Customer Privacy Notice

CUSTOMER PRIVACY POLICY

This customer privacy notice outlines:

  • how we protect your personal data that we collect and process, in accordance with data protection legislation, including the General Data Protection Regulation (GDPR); and;
  • what your privacy rights are.

What personal information do we collect?

  •  We may process data enabling us to get in touch with you (“contact data”). The contact data may include your name, email address, telephone number, postal address and/or social media account identifiers.
  • We may process information relating to transactions, including purchases of goods and/or services, that you enter into with us and/or through our website (“transaction data”). The transaction data may include your name, your contact details, your payment card details or other payment details and the transaction details.
  •  We may process information contained in or relating to any communication that you send to us or that we send to you (“communication data”).

Why do we use your personal data?

  • Operations – We may process your personal data for the processing and fulfilment of orders, providing our services, supplying our goods, generating invoices, bills and other payment related documentation, and credit control.
  • Relationships and communications – We may process contact data for for the purposes of managing our relationships, communicating with you (excluding communicating for the purposes of direct marketing) by email, SMS, post, and/or telephone, providing support services and complaint handling.
  • Record keeping – We may process your personal data for the purposes of creating and maintaining our databases, back-up copies of our databases and our business records generally.
  • Insurance and risk management – We may process your personal data where necessary for the purposes of obtaining or maintaining insurance coverage, managing risks and/or obtaining professional advice.
  • Legal claims – We may process your personal data where necessary for the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
  • Legal compliance and vital interests – We may also process your personal data where such processing is necessary for compliance with a legal obligation to which we are subject or in order to protect your vital interests or the vital interests of another natural person.

How long will we keep your personal data?

We will only keep your information for as long as necessary to complete the purposes mentioned above.

With whom do we share your personal data?

We may share your personal data with:

  • Our insurers or professional advisors insofar as reasonably necessary for the purpose of maintaining insurance coverage, managing risks and/or obtaining professional or legal advice.
  • Our suppliers or subcontractors for the purpose of fulfilling a contract.
  • Public authorities, where required to do so by law.

To safeguard your personal data, we require third-parties receiving personal data from us to commit to respecting a similar level of the protection of personal data to that under the GDPR in their contracts with us.

If we transfer information outside of the European Economic Area (EEA), we will make sure that it is protected in the same way as if it was being used in the EEA. To do this, we will use one or more of these safeguards:

  •  Only transfer it to a non-EEA country with privacy laws that give the same protection as the EEA, as deemed by the European Commission.
  • Ensure that a contract with the recipient is in place that means they must protect it to the same standards as the EEA, such as through certification to the EU-US Privacy Shield or signed EU-approved Standard Contractual Clauses with us.

Do you want us to share what personal data we have about you, with you?

If you want us to share information that we’re obliged to share about you, please get in touch with Katy Evans at katy.evans@jreg.co.uk

Is the personal data we have about you incorrect?

You have the right to question any information we have about you that you think is wrong or incomplete.

Do you want us to stop using your personal data?

You have the right to object to certain ways that we use your personal data, or to ask us to restrict or stop the processing of, delete, remove, or stop using your personal data if there is no need for us to keep it. These are known as the ‘right to restrict’, ‘right to object’ and the ‘right to erasure’, or the ‘right to be forgotten’ respectively. In addition, you also have the right to data portability. This means that you can request a copy of your personal data for the purpose of transferring it to another data controller. In some cases, there will be legitimate, legal, or other official reasons for us to keep your data. But you have the right to contact us to request us to stop using your data.

Security of your information

To help protect the privacy of data and personally identifiable information, we maintain physical, technical and administrative safeguards. We restrict access to your personal data to those employees who need to know that information to provide benefits or services to you.

Data storage

Your personal data is stored on the servers of the third-party service providers J-Reg Consultancy Ltd engages, which are located within the European Union (EU) and in the United Kingdom.

How to contact us

J-Reg Consultancy Ltd, is a company registered in England and Wales under number 11748428, whose registered office is at 85 Great Portland Street, London, W1W 7LT. If you have any questions, comments, complaints or want more details about how we use your personal data, please let us know. You can contact Katy Evans at katy.evans@jreg.co.uk

We do our best to be transparent, protect your personal data and offer you as much control as we can. If however you are unhappy with your we have used your data you can complain to the ICO at:

Information Comissioner’s Office

Wycliffe House

Water Lane

WilmslowCheshire

SK9 5AF

Helpline number: 0303 123 1113