Privacy policy
1. Introduction
The Boldyn Networks Group of companies (“Boldyn”, “we”, “our”) are committed to protecting your privacy and Processing your Personal Data fairly and lawfully.
This General Privacy Notice (“Privacy Notice”) applies to:
- Our current or potential customers, suppliers and vendors and their representatives;
- Visitors to our offices, Base Station Hotels (BSH) and Network Operations Center (NOC) locations;
- Users of our mobile applications, other than where those applications have their own privacy notice which applies in such circumstances; and
- Visitors to our website or social media platforms that reference this Privacy Notice, in each instance referred to as “you”.
If you are a job applicant, former or current employee, contractor, or officer/director (“Boldyn Staff”), or an emergency contact or dependent of Boldyn Staff, please contact us using the details under “Contact Us” below to obtain a copy of the Privacy Notice that is relevant to you.
In the course of our business, we may need to Process your Personal Data and this Privacy Notice details what information is collected, how it is Processed, how long it is stored for, the purpose of Processing Personal Data and with whom it may be shared. We also advise how you may request access to your Personal Data and how to make a complaint.
The data controller in relation to the Processing activities described below is:
- the Boldyn company your company contracts with or visits; or
- Boldyn Networks Group Limited for users of our mobile applications (other than where those applications have their own privacy notice) and our website the data controller in relation to the Processing activities described below.
This means that we determine the purposes for which and the means by which your Personal Data is Processed. Where Processing of Personal Data is undertaken by other Boldyn Networks Group companies for their own independent purposes, such companies may also be controllers of your Personal Data. This Privacy Notice is provided on behalf of each relevant Boldyn company. If you have any questions about this statement or our privacy practices, please contact our privacy team by emailing privacy@boldyn.com.
This Privacy Notice does not form part of any contract for services, unless otherwise specified in such contract. We may amend parts of this Privacy Notice from time to time in order to maintain our compliance with applicable laws and regulations or following an update to our internal practices. Any changes will be notified to you by posting an updated version on our website. Therefore, please ensure that you regularly check this Privacy Notice, so you are fully aware of any changes or updates.
2. Definitions
Personal Data is data by which a living person can be identified directly or indirectly. Personal Data may include a name, personal email address, phone number, credit card number, bank details, health care details or date of birth. Where a piece of data that can’t be used to identify an individual on its own, is combined with other data held and is then able to identify an individual then all of that data is Personal Data.
Process/Processing encompasses almost any handling or use of Personal Data, including (but not limited to) collection, recording, organization, modification, transfer, storage, and deletion.
3. When we collect Personal Data
We may collect Personal Data directly from you when you:
- Make an enquiry or contact us during the ordinary course of business such as by online enquiry, email phone or by letter;
- Purchase or request products or services from us;
- Use our website (including automatically via technology such as cookies);
- Use our mobile applications;
- Interact with our social media accounts, e.g., via Facebook, LinkedIn or Twitter;
- Notify us of a data breach, exercise your privacy rights or make a complaint; and
- Complete any surveys we contact you about.
4. Types of Personal Data we collect about you
We typically Process the following types of Personal Data about you:
- Personal details, including name, surnames, home address, personal email address and personal phone number, home contact details, emergency contact details, country of residence;
- Professional details, including your work email address, your role, industry, location, position and/or job title within your employment, and other work contact details;
- Details of your visits to our premises and to systems, software, websites, and applications including access and location data, CCTV footage and communications data; and
- Details of transactions you carry out with us in the course of business or through our website.
We make every effort to maintain the accuracy and completeness of your Personal Data which we store and will promptly update your Personal Data when you notify us of changes. We will not be responsible for any losses arising from any inaccurate, inauthentic, deficient, or incomplete Personal Data that you provide to us.
5. How we lawfully Process your Personal Data
We will only Process your Personal Data where we have a lawful basis for doing so, such as where:
- You have given your consent to such Processing. Please see the Marketing section (section 13) below in this Privacy Notice. You may withdraw your consent for us to use your Personal Data at any time. Please see section 10 on withdrawing your consent for further details;
- The Processing is necessary for the performance of a contract to provide our services such as when we are providing you with any of our products and services;
- The Processing is necessary for compliance with our legal obligations, such as:
- To keep certain financial records for compliance with accounting and tax rules; and
- To comply with a request from you in connection with the exercise of your rights; or
- The Processing is necessary for our legitimate commercial interests or those of any third-party recipients that receive your Personal Data, such as:
- Operating and maintaining contracts with our suppliers and service recipients; and
- For the establishment and defense of our legal rights.
6. How we use Personal Data
We will Process the following categories of Personal Data in connection with the management of our relationship with you, for the following purposes and legal bases:
7. Who we might share your Personal Data with
We do not and will not sell, license or trade your Personal Data. We will only disclose your Personal Data in the ways set out in this Privacy Notice and, in particular, to the following recipients:
- To any of our Boldyn Networks Companies (in accordance with our Intra-Group Data Processing Agreement or any other relevant intra-company policies and procedures);
- To our third-party service providers, agents, subcontractors and other organisations for the purposes of providing services to us or directly to you on our behalf (for example cloud services providers, hosting, email and content providers, administrative services providers, and if you have given your consent to this, marketing agencies and/or providers of website analytics services;
- To any third-party to whom we assign or novate any of our rights or obligations;
- To any prospective buyer in the event we sell any part of our business or assets; and/or
- To any government, regulatory agency, enforcement or exchange body or court where we are required to do so by applicable law or regulation or at their request.
When we use third-party service providers, we only disclose to them any Personal Data that is necessary for them to provide their service and we have a contract in place that requires them to keep your information secure and do not use it other than in accordance with our specific instructions.
When you visit our websites, with your consent, we may set certain cookies (please click the image of a cookie for more information). When you have agreed to set analytics cookies, we share certain data with Google which they may use to improve their products and services – please see Privacy Policy – Privacy & Terms – Google; where you have agreed to set advertising cookies, we share certain data with LinkedIn which allows LinkedIn to better target adverts – please see the LinkedIn Privacy Policy.
8. How we protect your Personal Data
We are committed to safeguarding and protecting your Personal Data and we have implemented and maintained appropriate technical and organizational measures to ensure a level of security appropriate to protect any Personal Data provided by you to us from accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data transmitted, stored, or otherwise Processed.
If you have any questions about the security of your personal information, you can contact us via the contact details set out in section 15 below.
9. How we protect your Personal Data if we send it overseas
From time to time your Personal Data may be transferred to other Boldyn companies to Process for the purposes described in this Privacy Notice (for example, to provide a service requiring the coordination of our staff from international offices). Some of these companies are located outside of the UK or EEA, for example, certain individuals are employed by Boldyn companies in the US.
Personal Data will also be transferred to third parties (e.g., service providers) who may have systems or suppliers located outside of the UK or EEA.
Accordingly, the Personal Data we collect may be transferred to (including accessed or stored in) a country or territory outside of the UK or EEA, including to countries whose laws may not offer the same level of protection of Personal Data as are enjoyed within the UK or EEA, such as the US.
We will ensure that any such international transfers are made subject to appropriate or suitable safeguards as required by applicable data protection law, in particular the Standard Contractual Clauses approved by the European Commission, with the UK addendum thereto as appropriate, and supplemented by additional contractual, organizational and security measures as necessary.
Copies of the relevant safeguard documents are available by contacting us at the details provided in section 15 below. Please note that any data transfer agreement made available to you may be redacted for reasons of commercial sensitivity.
10. Your rights in relation to the Personal Data we collect
Under certain circumstances and subject to applicable laws, you have various rights regarding your Personal Data, which may include:
a) Right to access: You have the right to obtain the confirmation of the existence or non-existence of the Processing of your Personal Data and receive copies of such Personal Data.
b) Right to rectify: You have the right to request that we rectify inaccuracies in your Personal Data or complete it.
c) Right to erasure: You can ask us to delete your Personal Data in the following cases:
a. When it is no longer necessary for the purposes for which it was collected;
b. You have revoked your consent;
c. Following the exercise of your right to object;
d. You Personal Data has been Processed unlawfully; or
e. To comply with a legal obligation.
We are not obliged to comply with your request for erasure of your Personal Data, in particular if its Processing is necessary for compliance with a legal obligation or for the establishment, exercise or defense of legal claims.
d) Right to restrict: You may ask us to restrict the Processing of your Personal Data (i.e., to retain it without using it) when:
a. its accuracy is disputed;
b. its Processing is unlawful, but you do not want it deleted;
c. it is still necessary for the establishment, exercise or defense of legal claims;
d. we verify the existence of compelling reasons in connection with the exercise of your right to object.
We may continue to use your Personal Data following a request for restriction (i) with your consent, or (ii) for the establishment, exercise, or defense of legal claims; or (iii) to protect the rights of any other natural or legal person.
e) Right to portability: You may ask us to provide you with your Personal Data in a structured, commonly used, and machine-readable format, or you may request that it be transmitted directly to another controller, but only if the Processing is based on your consent or the performance of a contract with you and the Processing is automated.
f) Right to withdraw your consent: You can withdraw your consent to Process your Personal Data at any time, if the Processing is based on your consent, without affecting the lawfulness of the Processing based on your consent and carried out prior to your withdrawal of consent. If you would like to withdraw your consent to receiving any direct marketing to which you previously opted-in, you can do so using the unsubscribe tool in that communication (if it is an email), or by contacting us via the contact details in section 15 below. If you have provided consent for your details to be shared with a third party, and wish to withdraw this consent, please also contact the relevant third party in order to amend your preferences.
g) Right to object: Where we are relying upon legitimate interest to Process Personal Data, then you have the right to object to that Processing. In such case, we must stope that Processing unless we can either demonstrate legitimate grounds for the Processing that override your interests, rights, and freedoms or where we need to Process your Personal Data for the establishment, exercise, or defense of legal claims. You also have the right to object to receiving any direct marketing to which you previously opted in.
You can exercise your rights by contacting us using the details set out in section 15 below. We endeavor to respond to such requests promptly, although we reserve the right to extend this period for complex requests, in accordance with applicable law.
In any of the situations listed above, in case of doubt about your identity, we may request that you prove your identity by providing us with a copy of a valid means of identification in order for us to comply with our security obligations and to prevent unauthorized disclosure of data.
11. How long we hold your Personal Data for
We will only retain your Personal Data for as long as necessary to fulfill the purpose for which it was collected or to comply with legal, regulatory, or internal policy requirements.
Further information about retention periods can be obtained by contacting us using the details in section 15 below.
12. Links to other websites
We may provide links to other websites operated by third parties. We make no representations or warranties in relation to the privacy practices of any third-party website, and we are not responsible for the privacy policies or the content of any third-party website. If you visit these websites, they will be governed by their own terms of use (including privacy policies).
13. Our Marketing
We may Process your preferences to receive marketing information directly from us by email and text in the following way:
- If you place an order with us for a product or service, we may contact you with marketing information in the ways mentioned in the notices presented to you as part of that transaction, except where you indicate you would prefer otherwise.
- If you do not complete a purchase and have not indicated that you would prefer otherwise, we may remind you by phone or email about your incomplete purchase.
- From time to time, we may ask you to refresh your marketing preferences by asking you to confirm that you want to continue receiving marketing information from us.
- We may contact you with marketing information by post and telephone by using your Personal Data or with targeted advertising delivered online through social media and platforms operated by other companies using their profiling tools or use your Personal Data to tailor marketing to improve its relevance to you unless you object.
You can amend your marketing preferences at any time by contacting us via the contact details in section 15 below.
14. Third Party Marketing
We will only share your Personal Data with our third-party partners for them to contact you directly with marketing information about their products and services where you have indicated to us that you would like us to do so.
Once shared, the relevant third party’s privacy policy will apply to their Processing of your Personal Data, not ours. If you’d like to opt out of receiving marketing from a third party after providing your consent, you can do so at any time by contacting the relevant third party directly.
You have the right to opt out of our use of your Personal Data to provide marketing to you in any of the ways mentioned in this Privacy Notice. Please also see section 10 on withdrawing your consent and on objecting to our use of your Personal Data and automated decisions made about you.
15. How you can contact us
If you have any queries about the contents of this Privacy Notice, or wish to inform us of a change or correction to your Personal Data, would like a copy of the Personal Data we collect on you or would like to raise a complaint or comment, please contact us using the details set out through the link below:
16. Complaint process
We would like to be able to resolve all your concerns, and we hope that we can do so. Where we have not been able to do this, you have the right to contact the appropriate data protection regulator if you consider that we have breached your data protection rights.
The contact details of the appropriate data protection regulators can be found here.
US campus and higher-ed privacy policy
1. Purpose
To provide information to students and other users about how we collect and use Personal Data on behalf of our campus customers. When we use the term “Personal Data,” we are referring to any data that identifies, or can be used to identify, a real person.
2. Statement
Your privacy and trust are important to us. This Campus and Higher-Ed Wi-Fi Privacy Policy (“Policy”) provides important information about how Boldyn Networks Higher Ed LLC (“we”, “us”, “our”, ‘Boldyn Networks”) process your Personal Data on behalf of our customers.
If you have any questions about how your Personal Data is used, please review your campus’ privacy policy or contact your campus for further information. California residents, please see the Additional Information for California Residents section below for more information.
This Policy may change from time to time so please check this page occasionally to ensure that you have the most recent policy and are aware of any changes.
3. Scope
This Policy applies to the Personal Data we collect as the operator of the Wi-Fi network and related services on behalf of college and university campuses (the “Services”). We operate the Services as a processor or service provider to your college or university (our customer). Our customer decides why and how your Personal Data is processed, and we handle that information under its instructions to deliver and support your network access. We do not use your data for our own purposes or share it except as the customer directs, or as permitted by applicable law.
4. Related documents
Users of our main website can view our general website privacy policy here – https://www.boldyn.com/us/privacy-policy.
5. How we collect personal data
We collect Personal Data directly from you, from third-party sources, and automatically through your use of the Services. To the extent permitted by applicable law, we may combine the Personal Data we collect from publicly available or third-party sources. The Personal Data we collect varies depending upon your use of our Services and our interactions with you.
We may collect Personal Data directly from you when you:
- Create an account to use the Services;
- Make an enquiry or contact us during the ordinary course of business, such as to request assistance or troubleshooting or via live chat;
- Complete surveys we may send.
We may collect Personal Data from third parties such as your campus, other users, or data analytics providers.
We may collect Personal Data automatically when you use the Service, such as from your device(s) when you connect to the campus Wi-Fi network.
6. Types of personal data we collect about you
We typically Process the following types of Personal Data about you:
Directly:
- Name, email address (including student and personal email address), student ID number, phone number, account credentials.
- Campus, college, university, or other institution with which you are affiliated.
- Details of your enquiries, support ticket requests, etc.
- Survey responses.
- Device location may be ascertained.
- Any other Personal Data you choose to provide to us as part of your use of the Services.
From third parties:
- Any information about you the campus or a third party service provider or subcontractor chooses to provide, or directs others to provide to us.
Automatically:
- Device identifiers (such as MAC address), IP address, operating system, browser type, signal strength, connection timestamps, location, session duration, data volume transferred, traffic data, usage data, port and protocol information, error codes, log data, threat detections.
7. How we use your personal data
- We may collect, use, disclose and otherwise process Personal Data for the following purposes (depending on our customers’ instructions):
- Providing and maintaining the Services, including account management and authorization, network traffic routing, access point management, and dynamic IP assignment.
- Ensuring network performance and reliability, including bandwidth management.
- Protecting the security and integrity of the Service, including detecting and addressing malicious or unauthorized traffic, illegal activity, or policy violations.
- Enforcing our customers’ policies.
- Protecting and ensuring the security of other users.
- Responding to requests for assistance from our customer or law enforcement.
- Troubleshooting and handling support requests.
- Complying with legal obligations, such as responding to subpoenas, warrants, court orders, or other legal process, or as part of an investigation or request, whether formal or information, from our customer, law enforcement, or a governmental authority.
- Complying with contractual obligations.
- Enforcing our rights and those of our customers and others.
- Generating aggregate or deidentified analytics to maintain and improve the Services.
- Assessing and implementing mergers, acquisitions, reorganizations, bankruptcies, and other business transactions.
- Administering our accounting, auditing, compliance, and legal functions.
8. Who might we share your personal data with?
- We may disclose the Personal Data we collect for the purposes described above and as follows:
- To your campus, college, or university, or to third parties as directed by them.
- To any of our affiliates.
- To our service providers, agents, subcontractors and other organizations for the purposes of providing the Services (for example cloud services providers, hosting, live chat, email and content providers, and administrative services providers).
- To any third party to whom we assign or novate any of our rights or obligations.
- To any prospective buyer in the event we sell any part of our business or assets.
- To any law enforcement, government, regulatory agency, or court where we are required to do so by applicable law or at their request.
9. How we protect your personal data
We have implemented safeguards intended to protect Personal Data from loss, misuse, unauthorized access, disclosure, alteration, or destruction. Please be aware that despite our efforts, no data security measures can guarantee security.
10. Your privacy choices
Depending on your state of residence, you may have certain rights regarding your Personal Data. Please reach out to your campus’ privacy office or designated contact to exercise these rights. As a service provider / processor to your campus, we will only be able to assist you with exercising your rights at the direction of your campus. You may, however, review and update some of your Personal Data by logging into your account and changing your information or settings.
Note that our website and Service currently does not respond to “Do Not Track” signals.
11. Additional information for California residents
Under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the “CCPA”), we act as a service provider to your college or university. This means we handle your Personal Data only for the limited purposes as directed by our customer, and we do not “sell” or “share” your Personal Data as defined under the CCPA.
California residents have the right to:
Know/access - request:
- the categories or Personal Data we collected;
- the categories of sources from which the Personal Data is collected;
- our business or commercial purposes for collecting, selling, or sharing Personal Data; the categories of third parties to whom we have disclosed Personal Data; and
- a copy of the specific pieces of Personal Data we have collected about you.
- Delete – ask that Personal Data be erased, subject to statutory exceptions.
- Correct – request rectification of inaccurate Personal Data.
- Opt-out of “sales” and “sharing.
- Limit – restrict the use and disclosure of certain sensitive Personal Data, if collected.
- Non-discrimination – receive equal service and price even if you exercise a CCPA right.
Because we are a service provider, we cannot act on your request directly unless your campus authorizes us to do so. Please send any CCPA privacy rights requests to your campus’s privacy office or designated contact. We will support the campus by fulfilling or facilitating your request in accordance with our agreement and the CCPA.
12. How long will we hold your personal data for?
We will retain your Personal Data for as long as necessary to fulfill our agreements with our customers, or to comply with legal, regulatory or internal policy requirements.
13. Links to other websites
We may provide links to other websites operated by third parties. We make no representations or warranties in relation to the privacy practices of any third-party website, and we are not responsible for the privacy policies or the content of any third-party website. If you visit these websites, they will be governed by their own terms of use (including privacy policies).
14. Children's privacy
Our Services are not designed for children, and we do not knowingly collect Personal Data from children under 13. If you are a parent or legal guardian and you believe we have collected your child’s information in violation of applicable law, please contact us using the contact information in the How you Can Contact Us section below.
15. How we update or change this privacy policy
We may update this Policy to comply with laws or reflect changes in our practices. Any updates will be posted on our website, so please check this page regularly for the latest version.
16. How you can contact us
If you have any questions or concerns regarding this Policy or our privacy practices, you may contact us at:
Boldyn Networks Higher Ed LLC
17th Floor, 1400 Broadway, New York, NY 10018