All data is processed lawfully, fairly, transparently and in accordance with data protection legislation. We think this privacy notice is written in clear and transparent language, but if you disagree or have any questions, you can email us via the contact page.
In using our website you agree to this policy and you consent to our use of cookies on the website.
Your relationship with us is managed online via the contact details you provide to us. You can be informed of the information we hold about you at any time by contacting us and requesting the information.
We collect and use your data for the purpose we describe with each service we provide and in these cases we only collect the minimal information required to provide the service to you.
We collect statistical data about visits to our website. Some of this such as IP address is logged for the purpose of crime prevention and detection.
We may use your personal data as necessary for the protection and assertion of our legitimate interests, our legal rights, your legal rights and the legal rights of others.
We may use your personal data as necessary to comply with a legal obligation.
We will ask you to provide your personal data directly to payment processors in order to complete payments to us. These are fully GDPR compliant payment service providers.
As all companies must do we contract other companies to provide a part of our service in the capacity of a data processor. In these cases some of your personal information may be required to provide the specific part of the service we have contracted. Such information is only supplied on condition that the information is solely used to fulfil the service. Examples of this are that we may use postal services and we must supply a postal address to postal services when sending ground mail, or that we use cloud service providers for web hosting and for email and there is necessary disclosure of your email address if we send you an email.
We process data that you give us for the purpose that we state at the time you give us your data.
We store information under the following legal bases:
a. by your consent which is explicitly given by your completion of a form on our website - this is generally for our newsletters
b. by contract where you ask for a specific service from us.
c. by legitimate interest. We collect information about visitors to our website which we use to prevent cyber attacks on our services and for this we collect and share details of suspected attackers.
The state of any processing we do with your data and consent you have given and contracts you are bound to are available at any time by emailing us your name, email address and mobile phone number.
Where we act as data processor for another organisation we process personal data via our contract with the data controller.
Please use the contact page to contact us for anything related to data protection or the GDPR or if you wish to raise a complaint on how we have handled your personal data. Also if you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Information Commissioner's Office https://ico.org.uk/
All our services are hosted solely on cloud platforms provided by our trusted suppliers. All web hosting services we provide are based in Europe with a cloud service provider who is compliant with ISO/IEC 27001:2013. Other servers reside in the UK, European Union, Canada and the USA. Canada is recognised by the EU as having privacy laws that are compatible with the GDPR and US companies that are Privacy Shield Certified are also recognised as having adequate legal protection. All USA companies we use are Privacy Shield certified. All our suppliers comply with the GDPR. All disks that hold customer or business information of any kind whether connected to servers or desktops are either in Enterprise-Grade secure facilities or encrypted at rest or both. Procedures are in place for ensuring the destruction of data on decommissioned equipment.
Please contact us for subject access requests. We will require proof of identification before we give you access to the information we hold on you.
You can excercise your right to redact by contacting us.
If we provide you with a service we are required under UK tax law to keep your basic personal data (name, address, contact details) for a minimum of 6 years after which time it will be destroyed.
Your information we use for marketing purposes will be kept until you tell us that you no longer wish to receive marketing information.
