In May 2018, the regulations surrounding how companies and organisations can hold your personal data changed. This Notice tells you how we handle your Personal Data and the rights you have, when we hold it. This Notice is intended to comply with the provisions of the General Data Protection Regulation EU 2016/679 (GDPR) which governs how Personal Data is processed within the European Economic Area (EEA).
We are always happy to explain anything which this Notice does not make clear to you.
Our address is Protegem Office, Rainbow’s End, 187 Smallfield Road, Surrey RH6 9LR
You will find our contact details at the end of this Notice.
We are the “data controller” for the purposes of GDPR. This means that we decide how your Personal Data is processed and for what purposes.
Personal Data is data that relates to a living individual who can be identified from that data. We might be able to identify you from the data itself or by linking that data to other information we have access to. GDPR tells us how we must process your Personal Data.
We comply with our obligations under GDPR in the following ways:
We use your Personal Data for the following purposes:
You have given us consent to use your Personal Data for the purposes given in the consent statement you agreed to. You can see that statement on your registration form or the persons online account.
Where you have given us sensitive information (such as medical data), we will have asked for and you will have given us explicit consent to store and use that information. You always have the right to refuse to give us any information, particularly sensitive information.
Your Personal Data will be treated as strictly confidential and will be shared only with organisations whose services are required in order to provide the services we offer. We use other companies to help us process your Personal Data so that we can offer you the best possible service.
We will only share your Personal Data with other third parties with your consent. These third parties, in turn, may rely on data processors to provide services that help them help us.
Some third parties we use may operate outside the EEA. In these cases, we will make sure that we have robust contracts in place with those third parties and that adequate safeguards exist to protect and secure your Personal Data.
When you give your consent to our holding of your Personal data you agree to us sharing your Personal Data (including special categories of Personal Data – where we have your explicit consent) with third party processors and sub-processors located both inside and outside the EEA.
We keep your Personal Data for as long as you are a member/customer of our organisation. After you leave, we will keep your information for no longer than we reasonably need.
Unless we have an exemption under GDPR, you have the following rights with respect to your Personal Data: -
If we wish to use your Personal Data for a new purpose, not covered by this Notice, then we will provide you with a new notice explaining this new use. We will do this before we start processing for the new use. We will set out the relevant purposes and processing conditions. Where and whenever necessary, we will seek your prior consent to the new processing.
If you have a problem, complaint or, if there is something you don’t understand, please contact us first using the following:
Protegem Ltd at firstname.lastname@example.org.
You can contact the Information Commissioners Office on 0303 123 1113 or via email https://ico.org.uk/global/contact-us/email or at the Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire. SK9 5AF.