Who we are and how to contact us

Who we are

Unmind Ltd is the Controller (for the purposes of the GDPR) of your Personal Data (referred to as either “Unmind”, “we”, “us” or “our” in this Privacy Policy). Our address is: 180 Borough High Street, London, England, SE1 1LB


How to contact us


You can contact us by emailing: privacy@unmind.com.


Our Data Protection Officer


The GDPR requires us to appoint a “Data Protection Officer”, this is a person who is responsible for overseeing and advising us in relation to our compliance with the GDPR (including compliance with the practices described in this Privacy Policy). If you want to contact our Data Protection Officer directly, you can email: privacy@unmind.com.

Category of personal data collected


Identity Data


Contact Data

Marketing and Communications Data

Behavioural Data




Technical Data



User-Generated Data


What it means


First name, Last Name, email, location, department/team, employee number (or similar identifier provided by an employer if required), gender, and date of birth.

Email address, telephone number.

Your preferences in receiving marketing from us and your communication preferences.

Inferred or assumed information relating to your behaviour and interests, based on your online activity. This is most often collated and grouped into “segments” (e.g., there may be a segment for women, living in London and aged under 25, who like mindfulness).

Internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website or use our services.

Personal Data you may include in your user-generated content (i.e. information and content that you submit to the Site), for instance when you fill in the comments box of the “Check-In” form, when you send a praise to someone and personalise the message, or in the dialog with Zeno (our “chatbot” designed to guide you through the Site and answer your questions).

Purpose


Account Creation




Site Operation






Unmind Content Recommendation










Praise



Surveys












Aggregation for Research & Development purposes









Aggregation for affiliated or associated organisations (e.g. employers, academic institutions, governing bodies)





Fraud Prevention






Troubleshooting






Marketing



Categories of personal data involved


• Identity Data
• Contact Data



• Identity Data
• Contact Data
• Behavioural Data
• User-Generated Data


• Identity Data
• Contact Data
• User-Generated Data








• Identity Data
• Contact Data


• Identity Data
• Contact Data
• User-Generated Data









• Identity Data
• Contact Data
• User-Generated Data









• Identity Data
• Contact Data
• User-Generated Data









• Identity Data
• Technical Data
• Contact Data




• Technical Data






• Identity Data
• Contact Data
• Marketing and Communications Data

Why do we do this


To register you as a new user.




To provide you with the services offered on our Site (including technical support services), such as for example, “Insights” (helping you to track your wellbeing).



We do this through a smart recommendation engine, to provide you with recommended content from our Site, based on your profile, use of the Site and Unmind Index.







To send you your colleagues’ praises.



To complete surveys and obtain data for research purposes and in an anonymised format (although you do not have to respond to such surveys).









In an anonymised format, to develop the Unmind offering, to create and distribute white papers, to conduct and publish research, and to share the data with health professionals and academics to improve Unmind and other services relating to mental wellbeing.






In an anonymised, aggregated format to demonstrate the average wellbeing of different populations, to identify usage patterns across and between sub-groups locations, to extrapolate whether use of the Site is more beneficial for some audiences compared to others. These aggregated reports do not contain Personal Data related to your Unmind account or any personally identifiable User Generated Data.


To keep our website, our services and associated systems operational and secure.





To track issues that might be occurring on our systems.





To form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which services and offers may be relevant for you.

Our legal basis for this use of data


Contractual Necessity.




Contractual Necessity, save to the extent your User Generated Data contains Special Categories of Personal Data, in which case we rely on the Healthcare Ground.



Legitimate Interests.
We have a legitimate interest in ensuring that your experience on our Site is as tailored to your specific needs as possible so that the content you view in priority on our Site is most likely to be helpful to you.

To the extent your User Generated Data contains Special Categories of Personal Data, we rely on the Healthcare Ground.


Contractual Necessity.



Legitimate Interests.
We have a legitimate interest in understanding our end-users to develop the Unmind offering, to publish white papers and to share the data with health professionals and researchers.

To the extent your User Generated Data and data provided in surveys contains Special Categories of Personal Data, we rely on the Healthcare Ground.


Legitimate Interests.
We have a legitimate interest in understanding our end-users to develop the Unmind offering, to publish white papers and to share the data with health professionals and researchers.

To the extent your User Generated Data and data provided in surveys contains Special Categories of Personal Data, we rely on the Healthcare Ground.


Legitimate Interests.
We have a legitimate interest in understanding our end-users to develop the Unmind offering, to publish white papers and to share this anonymous data with health professionals and researchers.

To the extent your User Generated Data contains Special Categories of Personal Data, we rely on the Research Ground.



Legitimate Interests.
We have a legitimate interest in ensuring the ongoing security and proper operation of our services, website and associated IT services and networks.


Legitimate Interests.
It is in our legitimate interests that we are able to monitor and ensure the proper operation of our Sites and associated systems and services.


Consent (and to the extent the processing of your data for marketing Purposes includes Special Categories of Personal Data, we rely on your Explicit Consent).

Third party data source


Your Employer(s), academic institution(s), governing bodies


Analytics Providers



The provisioner of your “guest” account (where your Site access has been granted by a friend, family member, or peer)

Publicly available?


No



No



No

Categories or other types of personal data received


• Identity Data
• Contact Data


• Behavioural Data
• Technical Data


• Contact Data


Type of cookie


Your Employer(s) academic institutions, governing bodies

Functionality Cookies



Analytics and Performance Cookies


Purpose


These cookies are essential to provide you with services available through our Site and to enable you to use some of its features. For example, they allow you to log in to secure areas of our Site and help the content of the pages you request to load quickly. Without these cookies, the services that you have asked for cannot be provided, and we only use these cookies to provide you with those services.

These cookies allow our Site to remember choices you make when you use our Site, such as remembering your login details and remembering the changes you make to other parts of our Site which you can customise. The purpose of these cookies is to provide you with a more personal experience and to avoid you having to re-enter your preferences every time you visit our Site.

These cookies are used to collect information about traffic to our Site and how users use our Site. The information gathered via these cookies does not “directly” identify any individual visitor. However, it may render such visitors “indirectly identifiable”. This is because the information collected is typically linked to a pseudonymous identifier associated with the device you use to access our Site.  The information collected is aggregated and anonymous. It includes the number of visitors to our Site, the websites that referred them to our Site, the pages they visited on our Site, what time of day they visited our Site, whether they have visited our Site before, and other similar information. We use this information to help operate our Site more efficiently, to gather broad demographic information and to monitor the level of activity on our Site.

We use Google Analytics for this purpose. Google Analytics uses its own cookies. It is only used to improve how our Site works. You can find out more information about Google Analytics cookies here: https://developers.google.com/analytics/resources/concepts/gaConceptsCookies

You can find out more about how Google protects your data here: www.google.com/analytics/learn/privacy.html.

Recipients


Service Providers







Professional advisers



HM Revenue & Customs, regulators and other authorities


The provisioner of your“guest” account (where your Site access has been granted by a friend, family member, or peer)


Category(ies) of Personal Data we share


• Identity Data
• Contact Data
• Technical Data
• Behavioural Data
• User Generated Data
• Marketing and Communications Data

• Identity Data
• Contact Data


• Identity Data
• Contact Data


• Contact Data
• Technical Data



Why we share it


Our service providers provide us with IT and system administration services.






Our lawyers, bankers, auditors and insurers provide consultancy, banking, legal, insurance and accounting services.


Authorities may require reporting of processing activities in certain circumstances


To maintain and validate your “guest” account access we may need to inform the provisioning account holder of any changes you make to your primary email alias or if your account is deleted for any reason.

Category of Personal Data


• Behavioural Data


• Marketing and Communications Data
• Technical Data


• Contact Data
• Identity Data


• User-Generated Data

Retention period


Two months from the date on which we collected or received it.


For so long as you have anAccount with Unmind or our Site(s).




For so long as retention is necessary to fulfil the Purposes/Use for which it is used.



For so long as you have an Account with Unmind or our Site(s).