For the purpose of The General Data Protection Regulation (GDPR) (EU) 2016/679, the data controller is Kris McCarthy.
What information do we collect?
We may collect and process various kinds of data about you when you complete a contact form, browse our website or use our services.
- The data collected through the contact form includes first name, last name, email address, phone number and other information you include in your message to us.
- Your contact information required when you use our services. This includes name, email address, phone numbers, address.
Please note that we do not collect any special categories of personal data, this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, criminal convictions, trade union membership, information about your health and genetic and biometric data.
How do we use personal information?
We use this personal information for the following purposes:
- Providing our services to you
- Account set up and administration
- Improving the user experience of our website
- Delivering marketing communications
- Carrying out polls and surveys
- Internal research and development purposes
- To meet our legal obligations (e.g. the prevention of fraud)
When do we share personal data?
We will never lease or sell your personal information to third parties unless we have your permission or the law requires us to.
We may have to share your personal data with trusted third parties examples of the kind of third parties we work with are:
- IT companies who support our website and other business systems
- Companies and contractors who work in conjunction with us to carry out work on your behalf (e.g. a printer)
- Professional advisers including lawyers, bankers, auditors and insurers who provide legal, banking, insurance and accounting services.
- HM Revenue & Customs, our regulators and other authorities who require reporting of processing activities in certain circumstances.
- Third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy notice.
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not knowingly allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
Where do we store and process personal data?
We will do our best to protect your personal data, however, we cannot guarantee the security of your data transmitted through our website. Any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
How do we secure personal data?
To help keep your personal data secure, we put in measures to:
- protect data against accidental loss
- prevent unauthorised access, use, destruction or disclosure
- ensure business continuity and disaster recovery
- restrict access to personal information
- train staff and contractors on data security
- manage third-party risks, through use of contracts and security reviews
- We have implemented strong electronic safeguards including a SSL encryption across the entire website, enabling an encrypted link between the website server and browser.
How long do we keep your personal data for?
We will retain your personal data for no longer than reasonably necessary to fulfil the purposes we collected it for.
The retention period for personal data will be determined by the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use and the applicable legal requirements.
By law, we have to keep basic information about our customers for seven years after they cease being customers for accounting purposes.
Your rights in relation to personal data
You have the right to ask us not to process your personal data for marketing purposes. We will inform you before collecting your data if we intend to use your data for such purposes and an opt-in mechanism will always be provided. You can ask us to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you or by contacting us directly.
You have the right to access, correct or request deletion of information held about you. You can exercise the right at any time by contacting us at email@example.com. This right may be limited if the request may expose personal data about another person or if we are required to keep the information by law.
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns you have before you approach the ICO and so please contact us in the first instance.
Links to third party websites
Our site contains links to third-party websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies.
How to contact us
If you have any questions or concerns about our privacy practices, your personal information, or if you wish to file a complaint, please contact us at firstname.lastname@example.org