From May 2018
The purpose of this policy is to ensure that you understand your rights when interacting with us as a business. Whether you’re a supplier, this is where you can find out exactly how we have taken your privacy into consideration. We’ll outline the basics of GDPR and run through the ways in which our company is affected by it. We will describe how we use, store and process any of your personal data and who has access to it. If you’ve got any questions or anything isn’t clear, contact us at firstname.lastname@example.org or on +44 (0) 151 653 1500.
GDPR: What is it?
GDPR stands for General Data Protection Regulation and it’s a European privacy law which is enforceable from May 25th 2018. Whether you’re within the European Union or dealing with customers in the EU, you’re compliant. This new and revised policy aims to ‘strengthen, harmonize and modernize’ EU data protection law. Essentially, the law enhances your individual rights over your personal data, in a digital world.
Who is affected by GDPR?
- All organizations established in the European Union
- Organisations involved in processing the personal data of EU citizens
- It affects all industries and sectors, and all types of businesses
What counts as personal data?
- Email address
- Bank details
- IP address
- Medical information
- Social media posts
- A photo
- Location details
Our policy for clients and associates
In this policy, we’ll outline the general rules and what you can expect from us going forward. And of course, we’ll make it very clear what your rights are! If anything doesn’t look right, or you’re confused about anything, please don’t hesitate to contact us so we can make things a little clearer for you.
Your personal data
Here at Air Sea Containers Ltd, there are certain types of data we require to store and use in order to carry out our normal business tasks. We store and use both data that qualifies as personal and data that is only associated with a business. Names, phone numbers, email addresses and IP addresses are generally the types of personal data we store and use. In the next section, you can see the reasons we store this type of data. How we store your data We only store personal data that we have a legitimate interest in. We do not hold any physical records of personal data, everything we do is based on our private server network (based in our office) and cloud based back up via Bright Cloud. Our emails are handled by Microsoft 365. Therefore, there is no direct physical risk to your data but there are the usual risks associated with electronic storage of information. Every member of our team has access to the private server but all our computers and accounts are password-encrypted. Our physical office building is secure with an external and internal locked door and 24/7 monitored intruder and fire security systems.
How we use your data
There are two main reasons for us storing your data. Firstly, so we can contact you with regards to the work we are doing for you. Secondly, to follow up on a sales lead where you have already shown interest or passed your details to us. We use names, phone numbers and email addresses for the aforementioned purposes. We never use this data for marketing purposes. For example, we may have access to your email address to give you a quote on a project but we will never give this away to third parties or allow access to anyone outside of Air Sea Containers Ltd. We will only ever use your contact details to speak to you about the work we are doing together or to give you the information you have requested.
If you wish to access your data
If at any point you wish to access the data we hold on you, you are completely entitled. Simply email us at email@example.com or call us on +44 (0) 151 653 1500 and let us know your request.
Deleting or changing your data
By the same token, we are obligated by GDPR guidelines to completely dispose of the personal data we hold that identifies you if you request that we do so. We are also required to update your personal data in any way if you ask us to. Again, please just let us know by getting in touch via the contact details above. Obtaining your data for other purposes Data portability is another right you have within GDPR rules. Essentially, if you wish to obtain and reuse your personal data for another purpose, we are required to provide it to you. This can be in either a physical or digital format. Please just let us know using the outlined contact details in the above two sections.
Collecting new data
If you enter your details into our website contact form, surveys, or quizzes, we will specifically state what we are collecting your data for. Look out for the mandatory checkboxes on our contact forms – these are a requirement any time you fill in a form. The reasons for collecting and storing your data are outlined in the ‘How we store your data’ and ‘How we use your data’ sections. We will never ask for any more personal data than is necessary and we will only contact you if we have a legitimate business-related interest. We never pass on your personal data to third-parties or use for external marketing purposes. If we wish to collect any new data from you (that identifies you personally), we must receive clear, unambiguous consent from yourself. And you must give it freely. If you feel at any point that you are unsure about what we are collecting your data for, do not hesitate to ask for further clarification.
Alter the way we use your data
If you have previously given your consent for us to store or use your data in a certain way, you have the right to amend this. Simply let us know at any point if you object to the way we use your data and we will adjust this accordingly. For example, if we have been in contact with you regarding an interest in working together, you are entitled at any point to end this communication and we can either keep your records without using them or delete them entirely.
In case of a data breach
In the very unlikely event of a security breach involving your personal data, we will inform you within the GDPR guideline of 24 hours. But of course, if this ever did happen, we’d hope to let you know much sooner. And with regards to the individual policies of any software or programs we use, please refer to the ‘How we store your data’ section.
Our social media accounts
As a company, we have a social media presence on the following platforms: Twitter and LinkedIn. If we ever use anything that could identify you on our social media accounts (such as names, photos or testimonials), we will get full, explicit consent and you have the right to decline or ask us to remove such content in the future.
Got any questions?
Whether you’re unsure of your rights when it comes to Air Sea Containers Ltd storing, using and accessing your personal data, or you’re confused about a scenario with another business, don’t be afraid to get in touch with us at firstname.lastname@example.org or on +44 (0) 151 653 1500. We’d be happy to give you any advice and inform you of your rights