Number Go Up Technologies Privacy Notice
Last Updated: 21-12-2024
Number Go Up Technologies LLC (hereinafter “NGUT”) is committed to protecting your privacy. With this Privacy Notice we explain to you how and why we collect, use, and protect any Personal Data obtained from you when you use our website and Services. NGUT is committed to transparency and compliance related to data protection regulations, which primarily focuses on the General Data Protection Regulation of the European Union (EU) 2016/679 (hereinafter the “GDPR”). This Privacy Notice outlines our data processing practices along with your rights regarding your personal information that is processed by NGUT.
We process your Personal Data for the following purposes during our business activities:
* Improving our Services
* Client relationships
* Business partner relationships
* Marketing
* Recruiting
* Communication
* Legal obligations
* Cookies
1. WHO IS THE CONTROLLER OF YOUR PERSONAL DATA?
The Controller of your Personal Data is Finnish limited liability company with the name of Number Go Up Technologies LLC (Finnish Business ID: 3490835-9), with its primary place of business being at c/o Number Go Up Technologies Oy, Kuusitie 2 B 88, 00270 Helsinki, Finland.
The Controller of your Personal Data can be contacted at info@ngut.eu and +358 46 801 0795.
2. WHAT DEFINITIONS ARE USED IN THIS PRIVACY NOTICE?
Controller is the party that is in charge of the processing activities connected to Personal Data.
Data Subject refers to a human being in accordance with data protection laws.
GDPR is the European General Data Protection Regulation ((EU) 2016/679), which is the primary applicable law that this Privacy Notice is based upon.
Legal Basis for processing means the legal basis with which the Controller processes Personal Data of a Data Subject. The lawfulness of processing is described in Article 6 of the GDPR.
Personal Data means any data directly concerning a Data Subject or any other data by which a Data Subject can be identified with.
Privacy Notice refers to this document, which has been drawn up in accordance with Articles 13 and 14 of the GDPR, through which the Controller (i.e. NGUT) informs the Data Subjects (e.g. you) of the ways their Personal Data is being processed.
Processor means a party that processes Personal Data for and/or on behalf of the Controller.
Purpose for processing means the reason why the Controller processes Personal Data of a Data Subject.
Services refers to the services, features, and functionalities provided by NGUT through its website that are available for purchase or use by clients. These Services are designed to fulfill specific needs as outlined on our website and may be subject to updates and/or improvements.
3. WHY DO WE PROCESS YOUR PERSONAL DATA?
NGUT processes your Personal Data for various general business purposes, as outlined below. In each section, you will find information on the types of Personal Data we process and the Legal Basis for this processing.
1. Improving Our Services
Why: We process Personal Data to analyze and enhance the functionality, performance, and usability of NGUT’s Services. This may include user interaction data, feedback, and usage patterns to help us refine and improve the overall user experience and optimize service offerings.
Legal Basis: This processing is based on NGUT’s legitimate interest in continuously improving its Services and increasing user satisfaction.
Note: You have the right to object to the processing of your Personal Data for Service improvement purposes. For more details, see the section on your rights found further below.
2. Client Relationships
Why: We process Personal Data provided by our clients to manage and fulfill client relationships. This includes contact details, information related to Service use, and any other data disclosed to us as part of the client relationship.
Legal Basis: The processing of this data is necessary to fulfill our contractual obligations with our clients.
3. Business Partner Relationships
Why: We process the Personal Data of our current and potential business partners to manage and build business relationships. This includes contact details, information related to the business relationship, and any other data provided to us.
Legal Basis: This processing is necessary to fulfill our contractual obligations with business partners.
4. Marketing
Why: We process the Personal Data of clients and potential clients to inform them about NGUT’s products, Services, and other potential offers. This includes contact details, information relevant to the relationship, and other data disclosed to us.
Legal Basis: We process this Personal Data based on our legitimate interest in developing and growing client relationships and our business activities.
Note: You have the right to object to the processing of your Personal Data for marketing purposes. For more details, see the section on your rights found further below.
5. Recruiting
Why: We process the Personal Data of job applicants for recruitment purposes. This includes contact details, CV information, and any additional information disclosed, such as images, videos, or other materials provided by applicants.
Legal Basis: This processing is based on our legitimate interest in managing job applications and recruitment processes.
Note: You have the right to object to the processing of your personal data for recruiting purposes. For more details, see the section on your rights found further below.
6. Communications
Why: We process the Personal Data of individuals who contact us for purposes of communication. This includes contact details, and any other data shared with us in the course of communication.
Legal Basis: Processing is based on our legitimate interest in managing communications with clients, partners, and other individuals.
Note: You have the right to object to the processing of your Personal Data for communication purposes. For more details, see the section on your rights found further below.
7. Legal Obligations
Why: We process Personal Data to comply with our legal obligations as required by applicable laws. This may include data processing across different categories, as legally mandated.
Legal Basis: Processing is necessary to fulfill our legal obligations.
8. Cookies
Why: We process IP addresses and certain technical data of visitors to our website for purposes related to cookies and similar technologies. This helps us improve user experience, monitor traffic, and analyze trends.
Legal Basis: Processing is based on our legitimate interest in understanding website usage and optimizing our Services. Where required by law, we will seek your consent before placing cookies.
4. FROM WHERE DO WE COLLECT YOUR PERSONAL DATA?
NGUT collects Personal Data from several sources to deliver, improve, and support our Services effectively. We are committed to collecting your data responsibly and transparently. Below is an overview of the primary sources from which we may obtain your Personal Data:
9. Directly from you
Business partner relationships: Information provided during communication and collaboration with current or potential business partners.
Client relationships: During interactions as part of client relationship management, such as account preferences, Service usage, and feedback.
Recruiting: Information collected when you apply for a job, including details shared on resumes, CVs, and other application materials.
Communications: Information shared through inquiries, support requests, and other interactions.
10. Through our Services and platform(s)
Service usage data: We collect data generated as you interact with our Services and platform(s). This may include usage patterns, interaction logs, and other data that help us improve the functionality and performance of our Services and/or platform(s).
Cookies and similar technologies: We use cookies, IP address tracking, and other web technologies to understand website traffic, enhance user experience, and improve Service functionality.
11. From third-parties and public sources
Marketing and analytics partners: We may receive data from third-party partners to support our marketing efforts and improve our understanding of Service usage patterns. These partners operate under similar data protection guidelines aligned with this Privacy Notice.
Publicly available information: In some cases, we may collect information from publicly accessible sources, such as professional profiles, for purposes related to recruiting or business partnerships.
5. DO WE TRANSFER YOUR PERSONAL DATA?
As part of our regular business operations, NGUT may transfer your Personal Data to third-parties, including data storage providers, Service integration partners, and other relevant communication platforms. We are committed to ensuring that these transfers are conducted securely and in compliance with applicable data protection laws.
Therefore, every transfer is assessed for data security, and we require third parties to uphold high data protection standards through adequate agreements and safeguards.
12. Transfers to third-party service providers
We may share your Personal Data with trusted third-party providers who support our business functions, such as:
Accounting and auditing services: For compliance with our financial and regulatory obligations.
Authorities: Where required by law or in response to valid legal requests.
Business partners: For facilitating client relationships, partnerships, and other collaborative purposes.
Communication platforms: To enable seamless interaction and support services.
Data storage and hosting providers: For secure storage and management of Personal Data.
13. Transfers to third countries
In some cases, NGUT may transfer Personal Data to service providers or partners located in countries outside the European Economic Area (EEA).
When we do so, we ensure an adequate level of data protection through measures such as:
Standard Contractual Clauses (SCCs): Approved by the European Commission to ensure data protection when transferring Personal Data outside the EEA.
Other appropriate safeguards: Such as data processing agreements (DPAs), supplementary technical measures, and compliance monitoring to secure the transferred data.
6. HOW LONG DO WE RETAIN YOUR PERSONAL DATA?
The retention period for your Personal Data depends on the purpose for which we process it. We periodically review the necessity of the Personal Data we retain and document our retention practices in line with data protection regulations, such as the GDPR.
14. Improving our Services
We retain Personal Data related to the analysis and improvement of our Services for as long as necessary to achieve Service enhancements, refine user experience, and optimize our offerings. This data may include aggregated or anonymized data to support ongoing improvements, in which case it can no longer be used to identify individual users, and is thus no longer considered Personal Data.
15. Client relationships
We retain Personal Data for as long as is necessary to maintain and support the client relationship. This retention period takes into account our field of business and the duration of the client relationship.
6.3 Business partner relationships
We retain Personal Data of our business partners and potential business partners for as long as is necessary to support and manage our business partnerships, considering the needs of our industry and our ongoing relationships.
4. Marketing
We retain Personal Data for marketing purposes until you notify us that you no longer wish to receive marketing communications (i.e. you opt out) or when we determine that you no longer wish to receive such communications based on inactivity or other indications.
5. Recruiting
We retain the Personal Data of job applicants for a maximum of twelve (12) months from the date of receiving the job application or from the closing date of the relevant job posting. This allows us to consider applicants for future roles while respecting data retention limitations.
6. Communications
We retain Personal Data related to communications with individuals for three (3) years from the date of the last contact. For information shared on our social media channels, we retain this data until the individual removes their information from the respective platform.
7. Legal obligations
We retain Personal Data for as long as required to comply with applicable legal obligations. This period varies depending on the specific legal requirements and retention obligations in place.
8. Cookies
The retention period for cookies varies based on the type and purpose of each cookie used on our website.
7. WHAT DATA PROTECTION RIGHTS DO YOU HAVE?
Under the GDPR, you have the following rights regarding your Personal Data. To exercise these rights, please contact us using the details provided in this Privacy Notice. We will take steps to verify your identity before processing any requests to ensure your data is protected.
16. Your data protection rights
Right to access (Article 15 of the GDPR): You have the right to request access to the Personal Data we hold about you, including information on how we process your data.
Right to rectification (Article 16 of the GDPR): If any of the Personal Data we hold about you is incorrect or incomplete, you have the right to request that we correct or complete it.
Right to erasure (Article 17 of the GDPR): In certain circumstances, you may request the deletion of your Personal Data. This right, often known as the “right to be forgotten,” applies where, for example, the Personal Data is no longer necessary for the purposes for which it was collected, or if you withdraw your consent and there is no other legal basis left for legitimizing processing.
Right to restriction of processing (Article 18 of the GDPR): You may ask us to restrict the processing of your Personal Data in certain situations, such as if you contest the accuracy of the data or object to the processing.
Right to data portability (Article 20 of the GDPR): If we process your Personal Data based on your consent or a contract and the processing is automated, you have the right to request a copy of your data in a structured, commonly used, and machine-readable format. You may also request that we transfer this Personal Data to another data Controller, where this sort of transfer is technically feasible.
Right to object (Article 21 of the GDPR): You have the right to object to our processing of your Personal Data if the processing is based on our legitimate interests or is for direct marketing purposes. For marketing, this means you can opt out at any time to stop receiving communications.
Right to object to automated decision-making – including profiling (Article 22 of the GDPR): You have the right not to be subject to a decision based solely on automated processing, including profiling, that significantly affects you. This right applies if such decisions produce legal effects or similarly significant consequences for you.
Right to withdraw consent If we process your Personal Data based on your consent, you have the right to withdraw this consent at any time. Withdrawing consent does not affect the lawfulness of processing conducted prior to your consent’s withdrawal.
17. Region-Specific rights
California, USA: NGUT complies with the California Consumer Privacy Act (CCPA). California residents have the right to know, delete, and correct their information.
Brazil: In compliance with LGPD, residents have the right to anonymization and to access information shared with public and private entities.
China: We adhere to the Personal Information Protection Law (PIPL) and ensure data transfers meet local legal standards.
18. How to exercise your rights
If you would like to exercise any of your rights or have questions about data protection at NGUT, please contact us via email (see contact information in Section 1 of this Privacy Notice). We will respond to your request in accordance with applicable data protection laws.
19. Right to Lodge a Complaint
If you believe that the processing of your Personal Data infringes data protection laws, you also have the right to lodge a complaint with a supervisory authority, such as the Office of the Finnish Data Protection Ombudsman at: https://tietosuoja.fi/en/home.
8. CAN THIS PRIVACY NOTICE BE AMENDED?
NGUT may amend this Privacy Notice as needed to reflect changes in our practices, Services, legal obligations, or applicable data protection laws, including the GDPR. Amendments to this Privacy Notice will take effect immediately upon posting the updated version on our website, unless stated otherwise.
If we make significant changes to the Privacy Notice or implement new ways of processing Personal Data that could materially affect your rights or the way we handle your Personal Data, we will notify you directly where possible. This may include email notification or announcements on our website, ensuring you stay informed about how we handle your Personal Data.
We encourage you to periodically review this Privacy Notice to stay updated on any changes. Your continued use of our website and/or Services after an update signifies your acknowledgement and acceptance of the amended/updated Privacy Notice.
We process your Personal Data for the following purposes during our business activities:
* Improving our Services
* Client relationships
* Business partner relationships
* Marketing
* Recruiting
* Communication
* Legal obligations
* Cookies
1. WHO IS THE CONTROLLER OF YOUR PERSONAL DATA?
The Controller of your Personal Data is Finnish limited liability company with the name of Number Go Up Technologies LLC (Finnish Business ID: 3490835-9), with its primary place of business being at c/o Number Go Up Technologies Oy, Kuusitie 2 B 88, 00270 Helsinki, Finland.
The Controller of your Personal Data can be contacted at info@ngut.eu and +358 46 801 0795.
2. WHAT DEFINITIONS ARE USED IN THIS PRIVACY NOTICE?
Controller is the party that is in charge of the processing activities connected to Personal Data.
Data Subject refers to a human being in accordance with data protection laws.
GDPR is the European General Data Protection Regulation ((EU) 2016/679), which is the primary applicable law that this Privacy Notice is based upon.
Legal Basis for processing means the legal basis with which the Controller processes Personal Data of a Data Subject. The lawfulness of processing is described in Article 6 of the GDPR.
Personal Data means any data directly concerning a Data Subject or any other data by which a Data Subject can be identified with.
Privacy Notice refers to this document, which has been drawn up in accordance with Articles 13 and 14 of the GDPR, through which the Controller (i.e. NGUT) informs the Data Subjects (e.g. you) of the ways their Personal Data is being processed.
Processor means a party that processes Personal Data for and/or on behalf of the Controller.
Purpose for processing means the reason why the Controller processes Personal Data of a Data Subject.
Services refers to the services, features, and functionalities provided by NGUT through its website that are available for purchase or use by clients. These Services are designed to fulfill specific needs as outlined on our website and may be subject to updates and/or improvements.
3. WHY DO WE PROCESS YOUR PERSONAL DATA?
NGUT processes your Personal Data for various general business purposes, as outlined below. In each section, you will find information on the types of Personal Data we process and the Legal Basis for this processing.
1. Improving Our Services
Why: We process Personal Data to analyze and enhance the functionality, performance, and usability of NGUT’s Services. This may include user interaction data, feedback, and usage patterns to help us refine and improve the overall user experience and optimize service offerings.
Legal Basis: This processing is based on NGUT’s legitimate interest in continuously improving its Services and increasing user satisfaction.
Note: You have the right to object to the processing of your Personal Data for Service improvement purposes. For more details, see the section on your rights found further below.
2. Client Relationships
Why: We process Personal Data provided by our clients to manage and fulfill client relationships. This includes contact details, information related to Service use, and any other data disclosed to us as part of the client relationship.
Legal Basis: The processing of this data is necessary to fulfill our contractual obligations with our clients.
3. Business Partner Relationships
Why: We process the Personal Data of our current and potential business partners to manage and build business relationships. This includes contact details, information related to the business relationship, and any other data provided to us.
Legal Basis: This processing is necessary to fulfill our contractual obligations with business partners.
4. Marketing
Why: We process the Personal Data of clients and potential clients to inform them about NGUT’s products, Services, and other potential offers. This includes contact details, information relevant to the relationship, and other data disclosed to us.
Legal Basis: We process this Personal Data based on our legitimate interest in developing and growing client relationships and our business activities.
Note: You have the right to object to the processing of your Personal Data for marketing purposes. For more details, see the section on your rights found further below.
5. Recruiting
Why: We process the Personal Data of job applicants for recruitment purposes. This includes contact details, CV information, and any additional information disclosed, such as images, videos, or other materials provided by applicants.
Legal Basis: This processing is based on our legitimate interest in managing job applications and recruitment processes.
Note: You have the right to object to the processing of your personal data for recruiting purposes. For more details, see the section on your rights found further below.
6. Communications
Why: We process the Personal Data of individuals who contact us for purposes of communication. This includes contact details, and any other data shared with us in the course of communication.
Legal Basis: Processing is based on our legitimate interest in managing communications with clients, partners, and other individuals.
Note: You have the right to object to the processing of your Personal Data for communication purposes. For more details, see the section on your rights found further below.
7. Legal Obligations
Why: We process Personal Data to comply with our legal obligations as required by applicable laws. This may include data processing across different categories, as legally mandated.
Legal Basis: Processing is necessary to fulfill our legal obligations.
8. Cookies
Why: We process IP addresses and certain technical data of visitors to our website for purposes related to cookies and similar technologies. This helps us improve user experience, monitor traffic, and analyze trends.
Legal Basis: Processing is based on our legitimate interest in understanding website usage and optimizing our Services. Where required by law, we will seek your consent before placing cookies.
4. FROM WHERE DO WE COLLECT YOUR PERSONAL DATA?
NGUT collects Personal Data from several sources to deliver, improve, and support our Services effectively. We are committed to collecting your data responsibly and transparently. Below is an overview of the primary sources from which we may obtain your Personal Data:
9. Directly from you
Business partner relationships: Information provided during communication and collaboration with current or potential business partners.
Client relationships: During interactions as part of client relationship management, such as account preferences, Service usage, and feedback.
Recruiting: Information collected when you apply for a job, including details shared on resumes, CVs, and other application materials.
Communications: Information shared through inquiries, support requests, and other interactions.
10. Through our Services and platform(s)
Service usage data: We collect data generated as you interact with our Services and platform(s). This may include usage patterns, interaction logs, and other data that help us improve the functionality and performance of our Services and/or platform(s).
Cookies and similar technologies: We use cookies, IP address tracking, and other web technologies to understand website traffic, enhance user experience, and improve Service functionality.
11. From third-parties and public sources
Marketing and analytics partners: We may receive data from third-party partners to support our marketing efforts and improve our understanding of Service usage patterns. These partners operate under similar data protection guidelines aligned with this Privacy Notice.
Publicly available information: In some cases, we may collect information from publicly accessible sources, such as professional profiles, for purposes related to recruiting or business partnerships.
5. DO WE TRANSFER YOUR PERSONAL DATA?
As part of our regular business operations, NGUT may transfer your Personal Data to third-parties, including data storage providers, Service integration partners, and other relevant communication platforms. We are committed to ensuring that these transfers are conducted securely and in compliance with applicable data protection laws.
Therefore, every transfer is assessed for data security, and we require third parties to uphold high data protection standards through adequate agreements and safeguards.
12. Transfers to third-party service providers
We may share your Personal Data with trusted third-party providers who support our business functions, such as:
Accounting and auditing services: For compliance with our financial and regulatory obligations.
Authorities: Where required by law or in response to valid legal requests.
Business partners: For facilitating client relationships, partnerships, and other collaborative purposes.
Communication platforms: To enable seamless interaction and support services.
Data storage and hosting providers: For secure storage and management of Personal Data.
13. Transfers to third countries
In some cases, NGUT may transfer Personal Data to service providers or partners located in countries outside the European Economic Area (EEA).
When we do so, we ensure an adequate level of data protection through measures such as:
Standard Contractual Clauses (SCCs): Approved by the European Commission to ensure data protection when transferring Personal Data outside the EEA.
Other appropriate safeguards: Such as data processing agreements (DPAs), supplementary technical measures, and compliance monitoring to secure the transferred data.
6. HOW LONG DO WE RETAIN YOUR PERSONAL DATA?
The retention period for your Personal Data depends on the purpose for which we process it. We periodically review the necessity of the Personal Data we retain and document our retention practices in line with data protection regulations, such as the GDPR.
14. Improving our Services
We retain Personal Data related to the analysis and improvement of our Services for as long as necessary to achieve Service enhancements, refine user experience, and optimize our offerings. This data may include aggregated or anonymized data to support ongoing improvements, in which case it can no longer be used to identify individual users, and is thus no longer considered Personal Data.
15. Client relationships
We retain Personal Data for as long as is necessary to maintain and support the client relationship. This retention period takes into account our field of business and the duration of the client relationship.
6.3 Business partner relationships
We retain Personal Data of our business partners and potential business partners for as long as is necessary to support and manage our business partnerships, considering the needs of our industry and our ongoing relationships.
4. Marketing
We retain Personal Data for marketing purposes until you notify us that you no longer wish to receive marketing communications (i.e. you opt out) or when we determine that you no longer wish to receive such communications based on inactivity or other indications.
5. Recruiting
We retain the Personal Data of job applicants for a maximum of twelve (12) months from the date of receiving the job application or from the closing date of the relevant job posting. This allows us to consider applicants for future roles while respecting data retention limitations.
6. Communications
We retain Personal Data related to communications with individuals for three (3) years from the date of the last contact. For information shared on our social media channels, we retain this data until the individual removes their information from the respective platform.
7. Legal obligations
We retain Personal Data for as long as required to comply with applicable legal obligations. This period varies depending on the specific legal requirements and retention obligations in place.
8. Cookies
The retention period for cookies varies based on the type and purpose of each cookie used on our website.
7. WHAT DATA PROTECTION RIGHTS DO YOU HAVE?
Under the GDPR, you have the following rights regarding your Personal Data. To exercise these rights, please contact us using the details provided in this Privacy Notice. We will take steps to verify your identity before processing any requests to ensure your data is protected.
16. Your data protection rights
Right to access (Article 15 of the GDPR): You have the right to request access to the Personal Data we hold about you, including information on how we process your data.
Right to rectification (Article 16 of the GDPR): If any of the Personal Data we hold about you is incorrect or incomplete, you have the right to request that we correct or complete it.
Right to erasure (Article 17 of the GDPR): In certain circumstances, you may request the deletion of your Personal Data. This right, often known as the “right to be forgotten,” applies where, for example, the Personal Data is no longer necessary for the purposes for which it was collected, or if you withdraw your consent and there is no other legal basis left for legitimizing processing.
Right to restriction of processing (Article 18 of the GDPR): You may ask us to restrict the processing of your Personal Data in certain situations, such as if you contest the accuracy of the data or object to the processing.
Right to data portability (Article 20 of the GDPR): If we process your Personal Data based on your consent or a contract and the processing is automated, you have the right to request a copy of your data in a structured, commonly used, and machine-readable format. You may also request that we transfer this Personal Data to another data Controller, where this sort of transfer is technically feasible.
Right to object (Article 21 of the GDPR): You have the right to object to our processing of your Personal Data if the processing is based on our legitimate interests or is for direct marketing purposes. For marketing, this means you can opt out at any time to stop receiving communications.
Right to object to automated decision-making – including profiling (Article 22 of the GDPR): You have the right not to be subject to a decision based solely on automated processing, including profiling, that significantly affects you. This right applies if such decisions produce legal effects or similarly significant consequences for you.
Right to withdraw consent If we process your Personal Data based on your consent, you have the right to withdraw this consent at any time. Withdrawing consent does not affect the lawfulness of processing conducted prior to your consent’s withdrawal.
17. Region-Specific rights
California, USA: NGUT complies with the California Consumer Privacy Act (CCPA). California residents have the right to know, delete, and correct their information.
Brazil: In compliance with LGPD, residents have the right to anonymization and to access information shared with public and private entities.
China: We adhere to the Personal Information Protection Law (PIPL) and ensure data transfers meet local legal standards.
18. How to exercise your rights
If you would like to exercise any of your rights or have questions about data protection at NGUT, please contact us via email (see contact information in Section 1 of this Privacy Notice). We will respond to your request in accordance with applicable data protection laws.
19. Right to Lodge a Complaint
If you believe that the processing of your Personal Data infringes data protection laws, you also have the right to lodge a complaint with a supervisory authority, such as the Office of the Finnish Data Protection Ombudsman at: https://tietosuoja.fi/en/home.
8. CAN THIS PRIVACY NOTICE BE AMENDED?
NGUT may amend this Privacy Notice as needed to reflect changes in our practices, Services, legal obligations, or applicable data protection laws, including the GDPR. Amendments to this Privacy Notice will take effect immediately upon posting the updated version on our website, unless stated otherwise.
If we make significant changes to the Privacy Notice or implement new ways of processing Personal Data that could materially affect your rights or the way we handle your Personal Data, we will notify you directly where possible. This may include email notification or announcements on our website, ensuring you stay informed about how we handle your Personal Data.
We encourage you to periodically review this Privacy Notice to stay updated on any changes. Your continued use of our website and/or Services after an update signifies your acknowledgement and acceptance of the amended/updated Privacy Notice.