Privacy Policy

Last Updated on: October 9, 2024

This privacy policy (“Policy”) explains how Krank Limited or any of its affiliates or subsidiaries (hereby collectively referred to as (“Krank”, "Inspeq”, “Heavy Kit” “We”, “Us”, “Our”) Processes Personal Data collected from You.

Capitalised terms not explicitly defined herein shall have the same meaning as ascribed to them in the "Terms of Service" can be found here.

  1. Definitions
    1. “Controller” means the natural or legal person, public authority, agency, or other body which alone or jointly with others, determines the purposes and means of the processing of Personal Data.
    2. “End-User” means any person or entity with whom the Subscriber interacts using the Service(s).
    3. “Personal Data”means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, voice notes, videos, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
    4. “Process”means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
    5. “Service(s)” shall have the meaning ascribed to it in the Terms of Service.
    6. “Subscriber”means the natural or legal person that has subscribed to the Service(s) by agreeing to the Terms & Conditions.
    7. “Websites, Mobile Apps or Platforms” means the websites, mobile apps or platforms that We operate, including the websites at www.krank.com, www.heavykit.com and via the 'Inspeq' App.
    8. “You” and “Your” means an identified or identifiable natural person whose Personal Data We Process as a Controller.
  2. Personal and Legal Basis for Processing.

    We collect and process your Personal Data only when we have legal grounds to do so under applicable laws. Below is a table that outlines how we plan to use your Personal Data and the legal bases for doing so. We have also included our legitimate interests where relevant. Please note that your Personal Data may be processed under multiple legal grounds depending on the specific purpose. If you need more details about the legal basis, we rely on for a specific use of your Personal Data, please contact using the details in clause 10.

  3. Type of Personal Data Purpose of Use / Disclosure Legal Basis for Processing
    When you register as a member with Krank on our Websites, Mobile App or Platform Name, job title, company name, email, and postal address Performance of a contract to which you are a party
    When you express an interest in our services or platform via our Websites, Mobile App or Platform. Name, email address, postal address, telephone number, and sector preferences Consent (if opted-in); Legitimate interest in promoting our business where You have previously expressed an interest in Our products or services (and not opted-out of marketing) You can withdraw your consent to marketing at any time by contacting Us at [email protected] or, where relevant, by following the unsubscribe link in any marketing communication You receive from Us
    Technical information [(e.g. IP address, browser type and version, operating system and platform, device )] when you use our Websites Information about how you use our Websites Consent
    If our business is sold Personal information Legitimate interest in ensuring the continuity of our business
    When you submit web forms or use interactive feature Personal Data submitted via web forms or interactive features Legitimate interest in engaging with you and managing our interactions
    Personal Data collected during inspections Identity data, voice notes and details of any machinery you have sold or purchased via the Inspeq App Performance of a contract to which you are a party;
    Personal Data received indirectly (e.g. sales and marketing intelligence providers) Personal Data from third-party sources, business or channel partners, combined data Legitimate interest in maintaining and enhancing our services
    When you interact with us on Social Media platforms Social media profile information, interaction data, user-generated content, and engagement metrics Legitimate interest in promoting our services and engaging with our audience

    If you have consented to our use of your Personal Data for a specific purpose, you can withdraw your consent at any time; however, this will not affect any processing that has already occurred.

    If we are using your Personal Data based on our or a third party's legitimate interest, you have the right to object, though this may affect your ability to use our services. More information about your rights is provided below.

    Please Note: We do not collect/process any special category of data. The Websites includes social media features and widgets that are either hosted by a third-party or hosted directly on the Websites and Your interaction with these social media features and widgets is governed by the privacy statement of the companies that provide them. You should check Your privacy settings on these third-party services to understand and change the information sent to Us through these Service(s).

  4. Data Sharing
    1. To perform the contract with you and to process your application to register for membership, We share your Personal Data with Our business partners, suppliers and subcontractors who are involved in such process, such as payment providers, credit reference agencies (who we use to assess fraud, credit and/or security risks). We do this to fulfil legal obligations to which we are subject.
    2. We share Personal Data with Our third-party service providers that host and maintain Our Websites, Mobile Apps, Platforms, applications, backup, storage, payment processing, analytics, and other service(s). These third-party service providers may have access to or Process Your Personal Data for the purpose of providing these service(s) to Us. Details of our sub-processors can be found here. (https://krank.com/sub-processors)
    3. We may share Your Personal Data with third-party service providers who assist Us in marketing and promotions in compliance with applicable laws (e.g. sales and marketing intelligence providers).
    4. We may be required to disclose Your Personal Data in response to:
      1. lawful requests by public authorities, including to meet national security or law enforcement requirements and/or
      2. b) subpoenas, court orders, or legal process, or to establish or exercise Our legal rights or defend against legal claims.
    5. We may also share Personal Data with credit reference agencies and fraud prevention agencies to assist investigation and prevention of illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of Our Terms of Service, or as otherwise required by law. Note: Disclosures will be limited to what is necessary and proportionate, in line with data minimization principles.
    6. Please note, we do not and will not sell your Personal Data to any third party for marketing purposes.
    7. We may share your Personal Data with prospective buyers or partners of Our business.
  5. International Transfer

    We mainly Process Personal Data in UK. However, we may transfer Personal Data outside the UK for the purposes referred to in Section 3. We will ensure that the recipient of your Personal Data offers an adequate level of protection that is at least comparable to that which is provided under applicable data protection laws. You can contact Us used the contact details in Clause 10.

  6. Data Retention
    1. Where you are a registered user of Krank, we will retain your Personal Data for as long as the account is active and you have not asked us to delete it, to ensure that we are able to assist you should you have any questions, feedback or issues in connection with your account or if any legal issues arise.
    2. We retain the Personal Data collected where an ongoing legitimate business requires retention of such Personal Data - e.g. where required to comply with Our legal, accounting or regulatory requirements.
    3. In the absence of a need to retain Personal Data under Section 5.2. above, we will either delete it, or isolate it from any further Processing until deletion is possible, in line with our data retention policy, details of which are available on request.
  7. Data Security

    We employ robust technical and organizational measures to protect the Personal Data we collect and process. As an ISO 27001 certified business, we adhere to strict policies and industry best practices to ensure the highest standards of security, providing a level of protection appropriate to the risks associated with processing your Personal Data. You may visit https://krank.com/security to view our security page for more details. If you have any questions or concerns about the security of your Personal Data, please contact us using the contact details listed in clause 10.

  8. Your rights

    You are entitled to the following rights:

    1. You can contact Us to:
      • access Your Personal Data (also known as a "subject access request")
      • correct incomplete or inaccurate data We hold about You
      • request erasure of Your Personal Data;
    2. You can object to the Processing of Your Personal Data, ask Us to restrict processing of Your Personal Data or request portability (also known as a "transfer") of Your Personal Data.
    3. You have the right to opt-out of marketing communications We send You at any time. You can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing emails We send You. To opt-out of other forms of marketing (such as postal marketing or telemarketing), please contact Us using the details listed in clause 10.
    4. Similarly, if We have collected and processed Your Personal Data with Your consent, then You can withdraw your consent at any time. Withdrawing Your consent will not affect the lawfulness of any processing We have conducted prior to Your withdrawal, nor will it affect processing of Your Personal Data conducted in reliance on lawful processing grounds other than consent.
    5. You have the right to lodge a complaint with Us or the Information Commissioner's Office, the supervisory authority for data protection issues in England and Wales. If You are based in the EU you can find your relevant supervisory authority here.
    6. If You seek access to, or wish to correct, update, modify or delete Your Personal Data that We process, please contact Us at the details provided in clause 10. We respond to all requests We receive from individuals wishing to exercise their data protection rights within a reasonable timeframe in accordance with applicable data protection laws.
  9. Privacy of children

    We recognize the importance of children’s safety and privacy. We do not request, or knowingly collect, any Personal Data from children under the age of 18. If a parent or guardian becomes aware that his or her child has provided Us with Personal Data, they should write to us at the email address provided in clause 10.

  10. Notice to end-user and other exclusions
    1. Our Service(s) are intended for use by enterprises. Where the Service(s) are made available to an End-User through a Subscriber, that enterprise is the Controller of the End-User’s Personal Data. In such a case, the End-User’s data privacy questions and requests should be submitted to the Subscriber in its capacity as the End-User’s Controller. If the End-User is an individual who interacts with a Subscriber using Our Service(s), the End-User will be directed to contact Our Subscriber for assistance with any requests or questions relating to their Personal Data. We are not responsible for Subscribers’ privacy or security practices which may be different from this notice. Subscribers to Our Service(s) are solely responsible for establishing policies for and ensuring compliance with all applicable laws and regulations, as well as any and all privacy policies, agreements, or other obligations, relating to the collection of Personal Data in connection with the use of Our Service(s) by End-Users.
    2. Our Websites or Mobile Apps contain links to other websites. Our Policy applies only to our Websites and Mobile Apps, so if You click on a link to another website, You should read their privacy policy. We encourage You to review the privacy statements of any such other websites to understand their Personal Data practices.
  11. Contact Information

    We are “Krank Limited” a private limited company (registered with number 10154742), You may contact us if You have any enquiries or feedback on Our personal data protection policies and procedures, or if You wish to make any request, in the following manner:

    Kind Attention: Privacy Team

    Email Address: [email protected]

    Address: Suite 2, Unit 200 Cambridge Science Park, Milton Road, Cambridge, England, Post Code - CB4 0GZ

  12. Changes to the policy

    We keep this Policy under regular review and may update this webpage at any time. This Policy may be amended at any time, and You shall be notified only if there are material changes to this Policy.