InforUMobile Technical and Organisational Security Measures (“Security Measures”) Ref. clause 4.2.3 and 7.3 of the Data Protection Addendum https://inforumobile.co.uk/ufaqs/schedule-1-inforumobile-data-processing-addendum/ Effective as of 20-02-2019

  1. We shall implement and maintain the following technical and organisational security measures to protect the Protected Data In accordance with DP Laws :
    1. taking into account the state of the art, the costs of implementation and the Details of Processing and the risks of varying likelihood and severity for the rights and freedoms of natural persons and the risks that are presented by the processing,
    1. implementing appropriate  technical and organisational security measures appropriate to the risk, including as appropriate those matters mentioned in Articles 32(1)(a) to 32(1)(d) (inclusive) of the GDPR and relevant provisions of applicable DP Law and as spelled out in more detail in the chart below,
    1. 1.3                regularly review the measures in order to achieve compliance with this clause in light of developments in technology, security and methods of deliberate attack on computer systems and the factors listed in clauses 1.1 and 1.2;
    1. You acknowledge that none of the below measures relieves you of your own obligations under DP Law, notably Articles 24 (Responsibility of the Controller), 25 (Data Protection by Design and Default), and 32-34 (Security of Processing), 35-36 (Data Protection Impact Assessments).
    1. You warrant and represent that you will not in any way undermine, disable, interfere with or otherwise circumvent the above measures. This includes, but is not limited to, attempting to re-identify data that has been de-identified, which is prohibited under DP Law. 
    1. Details of Technical and Organisational Security Measures are:
 Type of measure Description
1Information security management certifications/accreditations, other certifications, codes of conduct, trust marks or sealsWe adhere to the principles of ISO27001 and plan to gain ISO27001 accreditation in  2019.We provide our Services to prominent, security-sensitive organisations who impose (and verify that we follow) strict information security guidelines.
2Physical security controls to prevent unauthorised access, theft or damage to physical equipment.Our system is stored on an International Server Farm which is under 24/7 CCTV monitoring and human-guardedOur server cabinet is locked and only specific, authorised people may gain access to it. We securely dispose of computer equipment and paper records.
3GovernanceWe have clearly defined roles and responsibilities for information security and data protection;We have implemented appropriate information security policies and procedures in line with ISO 27000.We have procedures/policies to regularly review data access rights (joiners, movers, leavers).Procedures/policies are in place for the secure disposal of data, media and equipment.
4Staff reliability checks are carried out when recruiting.Employer reference checks on all staff.Enhanced security checks conducted by third parties.
5Staff are trained on information security, confidentiality and data protection.All staff undergo data protection and IT security training. New employees undergo comprehensive induction programmes inclusive of the above subject matter.Staff sign legally-binding confidentiality agreements and are made aware that any re-purposing or use of Protected Data and any Personal Data we process for our own purposes as a Controller is strictly prohibited.
6Access ControlsControls on access to Protected Data are in place and access is limited to staff who need to have access to carry out legitimate tasks, notably: Customer account is protected by an encrypted password (see below). Only Support Staff and a limited number of Super-Users have access to Customer accounts and Protected Data, with the exception of phone numbers in SMS logs, which retain for billing purposes;A limited number of Super-Users are permitted to access to Customer Accounts to resolve an alert, e.g. a problem with the cue, that may affect Service / platform performance and impact various Customers. We use inhouse developers. Other staff do not have access to Protected Data. Our production system is segregated from our staging system. Developers only used test / dummy data. They are prohibited from using real data.Only support staff have access to certain Protected Data and, in such cases, only incidentally in the course of providing technical support. We keep and review audit logs for anomalies.
7Robust Password PolicyThe system will not accept passwords unless they meet minimal security conditions regarding length, characters, etc. It is configured to automatically reject passwords that don’t meet these conditions . Multiple failed password attempts trigger a block on the account.
8Personal data is securely encrypted when stored and when transferred.Encrypted in transitCustomer accounts are protected by encrypted password.
9Data-minimisationWe validate email addresses and phone numbers based on format, not actual Contact Data. It is Customer’s responsibility to ensure accuracy of the Contact Data. Customer may embed code or parameters to track the source of inbound traffic or place cookies for analytics or other purposes on their Contact’s devices but only Customer can see, access or use that information. InforUMobile does not use or benefit from such collection. Metrics and reports: metrics generated by InforUMobile on behalf of Customer are on an aggregate basis. E.g.  if 100 visitors visit your landing page but only 2 submit a form the rate would be 2%. Traffic report functionality is automatically included in the Landing Page Service but do not capture identifiable elements so do not involve Personal Data. We do not track individual Contact behaviour, though you will have access to more granular detail using the Reporting function, campaign-tagging, etc. using optional features. This remains within your Customer Account.
10Data Subject Rights and Preference ManagementCaller ID blocking not permitted: where DP Law requires you to include your actual phone number or a prefix to indicate a direct marketing call, we technologically require you to show your real number .  SMS functionality includes an unsubscribe function that automatically populates a suppression listWhen Customer or Authorised User attempts to send a Contact Communication using Contact Data on the suppression list, it is automatically removed from the transmission (i.e. it is not sent but the remainder are).Consent-management / right to object: Advanced distribution control allows Customer to segment Contacts and apply distribution rules that respect Contact preferences, e.g. frequency, type of campaign or Contact Communication. Other functionality can reduce Communications fatigue; quiet hours / days. It is Customer’s responsibility to configure the settings accordingly by use of the platform functionality.DSRs: Customer can correct, delete or export in common machine-readable format any data elements you have inputted the forms in your account  to help fulfil erasure, rectification, portability or access requests.
11Technical protection is in place against deliberate or malicious attacks on systems and is regularly tested.Our communication system is shielded by a firewall. We screen Contact Communications for viruses, malware, malicious attachments or known insecure links and malicious code and reserve the right to automatically block / quarantine the message to prevent you sending a message that could create security risks for your Contacts but you bear ultimate responsibility for ensuring your Contact Communications do not contain security threats .Our platform undergoes regular penetration tests by external parties, including tests required under specific regulation such as banking regulations, and these can be performed with varying frequency but generally take place once a year.  Our Windows and SQL servers are frequently tested and undergo regular security updates and patches. We also run internal vulnerability assessments.We require our developers to comply with strict internal coding standards that align with best practice.
12Business continuity measures are in place to provide protection against equipment failure or damage  and are tested regularly. e.g. back-up systems, mirrored systems, ability to restore data.

 

Comment on this FAQ

Your email address will not be published. Required fields are marked *

Effective as of 20-02-2019

This is where we maintain a current List of Sub-Processors authorised to process Protected Data as specified in clause 8 (Sub-Processing and personnel) of the Data Protection Addendum https://inforumobile.co.uk/ufaqs/schedule-1-inforumobile-data-processing-addendum/.

We impose data protection terms on each Sub-Processor regarding their technical and organisational measures for the protection of Personal Data and applicable DP Laws.

Entity NameEntity Type & Processing ActivityEntity
Location

Safeguards (if
transferred
outside EEA)
AWSCloud server – storageIreland N/A
InfobipGlobal communication networks, SMS gatewayUK and Croatia N/A

Comment on this FAQ

Your email address will not be published. Required fields are marked *

Note: This current consolidated Data Protection Addendum was published on 20-02-2019

This Data Processing Addendum forms part of the Agreement between InforUMobile (“Processor”) and the company or entity who opened an account on the InforUMobile website (“Customer”)(collectively, the “Parties”).

  1. 1              Definitions
    1. In this Data Protection Addendum capitalised terms have the same meanings as in the Agreement. In addition, the following definitions have the meanings given below with respect to this Data Protection Addendum (“DPA”):
      1. 1.1 Applicable Law means applicable laws of the European Union (EU), the European Economic Area (EEA) or any of the EU or EEA’s member states, the United Kingdom and the Republic of Ireland as amended from time to time, subject to clauses 1.1.9(e) and 2.1;
      1. 1.2 Appropriate Safeguards means the mechanism(s) permitting international transfers of Personal Data specified in Chapter V of the GDPR and applicable DP Law, including Adequacy (as defined in DP Law) and Standard Contractual Clauses;
      1. 1.3 Authorised User means you and those of your employees, agents, contractors or associates you have authorised to access and use the Services, or for whom you have created sub-accounts. For greater certainty, a user who has logged into the Services using a valid sub-account assigned to your account shall be deemed an Authorised User unless you have notified us of suspected or confirmed unauthorised use or compromised credentials;
      1. 1.4 Contact means your prospects, customers and any other potential, intended or actual recipients of Contact Communication;
      1. 1.5 Contact Communication means the content of a message of any medium you send to or make available to a Contact using the Service(s);
      1. 1.6 Contact Data means any Personal Data we process on your behalf in the course of offering the Services and includes derived or observed data captured using the Services, e.g. whether a Contact clicked a link, Contact communications preferences (e.g. unsubscribes), metrics;
      1. 1.7 Controller, Data Subject, International Organisation, Personal Data, Personal Data Breach, Processor and processing shall have the respective meanings given to them in applicable DP Law (and related expressions, including process, processed, processing, and processes shall be construed accordingly);
      1. 1.8 Data Privacy Notice means the content and manner of communicating information to Data Subjects by Controllers required under DP Law as specified in Arts. 12 to 14, GDPR and as extended or amended or further addressed in applicable DP Law;
      1. 1.9 Data Protection Law or DP Law means, as applicable and binding on the Customer, the Processor and/or the Services, all legislation and regulatory requirements in force from time to time relating to the use of Personal Data and the privacy of electronic communications, including without limitation the General Data Protection Regulation ((EU) 2016/679) (“GDPR”), Directive 2002/58/EC (the “e-Privacy Directive”) (for so long as and to the extent that EU law has legal effect in the UK); laws implementing such laws, including the UK Data Protection Act 2018 (“UK DPA 2018”), the UK Privacy and Electronic Communications Regulations (EC Directive) 2003 (“UK PECR”), the Irish Data Protection Action 2018 (“Irish DPA 2018”), S.I. No. 336/2011 – European Communities (Electronic Communications Networks and Services) (Privacy and Electronic Communications) Regulations 2011 (“Irish PECR”) (as amended from time to time or any successor or implementing legislation), all case law, guidance, codes of practice and codes of conduct issued by a Supervisory Authority whether or not legally binding;
      1. 1.10 Data Protection Losses means all liabilities, including all costs (including legal costs), claims, demands, actions, settlements, interest, charges, procedures, expenses, losses and damages (material or non-material) and as permitted by Applicable Law administrative fines, penalties, sanctions, liabilities or other remedies imposed by a Supervisory Authority; Data Subject compensation ordered by a Supervisory Authority; and reasonable investigation-related costs;
      1. 1.11 Data Subject Request (“DSR”) means a request made by a Data Subject to exercise any rights under DP Laws with respect to Personal Data that we process on your behalf as described in Chapter III of the GDPR (as modified or extended in applicable DP Law);
      1. 1.12 International Data Transfer means the transfer of Protected Data from within the European Economic Area (“EEA”) out of the EEA (including to the UK once the UK ceases to be part of the European Union) or from the UK to a country outside the UK or EU, which would be prohibited by DP Law in the absence of Appropriate Safeguards. For greater certainty, this applies to Protected Data transferred from our servers in Ireland to the UK once the UK ceases to be part of the European Union;
      1. 1.13 List of Sub-Processors means InforUMobile’s List of Sub-Processors https://inforumobile.co.uk/ufaqs/inforumobile-list-of-sub-processors/, as amended;
      1. 1.14 Processing Instructions has the meaning given to that term in clause 6;
      1. 1.15 Protected Data means Personal Data that you have provided to us, that we have received on your behalf, or that you process in connection with the Services or the performance of our obligations under the Agreement or the DPA;
      1. 1.15 Service(s) means any products or services we provide to you in connection with and as described in the Agreement subject to clause 2.1 (Scope);
      1. 1.16 Standard Contractual Clauses means the standard data protection clauses for the transfer of Personal Data from the EEA to Data Processors in third countries in the Annex to European Commission (EC) Decision 2010/87/EU (or subsequent clauses approved under GDPR by the EC or relevant Supervisory Authority);
      1. 1.16 Sub-Processor means any agent, subcontractor or third party (excluding its employees) engaged by us to processing Protected Data on your behalf;
      1. 1.17 Supervisory Authority means the relevant DP Law enforcement authority, notably the UK Information Commissioner’s Office (“ICO”) and the Irish Data Protection Commission (“DPC”);
      1. 1.18 We, us, our means or refers to InforUMobile;
      1. 1.19 You, your, yours means or refers to the natural person or legal entity named as Customer in the Agreement and this DPA.
  2. Relationship with the Agreement
    1. Scope. This DPA only applies to the extent that the processing relates to or is in connection with Protected Data to which DP Law applies. For greater certainty, this applies to processing of the Personal Data of people in the UK and the Republic of Ireland.
    2. Conflict. This DPA forms part of the Agreement. In the event of conflict between the Agreement and the DPA, the DPA shall prevail to the extent of the conflict. Otherwise the Agreement remains unchanged and in effect until terminated according to its own terms, subject to clause 2.6 (Survival).
    3. Prior DPAs. This DPA supersedes any prior DPA between the Parties related to the Services.
    4. No third-party rights. No one other than the Parties or their successors or permitted assignees shall have any rights under this DPA, except where provided under Standard Contractual Clauses.
    5. Governing Law. This DPA shall be governed by and interpreted in accordance with the governing law and jurisdiction applicable to the Agreement.
    6. Survival. This DPA (as updated from time to time) shall survive termination (for any reason) or expiry of the Agreement and continue until no Protected Data remains in the possession or control of the Processor or any Sub-Processor, except that clause 14 (Indemnity) shall continue indefinitely.
    7. Entire agreement. This DPA together with the Agreement encompasses the entire agreement between you and InforUMobile with respect to the subject matter hereof and supersedes all prior representations, agreements and understandings, written or oral. No purchase order or other form submitted by you will modify, supersede, add to or in any way vary the terms of this Agreement, except as provided for under the DPA.
  3. Compliance with Data Protection Law and Relationship of the Parties
    1. Compliance with DP Law. The Parties acknowledge and agree to comply with the DP Law as applicable to the Personal Data they process in relation to the Agreement and in connection with the Services. Nothing in this DPA relieves either party of any responsibilities or liabilities under DP Law.
    1. Processor and Controller. The Parties agree that, for the Protected Data, you (the Customer) are the Controller and InforUMobile is the Processor.
    1. Exception – InforUMobile as Controller. The Parties acknowledge and agree that InforUMobile is a Controller for Personal Data that it processes for the purposes of its own business and in the administration of the Agreement. We undertake to treat such Personal Data as confidential and process it in accordance with InforUMobile’s Data Privacy Notice as updated from time to time.
    1. Registrations and notification requirements. The Parties undertake to fulfil any registration or notification requirements with the relevant Supervisory Authorities.
  4. Your Data Processing Obligations
    1. You shall at all times comply with all applicable DP Laws in connection with the processing of Protected Data and the use of the Services and ensure all Processing Instructions in respect of Protected Data (including the terms of this Agreement) comply at all times with DP Law.
    1. For greater certainty, you warrant, represent and undertake, that at all times:
      1. Lawful Processing. All Protected Data (if processed in accordance with our Agreement) complies in all respects with DP Law, specifically but not limited to:
        1. Mandatory Customer Data Privacy Notice. You have and will clearly post, maintain, and abide by a publicly accessible Data Privacy Notice that describes your use of Protected Data processed using the Services and shall include a link to InforUMobile’s Data Privacy Notice https://inforumobile.co.uk/ufaqs/inforumobile-privacy-policy/;
  • Mandatory Cookie Notice and Consents. You will provide and obtain all Data Privacy Notices and obtain all necessary consents required by applicable DP Law to enable us to use cookies and similar tracking technologies (like web beacons or pixels) lawfully on and collect data from the devices of Contacts and Authorised Users of the Service in accordance with and as described in our Cookie Statement https://inforumobile.co.uk/ufaqs/inforumobile-cookie-policy/;
  • Lawful Collection and Processing. You confirm that: Protected Data was collected lawfully and, where it was collected indirectly, you have undertaken the necessary due diligence to confirm you are permitted to process it; that you have documented a valid lawful basis for processing the Protected Data according to your Processing Instructions; and that you maintain evidence to demonstrate such lawful basis exists. This includes, where consent is required or selected, obtaining and documenting all necessary consents to the different processing activities you undertake using the Services or in the Processing Instructions and ensuring that these will remain valid at all times.  Accuracy. Protected Data is and will remain accurate and up to date.Storage (Data-Retention). Protected Data will only be stored for as long as necessary to satisfy the processing purposes;Security. You shall establish and maintain adequate security measures to: safeguard Protected Data in your possession or control from unauthorised access and copying and maintain complete and accurate backups of all Protected Data provided to us (or anyone acting on our behalf) so as to be able to immediately recover and reconstitute such Protected Data in the event of loss, damage or corruption;ensure Contact Communications or other use of the Services does not contain or transmit spyware, viruses, worms, trojan horses, adware or other malware, or expose our Service, the Contacts or the devices of other Data Subjects to such programs or cybersecurity threats directly or indirectly;Agents and employees. You shall ensure that you or any agents, employees, contractors or other Authorised Users comply with all DP Laws in connection with the Protected Data and the Services and the foregoing obligations;You have undertaken due diligence over our processing operations and commitments and you are satisfied (and all times that you continue to use the Services remain satisfied) that:Our processing operations are suitable for your purposes with respect to processing the Protected Data; The technical and organisational measures set out in InforUMobile’s Technical and Organisational Security Measures https://inforumobile.co.uk/ufaqs/security-measures/ (as updated from time to time) ensure a level of security appropriate to the risk with respect to the Protected Data if we comply with them; and We have sufficient expertise, reliability and resources to implement technical and organisational measures that meet the requirements of DP Laws.
  • Our Data Processing Obligations
    • We shall process Protected Data in compliance with our obligations under DP Laws and this DPA.
    • We undertake to process Protected Data only in accordance with Processing Instructions and not to use Protected Data or Contact Communications except as required to provide the Services unless:
      • Alternative Processing Instructions are agreed between the Parties;
      • We are required or permitted to do so by Applicable Law, in which case we shall notify you in advance of any such requirement (except where Applicable Law prohibits it on important grounds of public interest); or
      • We believe a Processing Instruction infringes DP Law, in which case we shall promptly inform you. We reserve the right to cease to provide any or all of the relevant Services until the Parties have agreed appropriate amended Processing Instructions which are not infringing;
      • The processing is required for our own purposes as a Controller as described in our Data Privacy Notice https://inforumobile.co.uk/ufaqs/inforumobile-privacy-policy/, in which case we undertake to take measures to miminise the use of and/or restrict access to the Protected Data as appropriate to ensure any such processing is necessary and proportionate.
  • Processing Instructions
    • Authority. You warrant that where you decide jointly with another Controller how and why to process Protected Data using the Services (i.e. Joint Controller), that you have full authority and authorisation of all relevant Controllers to give us Processing Instructions.
    • Only Authorised Users. It is your responsibility to ensure only Authorised Users provide Processing Instructions. You acknowledge and accept that we are under no obligation to restore or remedy any Protected Data deleted or improperly processed pursuant to Processing Instructions given by an Authorised User and we assume no responsibility for such processing.
    • Providing Processing Instructions. Processing Instructions shall be considered to be provided where an Authorised User provides such instructions:
      • in writing, which may include but is not limited to email, chat message or SMS sent by an Authorised User, or
      • by configuring, selecting or using features, template elements, tools or other aspects of the Services or using any computer command to process (including to delete) any Protected Data;
      • except to the extent any method in clause 6.2.2 is not fulfilled due to technical, operational or other reasons, in which case Processing Instructions will be deemed not provided;
    • Limitation of Processor Liability. To the maximum extent permitted by law, we shall have no liability howsoever arising (whether in contract, tort (including negligence) or otherwise) for any losses, costs, expenses or liabilities (including any Data Protection Losses) arising from or in connection with any processing we do according to your Processing Instructions, including where they infringe DP Law;
    • No Legal Advice; Reliance. No part of this Agreement is intended or shall be construed as legal advice.
  • Details of Processing and Security
    • Details of Processing. Processing of Protected Data shall be as described in Annex A.
    • Security. Taking into account the state of the art, the costs of implementation and the Details of Processing, as well as the risks of varying likelihood and severity for the rights and freedoms of natural persons presented by the processing, we shall implement appropriate technical and organisational security measures, including those mentioned in Articles 32(1)(a) to 32(1)(d) (inclusive) of the GDPR.
    • Appropriate security. We have determined that the measures set out InforUMobile’s Technical and Organisational Security Measures document (“Security Measures”) https://inforumobile.co.uk/ufaqs/security-measures/ ensure a level of security appropriate to the risks of processing the Protected Data.
  • Sub-processing and personnel
    • Prior authorisation. We shall only permit agents, subcontractors or other third parties to process Protected Data with your prior written authorisation (such authorisation not to be unreasonably withheld, conditioned or delayed), except with respect to our Sub-Processors’ own employees in the course of their employment where those employees are subject to an enforceable obligation of confidence with regard to the Protected Data.
    • Authorised Sub-Processors. You authorise us to appoint each of the Sub-Processors identified in Annex C (List of Sub-Processors) as updated from time to time. We shall provide reasonable notice of such updates and you will have the opportunity to object to such appointments.
    • We shall
      • appoint each Sub-Processor under a written contract containing materially the same obligations as this DPA prior to processing Protected Data. Such contract shall be enforceable by us and we will ensure each such Sub-Processor complies with all such obligations;
      • remain fully liable for all the acts and omissions of each Sub-Processor as if they were our own to the extent they relate to the data protection obligations under DP Law and this DPA;
      • ensure that all natural persons authorised by us (or by any Sub-Processor) to process Protected Data are subject to a binding written contractual obligation of confidentiality (except where disclosure is required in accordance with Applicable Law, in which case we shall, where practicable and not prohibited by Applicable Law, notify you of any such requirement before such disclosure).
  • Assistance and Data Subject Rights
    • We shall at your cost on a time and materials basis:
      • Security obligations and breach response. Assist you in ensuring compliance with your obligations pursuant to Articles 32 to 36 of the GDPR (Security of Personal Data and Data Protection Impact Assessments) and any similar obligations under DP Law taking into account the nature of the processing and the information available to us; and
      • Data Subject Rights (DSRs). Taking into account the nature of the processing, assist you (by appropriate technical and organisational measures), insofar as this is possible, in fulfilling your obligations to respond to requests for exercising the Data Subjects’ Rights under Chapter III of the GDPR (and any similar obligations under applicable Data Protection Laws) in respect of any Protected Data.
  • International Data Transfers
    • Appropriate Safeguards. We shall not process and/or transfer, or otherwise directly or indirectly disclose, Protected Data in or to countries outside the United Kingdom or the EEA or to any International Organisation unless Appropriate Safeguards are in place. We undertake to minimise the amount of Protected Data subject to International Data Transfers and will implement the Appropriate Safeguards described in Annex A (Details of Processing) and in the List of Sub-Processors.
    • Transfers after Brexit. Note that our server is located the Republic of Ireland. It is your responsibility to ensure that if you transfer Protected Data stored on our servers to the UK after the UK has left the European Union, such processing may constitute an International Data Transfer. We do not have control over these decisions and we do not provide legal advice. You assume full responsibility for determining whether International Data Transfer rules apply and ensuring you implement Appropriate Safeguards. We disclaim any liability for any and all DP Losses that may result.
    • Limitation. You acknowledge that due to the nature of cloud services, Authorised Users or others acting on your behalf may initiate International Data Transfers of Protected Data to other geographical locations when using the Service. You acknowledge that we do not control such processing and you shall ensure that Appropriate Safeguards are in place for such transfers.
  • Audits and processing
    • We shall, in accordance with DP Law, make available to you such information that is in our possession or control as is necessary to demonstrate our compliance with our obligations under this DPA and Article 28 of the GDPR (and its equivalent under DP Law), and allow for and contribute to a maximum of one audit (including inspections) by you (or another auditor agreed by us) for this purpose per 12 month period at your sole cost and subject to a binding undertaking of confidentiality.
  • Breach
    • We shall notify you in writing without undue delay on becoming aware of any Personal Data Breach that may involve Protected Data.
  • Deletion/return
    • Upon termination of the Services, at your cost and your option, we shall either enable you to return all of the Protected Data to you  (through our self-serve download or export or related functions) or securely dispose of it (and thereafter promptly delete all existing copies) except to the extent that any Applicable Law requires or permits us to store or continue to process such Protected Data. This clause shall survive termination or expiry of the Agreement or this DPA.
  • Indemnity
    • You shall indemnify us and keep us indemnified against all losses, claims, damages, liabilities, fines, sanctions, interest, penalties, costs, charges, expenses, compensation paid to Data Subjects, demands and legal and other professional costs (calculated on a full indemnity basis and in each case whether or not arising from any investigation by, or imposed by, a Supervisory Authority), including all Data Protection Losses arising out of or in connection with any breach by you of your obligations.
  • Data protection contact
    • Our Privacy Lead Yael Almog, Product Manager may be contacted at service@inforumobile.co.uk.

Annex A: Details of Processing

Processing of the Protected Data by us under this DPA and the Agreement shall be for the subject-matter, duration, nature and purposes and involve the types of Personal Data and categories of Data Subjects set out in this Annex A based on the expected use of the Services by Customers. You may use some of the functionality we provide to make it easier for you to ensure your use of the Services complies with DP Law and that you respect your Contact’s choices. See our Support Centre https://inforumobile.co.uk/support-center/ for details.

We provide a self-serve, cloud-based platform and Services that you may customise according to your needs. You (and your Authorised Users) are the Controller and therefore decide which Services to use, how to configure them, what Personal Data to process and why. The Details of Processing will vary according to your Processing Instructions but are generally described below based on possible use of the Service.

Brief description of processingCustomers can use the self-serve platform to send marketing messages by SMS, create landing or registration pages, create surveys, manage Contact communication preferences, track and tag campaigns for internal metrics, generate other reports to gauge the effectiveness of their campaigns, and embed code permitting them to track where inbound traffic originates and generate analytics (e.g. Google Analytics).
What processing is being done?The processing activities will be performed by you in your capacity as Controller.  Any processing InforUMobile performs as a Controller e.g. for billing purposes is described in our Data Privacy Notice https://inforumobile.co.uk/ufaqs/inforumobile-privacy-policy/.
Duration of processing  You determine the duration and frequency of Contact Communications using the Service’s various settings and features. Contact Data and Communications you input or generate will remain in your account until you delete or destroy it or upon termination as provided in clause 13 of the DPA.
How is the processing being done?  Contact Data and Contact Communications Data are processed using various self-serve options initiated by you or your Authorised Users.
Why is the processing being done?Customer may use the Service to generate leads, manage Contact relationships, conduct market research, or generate sales. The aim of Contact Communications will generally be to direct Contacts to Customers’ own websites / digital properties or make purchases.
What types of data are being processed on behalf of Customer?  Contact Data and Communications Data: derived data from usage (IP address to track unsubscribes; aggregated metrics for reporting, cookie and analytics data embedded by Customer (only available to Customer), metadata confirming a Contact Communication was sent or open, contents of Contact Communications (but see Security Measures https://inforumobile.co.uk/ufaqs/security-measures/, Contact preferences, suppression lists, etc.
Sensitive dataThe Services are not designed to be used to process sensitive data, including Special Category data whose processing is restricted under Art. 9, GDPR and related DP Law, such as health, ethnicity, political opinion; Criminal Records data, which is restricted under Art. 10,  GDPR; Financial data; Location data. If you or an Authorised User uses the Services to process such data you Acknowledge and mitigate the potential risk of harm to the individuals concerned; you will fulfil any additional requirements (e.g. obtain explicit consent to process health data)]. Assume full liability for such use and indemnify us against any resulting Data Protection Losses.
Are cookies and other tracking tools used?In connection with the Services, we use cookies and other tracking technologies that are necessary to ensure our Contact Communications function properly and to manage preferences. For more detail see our Cookie Notice https://inforumobile.co.uk/ufaqs/inforumobile-cookie-policy/ .   Note: You shall provide Contacts with an appropriate Data Privacy Notice related to the processing of cookie data and a means (e.g. a cookie dashboard, links to settings, etc.) to enable them to opt into cookies (where prior consent is required under DP Law) and/or manage their preferences. You may choose to embed cookies and other trackers, for example for Google Analytics or other code in your various channels, even outside the Services, to track how Contacts have come to your landing page. We do not see or use this data. You are solely responsible for ensuring your use of such options complies with DP Law and your obligations under clause 4.2.1(b) of this DPA.
Who is the data about?  Contacts, Authorised Users, Customer who are natural persons. Note: The Services are designed for use with adults, not for children under 16 years of age or vulnerable people. If your Contacts include or may include children or vulnerable people, you are solely responsible for ensuring you meet the additional requirements under DP Law. See e.g. ICO guidance.
What risks does the data processing pose to data subjects (if any)?  Any type of Personal Data Breach, including use of Protected Data beyond the original purpose or a compatible purpose, e.g.: Marketing under the guise of market research (for the survey functionality) (“sugging”) without fulfilling marketing rulesAccess by unauthorised individuals to Protected DataRetaining Protected Data longer than necessary Processing children’s Personal Data or communicating with children or vulnerable people without appropriate protections.
What mitigating measures are being taken to address those risks?Customer is responsible for ensuring use of the Services complies with DP Law.InforUMobile has implemented various controls and security measures (see Security Measures https://inforumobile.co.uk/ufaqs/security-measures/)The Services include functionality that Customer may use to address these risks, as well as pop-up reminders, training videos, materials and manuals, and technical Support.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

(Last modified 20-02-2019)

  1. We collect IP addresses from visitors to our Website and Platform. This allows us to identify the location of Users, to block disruptive use and to establish the number of visits from various territories.
  2. The data is analysed on a meta-level for trend and statistic purposes, such as which parts of our website are visited and how long visitors spend on them.
  3. By using the Service and accepting the terms of this Privacy Policy, Data Subject consents to our use of cookies used to recognise repeat users.
  4. An HTTP cookie (also called web cookie, Internet cookie, browser cookie, or simply cookie) is a small piece of data sent from a website and stored on the user’s computer by the user’s web browser while the user is browsing. Cookies were designed to be a reliable mechanism for websites to remember stateful information or to record the user’s browsing activity (including clicking particular buttons, logging in, or recording which pages were visited in the past).
  5. Cookies allow us to track behavior, compile data for targeted advertising and help us deliver functions that ameliorate Data Subject’s browser experience.
  6. As well we use third parties such as Google Analytics to collect user information. We are not responsible for the privacy policies and practices of third party data controllers, and we disclaim all liability in relation to same.
  7. By using the Service and accepting the terms of this Cookie Policy and those of the Privacy Policy (available on https://inforumobile.co.uk/ufaqs/inforumobile-privacy-policy/) you are consenting to the use of cookies as described (i.e. you are agreeing to the placement of cookies on your device unless you specifically choose not to receive cookies). You will be given the opportunity to object to the use of cookies on the website by way of a ‘pop-up’.
  8. The ‘Help Menu’ on the menu bar of most browsers will tell you how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie and how to disable cookies altogether.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

(Last modified 20-02-2019)

For the purpose of this document, “We/ Us” relates to InforUMobile; “Data Subjects” relates to InforUMobile Website Visitors, Account Openers, Users and Customers; “Personal Data” relates to information that can be used to directly or indirectly identify a Data Subjects.

In the course of our business operations and your interaction with our website, we receive, collect and maintain personal data on Data Subjects. We are committed to protecting the privacy of those individuals who have given us their details and whose details we maintain.

Following are the details concerning our handling of Personal Data:

  1. The Personal Data collected includes: (i) basic information, such as your name and surname, the company you work for; (ii) contact information, such as your postal address, email address and phone number(s); (iii) financial information, such as payment-related information; (iv) technical information, such as information from your visits to our website or applications or in relation to materials and communications we send to you electronically; (vi) identification and background information provided by you; or (vii) any other information relating to you which you may provide to us. In respect of this Personal Data InforUMobile is regarded as a Data Controller.
  2. We process Personal Data of Data Subjects who submit us their information in a form or otherwise, to assist with queries they may have and offer them our Services by contacting them and sending them marketing information. The said Personal Data may be processed for marketing purposes such as customised and direct marketing, operational purposes, administration notices, invoicing, database management and maintenance, product suggestions and offers, interaction with external social networks, heat mapping, newsletters and more.
  3. As well, the Personal Data is processed for the performance of the Agreement between the Data Subject and us, as per our legitimate interests related to the Customer, our business relationship with him/her and in order to comply with legal obligations such as accounting and administration and fulfill our regulatory and risk management obligations. It is hereby emphasized that we are unable to provide the Services to a Data Subjects who refuse the processing of their Personal Data.
  4. By using the Service and accepting the terms of this Privacy Policy, Data Subject consents to our use of cookies. To see our cookie policy go to https://inforumobile.co.uk/ufaqs/inforumobile-cookie-policy/.
  5. All information you provide to us is stored on our secure servers or those of our Sub-Processors – see Annex C to the Data Protection Addendum for a list of Sub-Processors.
  6. Where Data Subject has chosen or where we have given him/her a password which enables him/her to access any part of our Platform, Data Subject is responsible for keeping this password confidential.
  7. We have taken adequate technical and organisational measures in order to keep Personal Data safe and to secure it against unauthorized access, loss, misuse or alteration by third parties, such as encryption, access controls, firewalls, etc. Nevertheless, considering nowadays cyber threats, we cannot fully guarantee that our security measures will prevent illegally and maliciously operating third parties from obtaining access to Personal Data and the absolute security of that information during its transmission or its storage on our systems.
  8. We endeavor keeping Personal Data accurate and up-to-date. As such, Data Subjects are required to update us as soon as possible about any changes to such information.
  9. Data Subject has the right to:
    a. Request from us the update/ rectification/ erasure of the Data Subject’s Personal Data;
    b. Request from us the restriction/objection of processing of information concerning the Data Subject;
    c. Receive Data Subject’s Personal Data as provided to us (not as generated by us), to be delivered to him/her in a commonly used electronic format;
    d. Complain to the DPC if he/she believes we have not handled their Personal Data in accordance with the Data Protection Legislation.
    Data Subject may exercise the aforementioned 9a – 9c rights by sending a written request to us at serviceie@inforumobile.com.
  10. We are not responsible for any delays, delivery failures, or any other loss or damage resulting from the transfer of data over communications networks and facilities or failure on the part of any other service provider.
  11. Personal Data may be disclosed, when necessary, to authorities and applicable law agents.
  12. Personal Data may be transferred to jurisdictions outside the European Union and the European Economic Area (“EU/EEA”) subject to appropriate safeguards. It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. By submitting Data Subject’s personal data, he/she consents to this transfer, storing or processing.
  13. Personal Data will be kept and stored for such period of time as we deem necessary taking into account the purpose for which it was initially collected.
  14. Where we retain information for Service/website improvement and development, we take steps to eliminate information that directly identifies you, and we only use the information to uncover collective insights about the use of our Service/website, not to specifically analyse personal characteristics about you.
  15. We may continue to process Data Subjects’ Personal Data in certain circumstances in accordance with Data Protection Legislation (i.e. where we have a legal justification to continue to hold such Personal Data, such as it being within our legitimate business interest to do so such as retaining evidence of billing information etc.).
  16. All contacts and inquiries related to this Privacy Policy are to be addressed by email to serviceie@inforumobile.com.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

The InforUMobile Platform allows you to operate your communication with your customers in a GDPR-compliant manner. This includes but is not limited to:

  • A mandatory requirement to confirm all Contacts you upload to the Platform have given their consent to receiving messages.
  • Optout import interface.
  • Strict enforcement of Optout mechanism for Contacts who have been optedout – whether on their initiative or yours.
  • Various tools available for you to include an Optout option in each message you send as you see fit.
  • GDPR-Compliant registration form templates and tools for you to make use of.
  • Flexibility in  deleting contact information if required.

In case of any question concerning the usage of the Platform in view of the GDPR you are to contact our Customer Success Team.

If you are logged-in the Platform hover over the Support Icon on the toolbar and select the Open Support Request option :

Once on the Support Request screen select GDPR Inquiry among the subject options and enter your request:

When doing so please ensure you include in your query your Username or User Number to allow efficient processing of your matter. Both are available on the Platform toolbar:

If you are not logged-in the Platform you are welcome to contact us in any of the following means:

             

Comment on this FAQ

Your email address will not be published. Required fields are marked *

In order for a Leads Form to be GDPR-compliant you must include in it an unchecked checkbox in which you seek the visitor’s consent to the following:

  1. Your Privacy Policy, including the means by which you intend to store the data received from the visitor who filled the form on your Landing Page.
  2. Receipt of occasional marketing information from your side.

To include the above-said checkbox/es in your form do the following:

Mobile Version

  • Drag a form element to the Stage
  • Hover over the form element
  • Press on the editing icon that appears while hovering
  • Press on Add Field
  • Select Checkbox

Once selected edit the checkbox phrasing in the Form fields list, tick the required checkbox and press save.

The updated field will appear in the form:

Desktop Version

  • Drag a Form Field to the Stage, use the scroll to reach the element in the menu:

  • Adjust the field placement on the Stage by dragging it to the required position.
  • Hover over the form element
  • Press on the editing icon that appears while hovering
  • Edit the element by entering the checkbox phrasing, editing its appearance and checking the required box:

  • Press Save

Being a mandatory field (marked as “required”) your Page visitors will not be able to submit the form without checking the box and giving their formal active consent as required by the GDPR.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

Managing your Contact fields will allow you to organize the Contacts data you wish to store on the Platform in a methodical way, permitting smart sendings accordingly.

To manage your fields you must first access the Contacts Management area from the platform toolbar:

or from within the SMS module:

Once on the Contacts screen press the Manage Fields button:

You will see that the Platform offers numerous default fields:

As well it enables creating up to 20 customizable fields for your convenience. To add a Custom Field press on the Add option and create it as per your needs:

To manage fields by API we recommend using the API Info. option:

Once you’ve created your fields you will see them on the Contact editing screen and will be able to upload Contacts to the Platform bearing information concerning these fields and create dynamic Contact Groups on basis of these fields.

For details on how to upload Contacts press here.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

Optouts on the Platform are managed at a contact detail level – Phone number and Email address apart.

To manage your Optouts you must first access the Contacts Management area accessible from the Platform toolbar:

or from within the SMS module:

Press the Optouts tab on the Contacts Management Menu.

On the Optouts screen you will find all Optouts accumulated todate -on the Platform – those optedout on your initiative and those who optedout on their own account.

Hovering over each grid-line will allow you to change the Optout status of the contact detail and view its history.

To import Optouts press on the Import Optouts button:

To import Optouts type or paste the list of details to be optedout in the box.

These are to be placed in a column format one after the other:

Next insert your details on the right and press on the Remove button.

The Optouts will be immediately processed by the Platform. As soon as optedout you will not be able to send messages to the numbers appearing on the list. That is true also in the event you include them in the recipients designated to receive a message you are sending.

If a contact detail has been optedout and you wish to cancel the optout and reinstate it go to the Contacts screen. On it locate the Contact you wish to make the change in relation to (you can use the search bar).

Once located Hover over the Contact on the grid, you will notice a lock action icon appearing, press on the icon:

This will open the status window in which you can make the required changes by pressing on the toggle and entering the necessary details:

When done press Update and the changes will come into force.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

The Contacts Management area is accessible from the Platform toolbar:

and from within the SMS module:

To reach the Group Management area press the Groups button on the Contacts screen:

On the Groups screen you will find all the Groups set on the Platform todate. For each you will see how many active Contacts it includes, when was it created, what type of Group it is and more.

When hovering over a grid line action buttons will appear. With them you will be able to view the Contacts affiliated to the Group, edit the Group and delete it. Further action options are available under the top Actions button:

These include assign or unassigned contacts to Group, merge two Groups and more.

To Create a new Group press the Create Group button:

This will lead to the Group creation screen where you will set the Group attributes (such as Category for tagging purposes) and will import Contacts to the Group:

Comment on this FAQ

Your email address will not be published. Required fields are marked *

To change the contact details status (for example Optout the Contact from the Platform or cancel the Optout if they wish to be reinstated) go to the Contacts Management area, accessible from the Platform toolbar:

or from within the SMS module:

Once you are on the Contacts screen locate the Contact you wish to make the change in relation to.

Hover over the Contact on the grid, you will notice a lock action icon appearing, press on the icon:

This will open the status window in which you can make the required changes by pressing on the toggle and entering the necessary details:

When done press Update and the changes will come into force.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

The Contacts Management area is accessible from the Platform toolbar:

and from within the SMS module:

When hovering over a contact on the Contacts screen action buttons will appear. By help of these you can edit the Contact and its status:

The Contact editing screen includes all the fields and information related to the Contact – identification, contact details, affiliation to Groups on the Platform, custom fields and status:

All information is editable. Changes made must be saved by pressing the Save button.

If you wish to change the status of a Contact’s contact details (for example Optout the Contact from the Platform or cancel the Optout if they wish to be reinstated) press on the lock in the Contacts grid:

This will open the status window in which you can make the required changes by pressing on the toggle and entering the necessary details:

When done press Update and the changes will come into force.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

The Contacts Management area is accessible from the Platform toolbar:

and from within the SMS module:

To import a single contact press the Add Single Contact button at the top of the Contacts screen:

For a contact to be logged on the Platform it must include at least one valid contact detail – phone number or email.

To import numerous Contacts press the Import Contacts button at the top of the Contacts screen:

This will lead us to the Contacts Import Four-Stage wizard:

Stage 1 – Import

Offers two importing options:

  1. Import by typing or pasting copied information in the box:

The details are to be entered in a row. To view examples of formats click the View examples link on the top right-hand corner.

2. Import by uploading an Excel spreadsheet. To upload the sheet press the Upload button on the File upload tab:

To ensure the details are logged well it is recommended to download the example file and insert the information you wish to upload in it.

Once the file is uploaded you will see its name on the screen.

Press the Continue button to proceed to the second Stage of the wizard.

Stage 2 – Field Assignment

In this Stage you will ensure that the columns uploaded are associated to the correct Contact fields you have on the Platform in order for the data to be stored correctly. The Platform automatically assigns fields it recognizes. Any assignment can be changed by selecting a relevant option from the column header dropdown menu. Columns marked in orange are those that cannot be assigned automatically and therefore require manual assignment. If you do not wish to assign a certain field select the Ignore option:

Once done press continue.

Stage 3– Group Assignment

At this Stage you will be required to assign the newly imported contacts to the Group of your choice. You can assign them to a new Group, you can assign them to an existing Group and you can assign them to no Group at all, in which case they will be “floating” Contacts.

When done press Continue.

(Note: if the Group association was covered in the upload Stage the Platform will skip this Stage and will move on to the next).

Stage 4 – Summary

At this Stage the upload process has been completed and the Platform provides a summary of its outcome. You will see the number of New Contacts uploaded and the number of Existing Contacts updated. As well if any details have not been uploaded due to incompatible data you will be able to export them from the file the Platform provides to allow fixing on your end and uploading again once fixed:

Comment on this FAQ

Your email address will not be published. Required fields are marked *

The Contacts Management area is accessible from the Platform toolbar:

and from within the SMS module:

Contacts Screen

On the Contacts screen you will find the following information:

  • All Active Contacts logged on the Platform. An Active Contact is a Contact that has at least one active contact detail – Email or Phone number.
  • Date created.
  • Contact details available and their status – Phone number or Email, active or opted out.

You can use the search bar to locate Contacts. The table columns can be sorted and Contacts can be exported by pressing on the Excel icon on the right. When hovering over a contact action buttons will appear. With these you can edit the Contact, edit its status and delete it.

Editing a Contact

The Contact editing screen includes all the fields and information related to the Contact – identification, contact details, affiliation to Groups on the Platform, custom fields and status:

All information is editable. Changes made must be saved by pressing the Save button.

Status Change

If you wish to change the status of a Contact’s contact details (for example Optout the Contact from the Platform or cancel the Optout if they wish to be reinstated) press on the lock in the grid:

This will open the status window in which you can make the required changes by pressing on the toggle and entering the necessary details:

When done press Update and the changes will come into force.

Importing Contacts

To import a single contact press the Add Single Contact button at the top of the Contacts screen:

For a contact to be logged on the Platform it must include at least one valid contact detail – phone number or email.

To import numerous Contacts press the Import Contacts button at the top of the Contacts screen:

This will lead us to the Contacts Import Four-Stage wizard:

Stage 1 – Import

Offers two importing options:

  1. Import by typing or pasting copied information in the box:

The details are to be entered in a row. To view examples of formats click the View examples link on the top right-hand corner.

2. Import by uploading an Excel spreadsheet. To upload the sheet press the Upload button on the File upload tab:

To ensure the details are logged well it is recommended to download the example file and insert the information you wish to upload in it.

Once the file is uploaded you will see its name on the screen.

Press the Continue button to proceed to the second Stage of the wizard.

Stage 2 – Field Assignment

In this Stage you will ensure that the columns uploaded are associated to the correct Contact fields you have on the Platform in order for the data to be stored correctly. The Platform automatically assigns fields it recognizes. Any assignment can be changed by selecting a relevant option from the column header dropdown menu. Columns marked in orange are those that cannot be assigned automatically and therefore require manual assignment. If you do not wish to assign a certain field select the Ignore option:

Once done press continue.

Stage 3– Group Assignment

At this Stage you will be required to assign the newly imported contacts to the Group of your choice. You can assign them to a new Group, you can assign them to an existing Group and you can assign them to no Group at all, in which case they will be “floating” Contacts.

When done press Continue.

(Note: if the Group association was covered in the upload Stage the Platform will skip this Stage and will move on to the next).

Stage 4 – Summary

At this Stage the upload process has been completed and the Platform provides a summary of its outcome. You will see the number of New Contacts uploaded and the number of Existing Contacts updated. As well if any details have not been uploaded due to incompatible data you will be able to export them from the file the Platform provides to allow fixing on your end and uploading again once fixed:

Group Management

To reach the Group Management area press the Groups button on the Contacts screen:

On the Groups screen you will find all the Groups set on the Platform todate. For each you will see how many active Contacts it includes, when was it created, what type of Group it is and more.

When hovering over a grid line action buttons will appear. With them you will be able to view the Contacts affiliated to the Group, edit the Group and delete it. Further action options are available under the top Actions button:

These include assign or unassigned contacts to Group, merge two Groups and more.

To Create a new Group press the Create Group button:

This will lead to the Group creation screen where you will set the Group attributes (such as Category for tagging purposes) and will import Contacts to the Group:

Optout Management

Optouts on the Platform are managed at a contact detail level – Phone number and Email address apart.

On the Optouts screen you will find all optouts accumulated todate – those optouted on your initiative and those who optedout on their own account.

Hovering over each grid-line will allow you to change the Optout status of the contact detail and view its history. To import Optouts press on the Import Optouts button:

To import Optouts type or paste the list of details to be optedout in the box.

These are to be placed in a column format one after the other:

Next insert your details on the right and press on the Remove button.

The Optouts will be immediately processed by the Platform. As soon as optedout you will not be able to send messages to the numbers appearing on the list. That is true also in the event you include them in the recipients designated to receive a message you are sending.

Field Management

The fields allow us to organize the Contacts data we wish to store on the Platform in a methodical way as to allow managing our sendings accordingly. We will access the Fields Management area by pressing the Manage Fields button on the Contacts screen:

The Platform offers numerous default fields:

As well it enables creating up to 20 customizable fields for your convenience. To add a Custom Field press on the Add option and create it as per your needs:

To manage fields by API we recommend using the API Info. option:

Once you’ve created your fields you will see them on the Contact editing screen and will be able to upload Contacts to the Platform bearing information concerning these fields and create dynamic Contact Groups on basis of these fields.

Comment on this FAQ

Your email address will not be published. Required fields are marked *

To login the Platform visit: https://inforumobile.co.uk and press on the Login button on the menu:

This will lead you to the login screen where you will be required to enter your Username and Password:

If you forgot one of them, you can always click on the links Forgot Password or Forgot Username. You will be redirected to recover the details required for your login. To recover your password you will be requested to enter your Username. A password recovery email will be sent to the email address affiliated to this Username. If you are missing the Username you will be requested to enter your email address where you will receive a reminder of the Username affiliated to this address.

To create an account on InforUMobile visit: http://inforumobile.co.uk and press on the Create Account button on the menu:

This will lead you to the account-creating page where you will be required to supply the following information:

Full Name – The First and Last Name of the account holder.

Company – The Company/ Firm / Organization that the account is to be associated with and who will use the account for its business purposes.

Email Address – The Email address of the account holder. It will serve as the account Username. You will be required to use it, along with the password, in order to login the account. As well, this address will serve us in communicating with you on an ongoing basis. Support materials, information on how to use the Platform and tutorials will be sent to it. Note that an account cannot be opened more than once for a specific email address.

Phone number – The phone number of the account holder.

Password – The password you wish to use in order to access the account. It must comprise of six characters and above, of which at least one is a letter and one is a digit. For your own security, please refrain from sharing the password with any other party.

Aside from this, you will be required to accept the InforUMobile Terms & Conditions and Privacy Policy by ticking the box.

After filling the form press on the Open Account button. The account will immediately be available to you. To login press on the Login button on the website.

Once the account is open, an email with account information and user support materials will be sent to the email address you provided on the form. If you are using Gmail, check your Updates or Promotions tab to view this email.

Load More