When you use Fusion products and services you trust us with your information. We greatly appreciate the trust you place in us and take the secure management and protection of your information extremely seriously. Whilst we strive to ensure all of Fusion’s obligations to current regulations and data protection laws are met, we also endeavour to be transparent about the ways in which we manage and protect your information, privacy and security.
As data controller we hold and collect data on all our employees. We also hold some personal customer contact information to allow us to meet our contractual obligations. We have performed Privacy Impact Assessments (PIAs) to identify our data stores and to ensure there is a lawful reason for holding such data. We have clear procedures in place to deal with all types of personal data requests in order to meet our commitments to the General Data Protection Regulations (GDPR).
Users of products and services will always be informed of how any personal data will be collected and used as part of the submission process. Should a user wish to know what personal data is recorded about them, they can request this from us using the contact information at the end of this document. You can also contact us should you require your personal information to be rectified, no longer processed, or completely erased.
For submission of any enquiry related to individual rights under the GDPR please use the contact information at the end of this document. As a data controller we maintain oversight of our data and continually review our processes and procedures on how we secure data within Fusion.
At Fusion we offer our clients telephony products and service. Personal contact information for all our clients is either held within our cloud platforms or within own on-premise IT network.
The types of data processed primarily include telephone numbers, address details, account details, customer details and payment details, not all of which would necessarily fall into the Information Commissioner’s Office’s (ICO) definition of personal data. Our amended Standard Terms and Conditions takes account of all the requirements outlined by the ICO in relation to the GDPR.
Staff who process Personally Identifiable Information (PII) within their job roles have all signed a confidentiality agreement as well as receiving training on the GDPR and data security. We delete all customer information that resides within our network within a month of the contract end date, unless there is a lawful or contractual reason not to do so.
We operate according to the principle of least privilege, ensuring a strict access control policy is in place. Access is restricted and allowed only to those individuals who require it as part of their “Job Role.” This ensures that any data Fusion processes is accessed only by appropriately trained staff. Our clients’ billing data is not readily available to all staff at Fusion and is always securely accessed. A clear audit trail is in place.
Fusion uses leading cloud infrastructure providers for hosting and storing client data. We ensure any cloud provider we use meets industry standards for data security.
Sensitive data will always be encrypted in transit. Data stored within our Cloud Platforms will also be encrypted in storage.
Protection and Detection
Throughout our IT infrastructure we have a variety of anti-malware solutions. These are intended to detect and protect against unauthorised intrusion or access of data. We also operate a defence-in-depth policy with regards to data infrastructure and appliances.
Data is only retained for the time necessary to process it for the purpose provided. While the purpose of processing data will vary (the many different types of employee data, for instance), should you require information on retention times on any type of data, please contact us using the contact details at the end of this document.
aBILLity – Our Billing Solution
How aBILLity™ Allows us to Comply with Your Rights
The Right to Object
aBILLity allows the billing agent to cease billing processes at any time should an end user object to their data being processed.
The Right to Rectification
Where you receive a request to correct or amend billing details, you can simply change them within the relevant product screens.
The Right to Restrict Processing
aBILLity allows for all processes to be restricted at any time for a single customer or an entire bill run. This also applies to our WLR gateway and provisioning portals that are designed using our Mosaix™ software.
The Right to Data Portability
aBILLity allows the export of customer information should a data portability request be received.
The Right of Access
If a client needs to provide information that is stored on one of their customers, they can do so by accessing information from the “Site Details” section inside aBILLity.
The Right to Erasure
aBILLity allows for the complete removal of any contact information including Personally Identifiable Information held within the system.
Rights in Relation to Automated Decision Making and Profiling
aBILLity does not process data in this way.
About Our Website
Types of Data Collected Through This Website
User data is collected to allow us to provide our services, as well as for analytics and contacting the user. Fusion profiles website visitors, in order to better understand the way in which our website content is viewed by visitors. It is also used to identify the types of organisations that might be interested in using our products and services.
A web analysis service provided by Google Inc. (“Google”). Google utilises the data collected to track and examine the use of this website, to prepare reports on its activities and share them with other Google services. Google may use the data collected to contextualise and personalise the ads of its own advertising network. Personal Data collected: Cookie and Usage data.
Data Submitted on This Website
Where you submit your data for addition to a mailing list or contact purposes on this website, a privacy notice will explain how the data will be used and for what purpose. You will need to consent for your data to be used as explained in the privacy notice in order to submit it.
Where a user submits data for recruitment, to contact us or to be added to a mailing list, the information that is submitted will be retained. While this may vary depending upon the submission, it will typically contain data such as first and last name, phone number and address details including postcode.
Methods of processing
In addition to Fusion, in some cases, the data may be accessible to certain types of persons in charge, involved with the operation of the site (administration, sales, marketing, legal, system administration), or external parties (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies). Those involved in operation and maintenance of this website may collect files that record interaction with this website (system logs).
If you require further details regarding the data we collect or your personal information please use the contact information at the end of this document.
Phone: 0203 1312220
Address: 1 Royal Exchange Buildings, London, EC3V 3LF