Our updated Privacy Policy
Sidcup Partners Privacy Policy
This policy applies to Sidcup Partners Ltd on and from 25 May 2018
Keeping personal data safe We are committed to keeping personal data safe and secure, and handling it in accordance with our legal obligations. This Privacy Policy sets out in detail the purposes for which we process personal data, who we share it with, what rights you have in relation to that data and everything else we think it’s important for you to know.
1 Who’s in control? 1.1 It is important that you understand who is responsible for keeping personal data safe. We are the “controller” of all personal data collected and used for the purposes set out in this Privacy Policy. This means that we are responsible for deciding how and why personal data is used and for ensuring that personal data is handled legally and safely.
1.2 We have appointed a Data Protection Officer (DPO) who has ultimate responsibility within the company for making sure personal data is treated in accordance with this Privacy Policy and the law. Our DPO can be contacted by emailing cheryl@sidcuppartners.co.uk
2 What data do we collect and where from? 2.1 We collect some data directly from you when you enquire or book for a networking event or sign up for the newsletter also for delivery and services from us or when you supply us with quotes for services that we require (Account Data) . We also hold data from Capita the collecting agency for the BID Levy This data includes the following: your full name
your email address
Your phone number
your postcode and address
The rateable value of your premises
The amount of BID levy that you pay
If you are supplying us with goods or services we keep your bank account details so that we can pay you.
2.2 We also collect information that you voluntarily provide to us when you contact us with queries, complaints, comments or praise.
2.3.1 We do not share your details with any other companies without your permission. Examples of data we would share with your permission include:
- Delivery address for couriers, entertainers or suppliers
- Details of suppliers (with contact details )attending events that we book are shared with our clients
3 What do we use personal data for? 3.1 It is important that you understand how and why we use the personal data that we collect about you. This section sets out the different purposes for which we process personal data and which types of personal data we need for each purpose.
3.2 Managing your account and providing customers with our services or booking services and goods with suppliers.
4 How do we keep personal data secure?
4.1 Files are kept in a locked cabinet within a lockable office.
4.2 Customer and supplier data is stored on password protected computers in password protected files and in the case of suppliers in our bank accounts.
4.3 We may need to keep your data after account closure for limited purposes, for example if we need your data in order to respond to any complaints or claims that customers make or disputes with suppliers. If this is the case, we will only keep the data for as long as we need to in order to fulfil those purposes.
- What rights do you have? 5.1 You have a number of rights under data protection law. These rights and how you can exercise them are set out in this section. We will normally need to ask you for proof of your identity before we can respond to a request to exercise any of the rights in this section and we may need to ask you for more information, for example to help us to locate the personal data that your request relates to.
5.2 We will respond to any requests to exercise your rights as soon as we can and in any event within one month of receiving your request and any necessary proof of identity or further information. If your request is particularly difficult or complex, or if you have made a large volume of requests, we may take up to three months to respond. If this is the case we will let you know as soon as we can and explain why we need to take longer to respond.
5.3 A right to access your information You also have a right to ask us to send you a copy of your Account Data and all other personal data that we hold about you. A request to exercise this right is called a “subject access request” and must be made in writing to cheryl@sidcuppartners.co.uk
5.4 A right to object to us processing your information You have a right to object to us processing any personal data that we process where we are relying on legitimate interests as the legal basis of our processing. This includes all of your personal data that we process for all of the purposes set out in this Privacy Policy.
If we have compelling legitimate grounds to carry on processing your personal data, we will be able to continue to do so. Otherwise, we will cease processing your personal data.
5.5 A right to have inaccurate data corrected You have a right to ask us to correct inaccurate data that we hold about you. If we are satisfied that the new data you have provided is accurate, we will correct your personal data as soon as possible. 5.6 A right to have your data erased You have a right to ask us to delete your personal data in certain circumstances, for example if we have processed your data unlawfully or if we no longer need the data for the purposes set out in this Privacy Policy. 5.7 A right to have processing of your data restricted You can ask us to restrict processing of your personal data in some circumstances, for example if you think the personal data is inaccurate and we need to verify its accuracy.
5.8 What if you have a complaint? You have a right to complain to the Information Commissioner’s Officer (ICO), which regulates data protection compliance in the UK, if you are unhappy with how we have processed your personal data. You can find out how to do this by visiting www.ico.org.uk.
Policy updated on 25 May 2018
