to deletion, rectification and data export. We permit you to delete, rectify and export information you have provided to us, subject to the conditions of our Customer Terms and our legal obligations set out below.

Retention. We retain Personal Data for as long as we provide the Services to you or your account remains open. However, we may keep some data after your account is closed or you cease using the Service, for the purposes set out below.

After you have closed your account we may retain Personal Data where reasonably necessary to comply with our legal obligations (including law enforcement requests), meet regulatory requirements, maintain security, prevent fraud and abuse, resolve disputes, enforce our Customer Terms, offer new features you may be interested in, or fulfil your request to “unsubscribe” from further messages from us. If none of these obligations apply we will delete Personal Data upon your written request.  We will retain Non-Personal Data after your account has been closed.

Amazon Customer Data

Please note in relation to Amazon customer personally identifiable information data transmitted using the Amazon API we ensure that all aspects of the Amazon Data Protection Policy are met.  This includes the removal (deleted completely) of all Amazon customer personally identifiable information from our system within 30 days of order shipment. In addition to InXpress removing personal data from our system, the shipping companies we use also provide the facility for customers to request the removal of any personally identifiable data from their systems.

Applicable Data Protection Law

For the purpose of the General Data Protection Regulation (EU) 2016/679, the data controller is InXpress Global Ltd.

Where we store your Personal Data for EU Customers only

The Personal Data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff may be engaged in, among other things, the provision of support services. By submitting your Personal Data, you agree to this transfer, storing or processing outside of the EEA. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.

We always ensure that your information is only transferred in full accordance with UK data protection laws and/or applicable EU data protection law. In particular, this means that your information will only be transferred to a country that provides an adequate level of protection (for example, because the European Commission has determined that a country provides an adequate level of protection) or the recipient is bound by standard contractual clause according to conditions provided by the European Commission (“EU Model Clauses”). You are responsible for checking the privacy policy of any third-party websites we link to.

Our Service is accessible via the Internet and may potentially be accessed by any user around the world. Other users may access the Service from outside the EEA. This means that where you chose to upload your data to the Service, it could be accessed from anywhere around the world and therefore a transfer of your data outside of the EEA may be deemed to have occurred. You consent to such transfer of your data for and by way of this purpose.

Where we have given you (or where you have chosen) a password which enables you to access certain parts of the Service, you are responsible for keeping this password confidential. We ask you not to share any password with anyone.

Unfortunately, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your Personal Data, we cannot guarantee the security of your data transmitted to our Service; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.

The Service may contain links to and from third party websites of our partners, networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and we do not accept any responsibility or liability for the privacy practices or content of these websites.

Complaints: If you have any complaints about our use of your information please contact us as set out at the end of this Privacy Policy or contact the UK supervisory authority – The Information Commissioner’s Office (“ICO”).

This Privacy Policy will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this website.

We reserve the right to update or change our Privacy Policy at any time and you should check this Privacy Policy periodically. Your continued use of the Service after we post any modifications to the Privacy Policy on this page will constitute your acknowledgment of the modifications and your consent to abide and be bound by the modified Privacy Policy.

If we make any material changes to this Privacy Policy, we will notify you either through the email address you have provided us, or by placing a prominent notice on our website.

If you feel that we are not abiding by this privacy policy, you should contact us immediately.

If you have any questions, comments, or complaints concerning our privacy practices or if you wish to change, access, or remove your Personal Data please contact us as indicated below.

InXpress Global Ltd
5 Blueberry Business Park, Wallhead Road, Rochdale, OL16 5DB United Kingdom
Tel: 0800 195 2125
www.inxpress.com