Overview of the Updated Policy

InfraXmedia Group, a holding company registered in England, has formally updated its Data Protection and Privacy Policy, effective as of April 25, 2025. The policy governs how the group—including all its subsidiaries—collects, stores, uses, discloses, and transfers personal data. This update arrives in the context of evolving data protection laws across the UK, Europe, the United States, Canada, and Latin America, and the organization emphasizes its commitment to maintaining high standards of privacy and compliance.

Scope and Applicability

The policy applies to all companies within the InfraXmedia group. Individuals may have arrived at this policy from the website of any member company. The group processes personal data for a variety of stakeholders, including customers, business partners, marketing registrants, website visitors, employees, and contractors. The policy is designed to be transparent about the types of data collected, the purposes for which it is used, and the rights of individuals under applicable law.

Types of Personal Information Collected

InfraXmedia collects different categories of personal information depending on the relationship with the individual. For customers and business partners, data typically includes name, email address, phone number, job title, company name, country, and business address. In certain jurisdictions, the company may also request a copy of a current passport or residence card for verification purposes. For marketing and events registrants, contact details along with preferences and professional interests are collected. Website visitors’ data includes IP addresses, browser type, device information, and cookies, which are subject to a separate Cookie Policy. For employees and contractors, personal data relevant to employment and contractual obligations is processed under separate internal policies.

How Personal Data Is Used

The policy outlines three primary lawful bases for processing personal data: fulfillment of contractual obligations, legitimate interest, and consent. Under legitimate interest, InfraXmedia pursues business activities such as marketing, event management, media services, and analytics. The company explains that legitimate interest means the interest of the group in conducting and managing its business to provide the best services and secure experience. This includes tailoring marketing to individual interests, protecting against fraud, and ensuring system security. The group emphasizes that it carefully balances any potential impact on individuals and does not override their interests without consent or legal requirement.

Service-Related Communications and Marketing

InfraXmedia may contact individuals for service-related reasons, such as subscription updates, password reminders, or comments made on websites. They may also invite participation in research studies and send operational information like badge or app details for event attendance. Marketing communications are sent based on legitimate interest, particularly to staff members of limited companies, public limited companies, incorporated partnerships, trusts, foundations, and government institutions via corporate email addresses. UK GDPR permits such contact without prior consent as long as the processing is on a legitimate interest basis and there is no disproportionate impact on the data subject. Every marketing email includes an unsubscribe link, and individuals can opt out at any time by emailing the data team.

Data Sharing and Disclosure

The policy details circumstances under which personal data may be shared. InfraXmedia may disclose data to other companies within its group, as well as to third parties where required by law, for crime prevention, tax assessment, or in the event of a business sale. Importantly, for events, webinars, whitepapers, and digital downloads, the group passes personal data to sponsoring third parties for their marketing communications, and to speakers who are asked questions during broadcasts. A list of current sponsoring third parties is maintained online. The policy explicitly states that data is only shared with sponsors shown at the time of registration, and data is not sold or shared outside this condition. All data sharing is time-stamped, and individuals can request not to share data by contacting the data team.

International Data Transfers

Given the global nature of its operations, InfraXmedia may transfer personal data to countries outside the UK and European Economic Area. The company ensures protection through adequacy decisions by the UK or EU, Standard Contractual Clauses (SCCs), self-certification under the U.S. Data Privacy Framework (DPF), and separate data protection agreements with parties. The policy clarifies that such transfers are necessary for fulfilling service orders and providing support. Individuals submitting personal data agree to this transfer, storing, and processing, although the company takes all steps reasonably necessary to ensure security.

Security Measures and Data Retention

InfraXmedia has implemented security procedures and technical and organizational measures to safeguard personal information. Access to internal servers is limited to specialist IT systems suppliers and personnel. The company retains personal data only as long as necessary for the purposes for which it was collected. However, certain data may be kept for up to six years for audit and tax purposes, or longer if legislation requires. When data is no longer needed, it is erased or disposed of without delay.

Rights of Access and Control

Under UK GDPR, individuals have the right to access their personal data and verify the lawfulness of processing. A subject access request must be verified by reasonable means, and the information is provided free of charge unless the request is manifestly unfounded or excessive, in which case a reasonable fee may be charged or the request refused. Responses are provided within one month, extendable to two months for complex requests. Individuals can also request correction of incorrect data by contacting the data team.

Cookies and IP Addresses

The policy addresses the use of cookies and IP address collection for system administration and aggregate reporting. Statistical data about browsing actions and patterns does not identify individuals. The company uses cookie technology to provide a personalized browsing experience, and further details are available in a separate Cookie Policy.

Changes to the Policy

InfraXmedia reserves the right to update this policy at any time with or without notice to comply with new practices, regulations, or laws. Changes are immediately posted on its websites, and continued use of the sites after alterations constitutes acceptance of the updated terms. The organization encourages visitors to review the policy regularly.

Contact and Complaints

Questions or comments about privacy can be directed to the Data Controller at InfraXmedia (Holdings) Ltd, 32-38 Saffron Hill, London EC1N 8FH, or by email. Individuals in the UK may also contact the Information Commissioner’s Office via phone, email, live chat, or post at Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF. The ICO helpline is 0303 123 1113.

This policy was last updated on 25th April 2025 and reflects the group’s ongoing commitment to data protection and transparency in an increasingly digital world.

Source: Datacenterdynamics News