Privacy & Data Protection Policy
Last updated: 5th June 2019
In line with the EU’s General Data Protection Regulations (GDPR) we explain how we collect and treat any information you give us. We’ve tried to keep the wording in this policy easy to read and understand. If you have any questions or concerns, please contact our Data Protection Officer: firstname.lastname@example.org
About your data
What information we collect, where we store it and what we do with it.
The form will send an email to us, as detailed above. We do not store a copy of the emails in our website content management system (CMS).
We will ask for your name, business name, business address, delivery / service address (if different), business phone number and business email address. We use this information to do business with you, including sending proposals, invoices, statements, reports and reminders. We store your information in our accounting and customer relationship manager (CRM) software.
We may ask for bank details, credit / debit card numbers or other payment information. We request this information to be able to process your payment. We do not store this payment information. We use a third party payment provider, Worldpay, who are legally responsible for your payment information. These third parties do not pass your information to us.
We will ask for your name and email address, so we can personalise the newsletter and send it to you. We store your information in our marketing platform. You can unsubscribe at anytime using the link in each newsletter email.
We may also use a customer relationship management (CRM) or project management tool to keep a track of your information and our conversations in once place.
Who has access to your information
Our management team have access to everything you’ve provided. Individual employees only have access to what they need to do their job.
We will not share your information with anyone outside of our organisation, unless required to do so by law.
How we keep your information private
Your information is stored on both our internal network and third-party, cloud-based services online. These services and our networks are secured by password-protection, and where available, two-factor authentication. To access your information we use computers protected by password or fingerprint recognition and mobile devices protected by passcode, fingerprint or facial recognition.
Who is responsible for your information
Our data protection officer, Tom Scott, is responsible for your information. If you have any concerns about the information we store, you can contact them by email email@example.com.
You have rights under data protection laws in relation to your personal information. These include the right to:
- request access to your personal data
- request correction to your personal data
- request removal of your personal data
- object to processing of your personal data
- withdraw consent to processing of your personal data
- complain about the way we handle your data
If you would like to action any of your legal rights, please contact our data protection officer by email firstname.lastname@example.org.
Changes to this policy
If we change the contents of this policy, those changes will become effective the moment we publish them on our website.
Last reviewed on: 5th June 2019