Exertis (UK) Ltd GDPR Website Privacy Statement
This privacy statement sets out
Exertis is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified, you can be assured that it will only be used in accordance with this privacy statement.
Exertis may change this statement from time to time by updating this page. We will make clear whenever any changes are made. This statement is effective from May 25 2018.
We may collect the following information:
We require this information to understand your needs and provide you with a better service. In particular, we will use it for the following legitimate interests of our business:
*monitoring, recording and storing telephone or email communications for the purpose of internal training, to improve the quality of our customer service and in order to meet any legal and regulatory requirements.
We will also use your information to manage our contractual relationship with you for:
If you contact us or we contact you, we may ask for certain information from you to confirm your identity, check our records and deal with your account efficiently and correctly. Where we have asked for your consent to use your personal information for a particular purpose, this consent may be withdrawn by you at any time. Please see the section entitled ‘Controlling your personal information’ below.
The security of your information is very important to us. As part of our commitment to keeping your data safe, our technical experts maintain physical, electronic and managerial procedures to keep safe the information we collect online.
If a third party processing your data on our behalf is located in a non-EU country that does not have data protection laws equivalent to those in the EU, we will always take appropriate additional steps to ensure that your personal information is kept safe and secure by those processing your data on our behalf. This will generally involve ensuring that such third party agrees to sign up to a formal legal agreement committing such party to comply with standards equivalent to those that would apply where that party to be located within the EU.
We aim to protect all of our customers from fraud. As part of this, we may use your personal information to verify your identity to help prevent or detect fraud. These checks may involve your information being disclosed to credit reference agencies, who may keep a record of that information. This is not a credit check and your credit rating will be unaffected.
Sometimes, you might wish to disclose sensitive information to us, for example if you need a priority delivery because you are receiving medical treatment. We will only use sensitive data for the specific reason you disclosed it to us and we will take extra care to keep it secure. From time to time, we will check with you that we may continue to use that sensitive data for the specified purpose. We will re-check this consent on a periodic basis. In either case, you may withdraw your consent at any time.
The time period for which we keep information varies according to what we use the information for. Unless there is a specific legal requirement for us to keep information, we will keep your information for as long as it is relevant and useful for the purpose for which it was collected.
Where we are using your personal information to send you marketing information we will retain that for 12 months as we understand that you will not buy from us on every occasion but frequently we see repeat purchases from customers in this time period. We will retain your account information for 7 years in line with relevant tax and contract requirements.
You are entitled to request that we erase your personal information at any time, for example where you cease to be an active customer of ours. Whilst we will generally seek to comply with your request, there will be circumstances where we are entitled to retain such personal information (e.g. in respect of legal claims).
You may choose to restrict or control the collection or use of your personal information in the following circumstances:
You have the right to:
It is important to note that this is not an absolute right to review all the information that is held about you, as there are various exceptions to this right. These include:
If you want to remove a consent or request erasure or transfer of your personal information, you may do so at any time by writing to us at Exertis (UK) Ltd, Technology House, Magnesium Way, Hapton, Burnley BB12 7BF or by completing the contact form located at our dedicated GDPR Portal accessible at www.exertis.co.uk.
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. Where we do seek your permission we will name the relevant third party at the time we seek such permission from you and any such permission shall be limited to that third party.
Sometimes we may have to pass information to statutory bodies authorised to obtain data under various legislation, such as the police or tax authority.
If you believe that any information we are holding on you is incorrect or incomplete, please write, email or call us as soon as possible, using the details set out above. We will promptly correct any information found to be incorrect.
To protect your privacy and security, we will take reasonable steps to verify your identity before granting access or making corrections.
This policy replaces all previous versions and is correct as of May 25 2018. We reserve the right to change the policy at any time.