Privacy Policy

This notice was last updated on: 22 July 2021 and is version 1.

Welcome, our privacy notice is here to help you understand how we manage and protect your information as you use our website.

Scope

As a visitor to our website, this notice applies to you. We may also refer to you as a User.

Compliance Systems Ltd act as the 'data controller', and are responsible for determining the purposes and manner in which your Data is collected.

This notice does not apply to websites outside of our website domain (compliancesystems.co.uk). This includes any websites we provide links to.

Further Information

Data we collect and how we collect it

Contact Details such as your name, email address & telephone number.

When you enter details into our contact us form or contact us directly via our contact details.

Technical Data collected as you use the website, including your IP address, browser type, version, device details.

Automatically from the use of our website.

Further Information

How we use Data collected and why

Under applicable data protection law, we will process personal data where we have defined a legitimate purpose and a lawful basis for doing so.

  • Getting in contact with you If you show interest in our products and services, for example by completing our contact us form, we'll reach out and get in contact with you. work

  • Providing our services to you If you are a customer using our services we will use the information collected to help provide these services to you.

  • Improving our services and website Information we collect about how you use our website and services will be used to help us provide a better service and experience for you.

  • Tell you about our services and products (Marketing) Depending on your choices about how we contact you, or if we have a legitimate interest, we may get in contact with you to tell you more about our services.

You're in control

You may change your mind about how we get in contact with you, including opting-out (or into) receiving marketing material from us.

You can contact us via info@compliancesystems.co.uk

Internal record keeping While operating our business and services we may need to use the information we have captured to evidence our legal compliance with applicable data protection law.

Lawful Basis for processing

Our third-parties

We use a number of suppliers and third parties to help us provide our services and this may involve processing Data we capture. We've outlined our third-parties below with some links for further information.

Provider & Service Provided: ANS

Acting As: Data Processor

Data Storage Location: UK

Provider Security / Data Processing Agreement https://www.ans.co.uk/terms-and-conditions/privacy-policy/

Provider & Service Provided: Calendly - Appointment booking system

Acting As: Data Processor

Data Storage Location: USA

Provider Security / Data Processing Agreement https://calendly.com/pages/dpa

Provider & Service Provided: Hubspot - CRM system

Acting As: Data Processor

Data Storage Location: EU and USA

Provider Security / Data Processing Agreement https://legal.hubspot.com/dpa

How secure is the data we collect?

We will use technical and organisational measures to safeguard your Data, for example:

·        your use of this website is encrypted using secure HTTPS connections;

·        we store your data on secure servers;

·        we regularly update our website and its components;

·        we secure our site logins and services using multi-factor authentication

·        we will regularly back up our website.

Technical and organisational measures include measures to deal with any suspected data breach.

Suspect something's wrong?

If you suspect any misuse, loss or unauthorised access to your Data, please let us know immediately by contacting us via info@compliancesystems.co.uk

Data Retention

Unless a longer retention period is required or permitted by law, we will only hold your data on our systems for the period necessary to fulfil the purposes outlined in this privacy policy or until you request that the Data be deleted.

Once we delete your Data, it may persist on backup or archival media for legal, tax or regulatory purposes.

Your Rights

You have the following rights in relation to your Data:

  • Right to access - You can request a copy of the personal data we hold about you at any time. Including supplementary information about our processing activities.

  • More information

  • Right to correct – You can correct any personal data we may have if this information is incorrect or inaccurate.

Please keep us updated

It is important that the Data we hold about you is accurate and current. Please keep us informed if your Data changes during the period of time we hold it.

  • Right to object – the right to object to our use of your personal data, including where we use it for our legitimate interests. For example Direct Marketing activities.

  • Right to erasure – the right to request that we delete or remove your Data from our systems..

  • More information

  • Right to restrict our use of your Data – You can restrict the way we process your personal information in certain circumstances, such as if you believe the information is inaccurate, or we are not processing the personal data lawfully.

  • Right to data portability – the right to request that we move, copy or transfer your personal data. We will provide you with this in an open format such as a CSV or PDF file.

 

Making a complaint

if you have a complaint regarding how we process your Data, please let us know first, so we have a chance to address any complaint you make.

If we fail to address this complaint, you may refer your complaint to the relevant data protection authority. For the UK this is the Information Commissioners Office (ICO). The ICO’s contact details can be found on their website at https://ico.org.uk/ .

Changes to business ownership and control

Compliance Systems Ltd may expand or reduce our business, including the sale and/or transfer of control of all or part of our business. Data we have collected and are processing as part of our business will be transferred to the new owner or controlling party. The new owner or controlling party under this privacy policy will be permitted to use the Data for the purposes for which it was originally collected by us.

In the event of a change in business ownership, we will take steps with the aim to ensure your privacy is protected during the transfer of ownership.

Updates to this policy

Compliance Systems Ltd reserves the right to change this privacy policy as we deem necessary from time to time or as may be required by law. Any changes will be immediately posted on the Website and you are deemed to have accepted the terms of the privacy policy on your first use of the Website following the alterations.

This privacy notice was created in conjunction with Shout Cyber