Updated: 13th August 2019
|Maintaining your privacy and your trust is very important. We strive to be especially clear on how we use your personal information if and when we collect it, and on the ways in which we can work together to protect your privacy.
Data Protection Act 2018 & General Data Protection Regulation (also known as Regulation (EU)2016/679 or “GDPR”).
What products and services are covered by this policy?
For the purposes of the data protection & privacy legislation the Data Controller is:-
Purpose and lawful basis
The personal data that we process is:
necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract and/or;
necessary for compliance with a legal obligation to which the controller is subject and/or;
necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
Special category personal data is processed as:
necessary for the purposes of carrying out the obligations and exercising specific rights of the controller or of the data subject in the field of employment and social security and social protection law in so far as it is authorised by Union or Member State law or a collective agreement pursuant to Member State law providing for appropriate safeguards for the fundamental rights and the interests of the data subject and/or;
necessary to protect the vital interests of the data subject or of another natural person where the data subject is physically or legally incapable of giving consent.
How do we use the information we collect?
We may use the information we collect for a variety of purposes, including to:
Categories of personal data and Sources
What information do we collect from you, and how is it used?
You can visit our website without telling us who you are and without revealing any personal information about yourself. To provide full service however, we will most often need to collect some personal information. For instance, we collect information about you when you register for an account and when you create or modify your personal data on one of our Services. The types of Information we collect may include name, location address, email address, country of residence, and phone number.
We do not process personal data nor facilitate processing personal data of data subjects under the age of consent (children).
Logs: We may record certain information and store it in log files when you interact with our Services. This information may include Internet protocol (IP) or other device addresses or ID numbers as well as browser type, Internet service provider, URLs of referring/exit pages, operating system, date/time stamp, information you search for, locale and language preferences, your mobile carrier, and system configuration information.
Analytics: We and our analytics providers also collect and store analytics information when you use our Services to help us improve our Services. We make sure this data is anonymous by not connecting any analytics data to personally identifiable data such as a name, email address, physical address, or phone number.
|How might we share information?
We are not in the business of selling your personal information. We consider this information to be a vital part of our relationship with you. There are, however, certain circumstances in which we may share your personal information with third party data processors, as set forth below:
With your consent: We will not share your personal information with companies, organisations, or individuals who are not associated with us unless we have your affirmative consent to do so.
Payment Processing: We use a third-party service provider to manage credit card processing. This service provider is not permitted to store, retain, or use billing information except for the sole purpose of credit card processing.
Newsletter Service: We may use a commercial application to facilitate a newsletter service.
Compliance with Laws and Law Enforcement Requests; Protection of Our Rights: We may disclose your information (including your personal information) to a third party if:
We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company. We will notify you of such a change in ownership or transfer of assets by posting a notice on our website.
Any data transfers and/or data processors acting on behalf of the data controller have appropriate safeguards in place.
How long will we keep the personal data?
Retaining some data is subject to a statutory retention period and this must be adhered to, (to keep certain data for a minimum period of time). This may include personal data (name, address, contact details), but on expiry of such statutory requirement, such data can be destroyed securely. Where possible any personally identifiable data willbe anonymised or pseudonymised.
Your information we use for marketing purposes will be kept with us until you notify us that you no longer wish to receive this information.
|Statutory or other requirements
The data controller does not require personal data to be supplied as part of any contractual agreement, however in respect of the controllers services, certain communications may not be possible without such personal data being supplied, for example an email to furnish with updates information etc.
Profiling and Automated Decision Making
No profiling or automatic decision making processes are undertaken by the data controller in respect of any personal data processing activities.
Your fundamental rights as a Data Subject are:
Under the right of access (2), you have the right to obtain:-
– confirmation that your data is being processed;
So that you are aware of and can verify the lawfulness of the processing
Your right to access can be exercised by contacting the data controller as above.
Fundamental rights are not absolute.
|Your right to complain to the supervisory authority/regulator
You have the right to complain about organisations processing your personal data. You can exercise this right by contacting the supervisory authority of the data controller as follows:-
Information Commissioner’s Office
Tel: 0303 123 1113 (local rate) or 01625 545 745 if you prefer to use a national rate number