Please feel free to get in touch with our security team if you have any queries.
Opus 2 International Limited and its affiliates ("We") are committed to protecting and respecting your privacy.
This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting https://opus2.com you are accepting and consenting to the practices described in this policy.
For the purpose of the Data Protection Act 1988 (the “Act”), the data controller is Opus 2 International Limited of 5 New Street Square, London EC4A 3BF.
INFORMATION WE COLLECT FROM YOU
We will collect and process the following data about you:
- Information you give us. This is information about you that you give us by filling in forms on our site https://opus2.com (our site) or by corresponding with us by phone, e-mail or otherwise. It includes information you provide when you register to use our site, subscribe to our service, make an enquiry about our products or services, and when you report a problem with our site. The information you give us may include your name, address, e-mail address and phone number, personal description and photograph.
- Information we collect about you. With regard to each of your visits to our site we will automatically collect the following information:
- technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions and operating system and platform;
- information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through and from our site (including date and time), products you viewed or searched for' page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page, and any phone number used to call our customer service number.
USES MADE OF THE INFORMATION
We use information held about you in the following ways:
- Information you give to us. We will use this information:
- to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
- to provide you with information about other goods and services we offer that are similar to those that you have already purchased or enquired about;
- to provide you, or permit selected third parties to provide you, with information about goods or services we feel may interest you. If you are an existing customer, we will only contact you by electronic means (e-mail or SMS) with information about goods and services similar to those which were the subject of a previous sale or negotiations of a sale to you;
- to notify you about changes to our service;
- to ensure that content from our site is presented in the most effective manner for you and for your computer.
- Information we collect about you. We will use this information:
- to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- to improve our site to ensure that content is presented in the most effective manner for you and for your computer;
- to allow you to participate in interactive features of our service, when you choose to do so;
- as part of our efforts to keep our site safe and secure;
- to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;
- to make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them.
WHERE WE STORE YOUR PERSONAL DATA
All information you provide to us is stored on our secure servers. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at email@example.com.
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
ACCESS TO INFORMATION
The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request will be subject to a fee of £10 to meet our costs in providing you with details of the information we hold about you.
In light of the General Data Protection Regulation (GDPR), Opus 2 is fully committed to protecting all personal information it is entrusted with. Honouring that commitment, we continue to assess our systems, processes and practices to ensure that we are in line with all requirements of this new regulation.
Where necessary, Opus 2 will make all changes to support the new regulation. In addition to this focused effort, Opus 2 remains committed to offering our products and services in a secure manner and we actively maintain ISO27001:2013 and Cyber Essentials Plus certifications.
If you have further questions about our GDPR policies or service options that may assist you with your GDPR compliance needs, please liaise with your representative or email firstname.lastname@example.org
Opus 2 maintains ISO27001:2013 and Cyber Security Essentials certification for its own operations. Additionally, our partners hold all industry accepted certifications and accreditations including ISO27001, Uptime Institute Tier III, and SSAE 16.
Opus 2 products are built upon industry standard Web technology. We deploy our solutions on securely designed web services operating solely over TLS encrypted communication channels.
The Information Security team is deeply involved in all areas of development. We aim to test all of our products at all stages of development in line with secure development standards.
The networks supporting Opus 2 products and client services are designed with resiliency in mind. Hosted behind a fault-tolerant array of perimeter devices, our solutions are equipped to thwart external attacks. Continuous and real-time monitoring for anomalous behavior, network intrusions and file integrity takes place across the entire server estate. Opus 2's incident response team is set up to efficiently respond to any security event that may occur.
At Opus 2, protecting your data is a core concern. Leveraging the AWS availability zones we ensure that your data is properly secured and available at all times. Opus 2 employees, who have all passed stringent background checks, provide hands-on process control as and where needed.
Opus 2 clients can choose to suspend or terminate service at any time.
In such an event, we support our clients to export data in a non-proprietary format, perform complete data purging, or provide customized hosting solutions based on your requirements.
Authentication & Encryption:
Opus 2 products require basic two-step authentication during the login process. In addition to a password, the user is required to set a "memorable phrase" out of which random characters are requested during the authentication process. Additional two factor authentication can be enabled if required.
Our internal processes are designed to support the strictest data integrity and data confidentiality use cases, ensuring that our clients are in control of their data at all times.
Full disc encryption is a mandatory requirement for all servers, regardless of physical location.
In parallel with maximising uptime, Opus 2 products leverage industry-leading failover/redundancy methodologies to ensure data is always available. On top of full virtualisation , Opus 2 replicates data in near real time leveraging the redundancy offered by the AWS cloud.
Please feel free to get in touch with our security team if you have any queries.