The General Data Protection Regulations (GDPR) applies to ‘personal information’ and is defined as any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier. Under GDPR we can process your personal information if we have a genuine legitimate reason and we are not harming any of your rights or interests.
Data we collect
Sheet Metal Services (Seaforth) Limited receive data in a number of ways, including but not limited to website activity, marketing sources and business events.
We may collect the following information:
- • Your name, the business you work for and its contact details including email address and phone number
- • Demographic information such as postcode, preferences and interests
- • Website & communication usage data
- • Marketing and communication preferences
- • Relevant product requirements and interests when enquiring or placing an order
- • Other information pertaining to offers and surveys
- • Other publicly available data you have shared via a public platform such as on social media or message boards
This is not an exhaustive list and we may collect other information for the purposes set out in this document.
How we use your data
Collecting this data helps us understand what you are looking for from us, which enables us to improve our products and services.
We may use data:
For our own internal records
- • To improve the products and services we provide
- • To personalise the website for you
- • To contact you regarding an enquiry or work you have requested
- • To contact you via email, telephone or mail for market research reasons
- • To send you promotional emails, mail or call you about our products, services, or anything else that might be relevant to you
- • For our own internal records
Sharing your data
We may need to use your data with third parties to make certain services available to you.
These include but are not limited to:
- • Delivery service providers
- • Marketing providers
- • IT professionals
- • Our investors
- • Credit reference agencies (only when necessary for credit checking)
- • Government bodies, law enforcement agents, regulars, insurers, and courts/tribunals only where required to do so
Third parties handling the data we share are also subject to appropriate data protection and security checks. Service providers are required to ensure data is only used in order to provide the appropriate services Sheet Metal Services (Seaforth) Limited has requested.
How long we keep your data
We will only keep your data for the purposes outlined in this policy and only as long as it is necessary. Retention periods differ based on what type of data we hold, but it is not expected that we will hold personal data for longer then 6 years.
Legal basis for processing your personal data
Sheet Metal Services (Seaforth) Limited collects and uses customer data when is it necessary:
- • to conduct our legitimate interests (set out below)
- • for exercising our rights under a contract of sale
- • for addressing our legal obligations
Generally, we only rely on consent as a legal basis for processing in relation to sending direct marketing communications to customers.
Customers and data subjects have the right to withdraw consent at any time. Where consent is the only legal basis for processing, we will cease to process data after consent is withdrawn. To withdraw consent, you can email us or write to us at the addresses at the bottom of this page.
Our legitimate interests
The legal basis under normal conditions, for processing customer data, is that it is necessary for the legitimate interests of Sheet Metal Services (Seaforth) Limited, including:
- • The supply of goods and services to our customers
- • Marketing, promoting and advertising products and services
- • Managing the safety and welfare of our customers, staff and others
- • Managing customer contacts, queries, complaints or disputes
- • Sending tailored and relevant promotional communications to customers
- • Understanding customer behaviour, preferences, activities and needs
- • Developing new services and product to improve current ones
- • Legal and regulatory obligations
- • Handling legal claims or regulatory enforcement actions taken against us
- • Undertaking our duties to our customers, colleagues, investors and stakeholders
- • Detecting, investigating and prevent crime, including working with law enforcement agencies
- • Protecting the company, its staff, and its customers by taking appropriate legal action against third parties who are in breach of legal obligations to us our have committed a criminal offense
Requesting details of the data we hold on you
You have the right the right to request the personal information which we hold on your under GDPR (General Data Protection Regulations). If you would like a copy of the information please email us or write to us at the contact information at the bottom of this page. Please provide your full name and email address which match our records. We may require you to confirm your identity.
We aim to provide your information held about you within 1 calendar month of the receipt of your written request.
All data we hold on you is held securely. We have implemented electronic, physical, and managerial procedures to safeguard this information.
Procedures to deal with any suspected security breach are in place, including the immediate communication to any relevant parties regarding the breach and any action taken.
Outbound website links
Occasionally our website may contain links to other websites that we have no control of. We are not responsible for your data’s protection and privacy for any information you provide to these websites.
Email monitoring and telephone call recording
Emails may be monitored and telephone calls may be recorded for the following purposes:
- • Establishing facts and evidence for business transactions
- • Investigating or detecting the unautorised use of our communication systems
- • Ensuring compliance with regulatory or self-regulatory practices
- • Ascertaining and demonstrating that standards are being met
- • Preventing or detecting crime
- • Defending national security
- • Safeguarding the effective operation of our communication systems
Disposal of your data
Physical copies of data are shredded or disposed of in a manner that details cannot be used. Digital copies of data are deleted, including any copies that may exist on our systems.
Sheet Metal Services (Seaforth) Ltd reserves the right to review and update this privacy notice at any time.
Updated: 14 March 2019
If you have any questions about our policy, please email firstname.lastname@example.org or write to:
Sheet Metal Services (Seaforth) Limited
Sandy Road Industrial Estate