Who we are
How do we collect personal data?
We obtain personal data in electronic form when you:
- Use the Contact Us page – we collect the data shown in the contact us form.
- Use our website – IP address, browser and other details of the devices you use.
- Attend an event we organise – name and contact details.
- Work for us as a contractor – name, address, contact details, bank account and other personal details required to meet legal obligations.
- Provide us with services – name, contact details and bank account.
- Are a customer – name, contact details and bank account.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed. To find out more visit our Cookies Policy.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
We will share personal data if there is a legal obligation or duty to do this e.g. for fraud protection or to enforce or apply our contractual terms. We process personal data in these circumstances on the basis of Legitimate Interest for preventing crime or suspend criminal activity or enforcing our terms.
We share your data within the group of companies of which we are a part. Where this involves the transfer of personal data outside the UK and EEA, we ensure that personal data is protected by requiring all companies within the group to follow the same rules with respect to personal data usage. These are known as “binding corporate rules”.
How long we retain your data
Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
We will retain your personal data as follows:
(a) contact data will be retained for a minimum period of one year following the date of the most recent contact between you and us, and for a maximum period of two years following that date;
(b) account data will be retained for a minimum period of five years following the date of closure of the relevant account, and for a maximum period of seven years following that date;
(c) customer relationship data will be retained for a minimum period of five years following the date of termination of the relevant customer relationship and for a maximum period of seven years following that date;
(d) service data will be retained for a minimum period of five years following the date of termination of the relevant contract, and for a maximum period of seven years following that date;
(e) transaction data will be retained for a minimum period of five years following the date of the transaction, and for a maximum period of seven years following that date;
(f) communication data will be retained for a minimum period of five years following the date of the communication in question, and for a maximum period of seven years following that date;
Notwithstanding the other provisions of this section, we may retain your personal data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
What rights you have over your data
Your principal rights under data protection law are:
(a) the right to access – you can ask for copies of your personal data;
(b) the right to rectification – you can ask us to rectify inaccurate personal data and to complete incomplete personal data;
(c) the right to erasure – you can ask us to erase your personal data;
(d) the right to restrict processing – you can ask us to restrict the processing of your personal data;
(e) the right to object to processing – you can object to the processing of your personal data;
(f) the right to data portability – you can ask that we transfer your personal data to another organisation or to you;
(g) the right to complain to a supervisory authority – you can complain about our processing of your personal data; and
(h) the right to withdraw consent – to the extent that the legal basis of our processing of your personal data is consent, you can withdraw that consent.
These rights are subject to certain limitations and exceptions. You can learn more about the rights of data subjects by visiting https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/.
You may exercise any of your rights in relation to your personal data by written notice to us, using email [email protected]
How we keep your personal data secure?
Our websites use secure (“HTTPS”) connections as well as corporate firewalls and other security tools to protect your data. However, as is the case with all websites, we are not able to guarantee security for data collected through our sites. We have physical, technical and administrative controls in place to protect personal data from unauthorised access, use and disclosure. We evaluate these safeguards on an ongoing basis to minimise risks from new security threats as they become known. We use carefully selected partners to provide us with services including the support of IT and computer systems. Our contractual terms with these suppliers include confidentiality clauses to respect the privacy of any personal data they come into contact with as a result of performing their tasks.