This Privacy Policy sets out the basis on which any personal data which we collect from you will be processed by us.
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. If you do not accept the terms of this Privacy Policy, then you must stop using our website and, if applicable, request that we remove you from our mailing list.
For the purpose of the Data Protection Act 1998 (the “Act”), the data controller in relation to any personal data you provide to us is Bundobust Ltd of 6 Mill Hill, Leeds, LS1 5DQ
Information we collect from you
You may give us information about you by filling in forms on our website or by corresponding with us by phone, email or otherwise. This will include information which you provide to us when you subscribe to our newsletter, such as your name, email address and postcode, or if you participate on any of our social network sites.
We may also collect information about your computer, tablet or mobile, including where available your IP address, operating system and browser type for system administration purposes and information about how you use our website. This is simply statistical data about our users’ browsing actions and patterns, and you will not be identifiable as an individual from it.
How we use your information
We will use your information to:
- Ensure that content from our website is presented to you in the most effective manner;
provide you with information about our products and services and any other information, services or offers which we think may be of interest to you by email (where you have consented to receive such information); and notify you about any changes to our website or our services. - It is our intention to only send you email communications that will be useful to you and that you want to receive. We may occasionally send notifications of new products, services or offers from us to your designated email address. You may opt out of receiving these notifications from us at any time by opting out through your confirmation subscription email.
Disclosure of your information
We will never disclose your personal data to any third parties except in the circumstances set out in this section.
We use a number of trusted suppliers and service providers to help provide our website and other services to you. We may need to disclose your personal data to them but will only do so to the extent that it is necessary for them to be able provide the services we require.
We may also disclose your personal information:
In the event that our company, or substantially all of its assets, is sold, in which case we may disclose your personal data to the buyer and you agree that if you have provided us with consent to contact you by email or otherwise, any such buyer shall also be deemed to have received the same consent; and
if we are under a duty to disclose or share your personal data in order to comply with any legal obligation or to protect the rights, property, or safety of the company, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
How we store your data
All information you provide to us is stored on secure servers which are operated by our trusted providers.
Currently all the providers we use to help us provide the website and services connected to it are located within the European Economic Area (“EEA”) but this may change in the future. Although, we will take reasonable steps to inform you of any change to our arrangements in this respect, By submitting your personal data, you agree to it being transferred to, stored and processed outside the EEA for the purposes of providing you with the services connected with this website. We will always aim to ensure that your personal data is processed in accordance with the rules set out under European law or alternatively in accordance with other national or international legislation, systems or contractual provisions which are recognised by the European Union as being adequate to safeguard your personal data.
We will keep your personal information for no longer than is necessary for the purposes for which the personal information was collected.
Transmission of data over the internet
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website and any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Cookies
Our website uses cookies to distinguish you from other users of the website. This helps us to provide you with a good experience when you browse and also allows us to improve the website.
Links to other websites
We are not responsible for the data collection practices, the privacy policies or the content of websites which are not operated by us, including social network sites. You should contact the operators of those websites directly if you wish to enquire about their privacy practices and policy before providing your personal information to any third party.
Access to information
The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request may be subject to a fee of £10 to meet our costs in providing you with details of the information we hold about you.
Modifications
Any changes we may make to this Privacy Policy in the future will be posted on this page and, where appropriate, notified to you by email. Any modifications we make shall be effective immediately upon posting of the modified policy to this website. Please check back frequently to see any updates or changes to this policy.
GDPR COMPLIANCE ADDENDUM
Introduction
The EU General Data Protection Regulation (“GDPR”) came into force across the European Union on Friday 25 May 2018 and brings with it the most significant changes to data protection law in two decades. Based on privacy by design and taking a risk-based approach, the GDPR has been designed to meet the requirements of the digital age.
The new Regulation aims to standardise data protection laws and processing across the EU; affording individuals stronger, more consistent rights to access and control their personal information.
Our Commitment
Bundobust Ltd is committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We have always had a robust and effective data protection program in place which complies with existing law and abides by the data protection principles. However, we recognise our obligations in updating and expanding this program to meet the demands of the GDPR and the UK Data Protection Bill.
Bundobust Ltd dedicated to safeguarding the personal information under our remit and in developing a data protection regime that is effective, fit for purpose and demonstrates an understanding of, and appreciation for the new Regulation. Our preparation and objectives for GDPR compliance have been summarised in this statement and include the development and implementation of new data protection roles, policies, procedures, controls and measures to ensure maximum and ongoing compliance.
In addition to the policies and procedures mentioned above that ensure individuals can enforce their data protection rights, we will provide easy to access information of an individual’s right to access any personal information that we processes about them and to request information about:
What personal data we hold about them
The purposes of the processing
The categories of personal data concerned
The recipients to whom the personal data has/will be disclosed
How long we intend to store your personal data for
If we did not collect the data directly from them, information about the source
The right to have incomplete or inaccurate data about them corrected or completed and the process for requesting this
The right to request erasure of personal data (where applicable) or to restrict processing in accordance with data protection laws, as well as to object to any direct marketing from us and to be informed about any automated decision-making that we use
The right to lodge a complaint or seek judicial remedy and who to contact in such instances
Information Security & Technical and Organisational Measures
Bundobust Ltd takes the privacy and security of individuals and their personal information very seriously and take every reasonable measure and precaution to protect and secure the personal data that we process. We have robust information security policies and procedures in place to protect personal information from unauthorized access, alteration, disclosure or destruction and have several layers of security measures.
Bundobust Ltd understands that continuous employee awareness and understanding is vital to the continued compliance of the GDPR and have involved our employees in our preparation plans. We have implemented an employee training program specific to which will be provided to all employees, and forms part of our induction and annual training program.
Contact Us
If you have any questions, concerns or complaints in relation to our website or this Privacy Policy please contact us at hello@bundobust.com