Welcome to Cubis’ ("Cubis") Privacy Notice.
Cubis Systems is a trading division of Northstone (NI) Limited.
At Cubis we take your privacy seriously and we are committed to protecting your personal data. This Privacy Notice sets out how Cubis uses and protects the personal data it collects and processes through your use of our websites and when you use our services. Cubis is the controller of the personal data you submit to us and responsible for your personal data under applicable data protection law.
Purposes for collecting your Personal Data
Generally, you can browse the Cubis website without disclosing any personal information about yourself. We only collect and store information that is automatically recognised when you visit the Cubis website to read or download information. For example, the date and time, the originating IP address, the domain name, the type of browser and operating system used (if provided by the browser), the URL of the referring page (if provided by the browser), the object requested, the completion status of the request and other basic behavioural tracking.
A cookie is a small file which asks permission to be placed on your computer's hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.
Controlling your Personal Information
Registering or providing personal information on the Cubis website is optional. If you decide not to provide personal information, you can still use the website however you may be restricted in what you can do. We only rely on your consent to contact you once you have registered on our website. If you have not registered on our website we may rely on our legitimate business interests to contact you if we have sold, or negotiated a sale, of goods or services to you.
You may choose to restrict the collection or use of your personal information in the following ways:
- whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you consent to the information being used by Cubis for direct marketing purposes;
- if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to us or emailing us at firstname.lastname@example.org.
Cubis views the customer information that it collects as a valuable and confidential asset of which we take great care to ensure its safety. From time to time we may be required by law to share your personal information with certain third parties but we will never otherwise do so unless you have given us appropriate permission.
You can ask us whether we are keeping personal data about you, and you can request to receive a copy of that personal data. You can also ask us to correct any inaccuracies in your personal information or request that we delete your personal information.
We will ask you to provide proof of your identity before we respond to such requests. We reserve the right to refuse to send you, amend or delete the personal data if you are not able to provide proof of identity.
You also have the right to complain to a supervisory authority (the Information Commissioner's Office).
Cubis intends to protect the quality and integrity of your personal information. We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. All Cubis employees and processors who have access to personal data are obliged to respect the privacy of our visitors and the confidentiality of their personal data.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this Privacy Notice. You should exercise caution and look at the privacy notice applicable to the website in question.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
Details of retention periods for different aspects of your personal data are available in our Document Retention Policy which you can request from us by contacting us at: email@example.com.
Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring the following safeguard is implemented:
- Where we use certain service providers, we will use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
Changes to the terms of this Privacy Notice
Cubis will occasionally make changes to this Privacy Notice. Any changes to this Privacy Notice will be posted here.
If you have any enquiries about our Privacy Notice, including any requests to exercise your legal rights, please contact: firstname.lastname@example.org.
Cyber Essentials Plus Certificate of Compliance
Cubis Systems has been awarded the UK Government’s Cyber Essentials Plus Certificate of Compliance by local IT Security Company Cyphra, one of the industry’s IASME certification bodies.
The overall Cyber Essentials certification program is a UK Government-backed and industry-supported scheme that guides businesses in protecting themselves against cyber threats; allowing organisations to demonstrate to customers and partners that cyber security is taken seriously. The certification aims to ensure that security controls are fully setup and working effectively ensuring the secure configuration of an organisation’s computing resources.
The Cyber Essentials Plus scheme is a thorough assessment of the organisation and builds upon the requirements of the basic certification; as a result providing greater security assurance. Our network and endpoints were subjected to an onsite technical review by a representative of the certification body and this additional phase of testing increases the validity of certification considerably by providing evidence of compliance against the following areas:
- Prevention of malicious files entering the organisation from the Internet through either web traffic or email messages.
- The effectiveness of the anti-virus and malware protection mechanisms, should malicious content enter the organisation.
- The likelihood that the organisation will be compromised due to failings in the patching of the organisation’s workstations, in the event that the organisation’s protection mechanisms fail.
Working with both central and local UK Government organisations, the Cyber Essentials Plus certification provides added reassurance in relation to Cubis' IT Security.
Click here to download the certificate.