About Data Protection
I am required by law to tell you about your rights and my obligations regarding how I collect and process any personal information you provide. I always ensure that any personal information you supply is only with your consent and will always be held securely and treated confidentially and lawfully.
I take seriously the protection of your privacy and your confidentiality and understand that all visitors to my website are entitled to know that their personal data will not be used for any purpose unintended by them and will not accidentally fall into the hands of a third party. I do not share, sell or disclose to a third party any information you have explicitly given me or I have collected through this website.
This policy complies with the UK law accordingly, including that required by the EU General Data Protection Regulation (GDPR).
How I use information and the legal basis.
I am allowed to use your data only if I have a proper reason to do so such as:
One example would be when you sign up to a newsletter.
Another example would be when you provide personal information via the enquiry form. I will take that information to communicate with you.
When you consent to allow me to use your data.
I have set out below how and why I may use your personal information and the legal basis I rely on.
The following tells you about the information that I might collect from you, what I do with it and how I keep your information safe. It sets out the conditions under which I may process any information that I we collect from you or that you provide. It covers information that could not identify you (“non-personally-identifiable information”) and information that could (personally-identifiable information). In the context of the law and this notice, “process” means collect, store, transfer, use or otherwise act on information.
Non-personally-identifiable information (Non PII)
Non-PII is simply data that is anonymous. This data cannot be used to distinguish or trace an individual’s identity such as their name, NI number, date and place of birth, bio-metric records etc. As a result, this data does not require encryption before it is transmitted as there is no scope for misuse that would result in harm to any individual.
Non-PII typically includes data collected by browsers and servers using cookies. Device type, browser type, plugin details, language preference, time zone, screen size are a few examples of non PII data.
I collect non-PII of the kind that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request.
Generally the purpose in collecting non-PII is to gather statistics about the behaviour of the visitors, in order to better understand how they use a website.
Gathering of Personally-Identifiable Information (PII)
Certain visitors to my website choose to interact with me by email or by completing and submitting an enquiry form where they need to provide a name and an email address. In this situation the visitors provide their consent for me to collect and process the data they give in order to enable me to reply to them with the information required.
I also record their request and my reply in order to increase the efficiency of my communication with them. I keep personally identifiable information associated with their messages, such as their name and email address so I can track my communications with them.
I may also collect potentially personally-PII like internet protocol (IP) addresses. However, I do not use such information to identify the visitors and do not disclose such information to third parties.
Protection of Certain Personally-Identifiable Information
I take all measures necessary to protect against the unauthorised access, use, alteration, or destruction of potentially PII data.
My website and electronic systems are maintained by qualified professionals to ensure they meet all privacy standards and comply with the general data protection security and protection policies.
How you can access the personal information whcih I hold about you.
If you have any queries or requests regarding the data I hold on you, you can send your request to email@example.com and I will respond to your request within 30 days.
How long I keep information.
I will not keep your information any longer than I need to or are required to in line with relevant legislation and regulations, currently 6 years for accounting purposes.
I continue to process your information on the basis outlined above until you withdraw your consent or it can be reasonably assumed that your consent no longer exists.
You may withdraw your consent at any time by instructing me at firstname.lastname@example.org . However, if you do so, you may not be able to use my website or my services further.