Who or what is it?
Callisti Ltd website address is: https://www.callisti.scot.
Callisti Ltd is a company registered in Scotland (SC342373) and is based in Dumfries, Scotland.
What personal data is collected and why?
If comments on website pages and posts are enabled, when visitors leave comments on the site, the data shown in the comments form, and also the visitor’s IP address and browser user agent string are collected to help spam detection.
If you are able to upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you submit information Callisti Ltd will determine how best to use it to respond to you whilst respecting and protecting your privacy, unless you are spam. Contact form submissions are not stored using this website or an associated WordPress plug-in.
If you leave a comment on this website you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, a temporary cookie may be set to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, several cookies will be set up to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who is your data shared with?
Website visitor data is anonymised by Google Analytics and you can read more about that here: https://cloud.google.com/security/gdpr/. Ultimately Callisti Ltd is unable to determine the identity of individual visitors from the Google Analytics and consequently is confident that your privacy is protected.
By default Callisti Ltd opts to let any visitor data for Analytics profiles expire after 26 months. As part of providing hosting and website services, functional plug-ins, tracking analytics, social media accounts, and other services may form part of the service after consultation and agreement with you, in which case you may be made aware of any additional privacy considerations.
From time to time Callisti Ltd may employ the use of Facebook Apps to add functionality to website services. This means that should the website visitor opt-in to using the App, the App will only request the data need to operate the application.
This basic account information should only consist of basic information which may include name, email, gender, birthday, current city, and profile picture URL unless otherwise specified in the use of the App.
Callisti is obliged to meet the policies set out by Facebook when implementing an App for public use.
How long is your data retained?
Because the business is predicated on persons, human or legal, making contact with Callisti Ltd and sharing sufficient identifiers to establish a functional service delivery relationship, it would be insane not to retain enough data to carry out the required work during the course of the agreed service period. Generally this will mean that Callisti Ltd will have website administrator access during the period of service provision.
In terms of this website, if you leave a comment, the comment and its metadata are retained indefinitely. This is so any follow-up comments can be recognised and approved automatically instead being held in a moderation queue.
For users that register on this website (if any), the personal information they provide in their user profile is stored. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data held about you, including any data you have provided. You can also request that Callisti Ltd erase any personal data held about you. This does not include any data Callisti Ltd is obliged to keep for administrative, legal, or security purposes.
Where your data is sent?
Visitor comments may be checked through an automated spam detection service. We collect information about visitors who comment on Sites that use our Akismet anti-spam service. The information we collect depends on how the User sets up Akismet for the Site, but typically includes the commenter’s IP address, user agent, referrer, and Site URL (along with other information directly provided by the commenter such as their name, username, email address, and the comment itself).
Your contact information
If you have any privacy specific concerns please contact firstname.lastname@example.org.
How your data is protected
Any private details you supply such as name, geographical address, email address, telephone number, legal documents, payment details, access details, etc., are treated by Callisti Ltd as exclusive to our relationship with you and are not shared, sold or otherwise distributed without your express permission or instruction.
User data is security protected using two-factor authentication, with devices used to access user data having biometric and/or password protection.
What data breach procedures are in place?
Callisti Ltd will contact you at the earliest opportunity if a breach of your user data is discovered, and every reasonable step will be taken to contain and manage the situation. If you have any additional privacy specific concerns please contact email@example.com.
What third parties provide this website with user data?
This website is not configured to receive third party user data that threatens your privacy.
What automated decision making or profiling is done with user data?
Industry regulatory disclosure requirements