Find A Local Lead – General Data Protection Regulation Policy Statement
Find a Local Lead is a facilitation service which introduces potential customers to gardening and property maintenance professionals for the provision of a wide range of different services Find a Local Lead are a subsidiary of Find a Local Gardener Ltd (Company 11727062) who are horticultural resource business with over 10 years of experience.
The business is run from www.findalocallead.com
As an essential part of our business, we have to collect and manage customer information. In doing so, we observe the UK Data Protection legislation, and are committed to protecting and respecting customers’ and non-customers’ privacy and rights. Specifically, we act as a “Data Controller” in respect of the information gathered and processed by us, and act in a fair, transparent and accountable manner.
In order that you are reliably informed about how we operate, we have developed this statement, which describes the ways in which we collect, manage, process, and store information about you, in order to provide you with our high level of customer service. This privacy notice also provides you with information about how you can have control over the use of your data.
This document sets out your rights of privacy under the GDPR [General Data Protection Regulation] after 25 May 2018 and how Find a Local Gardener Ltd as a company meet the compliancy requirements.
If you have any comments or queries regarding our use of your data, please contact our Data Protection Officer, Colin Sewell via email at: firstname.lastname@example.org or write to us at: Pera Business Park, Nottingham Rd, Melton Mowbray LE13 0PB
What information do we collect about you?
Under the new GDPR coming into force at the end of May 2018, We are required by law to document what personal information we keep for all customers, whether they are one off or regular clients.
At the time of first contacting Find a Local Lead we will take your name, contact telephone number, email address and postcode.
After making subsequent contact, we may need to collect other information such as login details and passwords in order to complete the work required.
All information is retained for a period of up to one working week from the conclusion of one off service provision matters, up to six months from the conclusion of contracted services after which it will be securely destroyed. You do have the right to see any information we keep and you can request that any data be changed or securely destroyed at any point.
We do not use the information for anything other than to contact you regarding the reasons why you first contacted the company.
We will not pass your personal information to any third party unless you have agreed to use one of our external partners which we have pre-qualified.
If you opt out of email marketing you will no longer receive company newsletters.
How will we use the information?
In general terms, we would need to collect information about you so that we can:
● Provide our services and respond to enquiries ● Deliver requested information to you about our additional services ● Ensure the billing of any procured services and obtain payment ● Process and respond to any complaints
The information that we need for these purposes is known as your “personal data”. This includes your name, home address, email address, telephone and other contact numbers and financial information.
We collect this in a number of different ways. For example, you may provide this data to us directly online or over the telephone, or when corresponding with us by letter.
Under the terms of data protection legislation, you have the following rights as a result of using our service and our website (subject to confidentiality, as mentioned above):
(a) Right to be informed
This privacy notice fulfils our obligation to tell you about the ways in which we use your information as a result of you using our services.
(b) Right to access
You have the right to ask us for a copy of any personal data that we hold about you. This is known as a “Subject Access Request”. Except in exceptional circumstances (which we would discuss and agree with you in advance), you can obtain this information at no cost after 25th May 2018. We will send you a copy of the information within 30 days of your request.
To make Subject Access Request, please email or write to our Data Protection Officer, Colin Sewell, at the details set out above.
(c) Right to rectification
If any of the information that we hold about you is inaccurate, you can contact our Data Protection Officer in writing, via letter or email. Before we can do this, it may be necessary for us to investigate this with you and obtain proof of your identity.
(d) Right to be forgotten
From 25 May 2018, you can ask that we erase all personal information that we hold about you. Where it is appropriate that we comply, your request will be fully actioned within 30 days. Please note that there may be very good reasons why we cannot comply, for instance where we need to hold your file of papers electronically after conclusion of your matter for a statutory period e.g. limitation period. For further information please contact our Data Protection Officer, who will be able to help you and advise you on your case.
You have the right to object to:
● The continued use of your data for any purpose listed above for which consent is identified as the lawful basis for processing i.e. you have the right to withdraw your consent at any time.
● The continued use of your data for any purpose listed above for which the lawful basis of processing is that it has been deemed legitimate.
(e) Right to restrict processing
If you wish us to restrict the use of your data because (i) you think it is inaccurate but this will take time to validate, (ii) you believe our data processing is unlawful but you do not want your data erased, (iii) you want us to retain your data in order to perform subsequent tasks, or (iv) you wish to object to the processing of your data, but we have yet to determine whether this is appropriate, please contact our Data Protection Officer.
(f) Right to data portability
If you would like to move, copy or transfer the electronic personal data that we hold about you to another organisation, please contact our Data Protection Officer.
(g) Rights related to automated decision-making
If you would like to object to automated decision making without any individual involvement, and to the profiling of your data, please contact our Data Protection Officer.
Is the processing of information likely to cause individuals to object or complain?
Find a Local Lead are not aware of any justifiable reasons that would constitute a legitimate reason for objecting or complaining about the way we process or control information.
How long will we retain information for?
Find a Local Lead will typically retain information for a period of up to one working week from the conclusion of one off service provision matters, up to six months from the conclusion of contracted services, or six years for employment records. This is due to regulatory reasons and limitation periods in respect of any future claims or complaints and to ensure our business records are adequate to maintain the requisite levels of insurance to protect our clients and non-clients.
None of the information that we collect process or store as a result of our services is transferred outside of the European Union (EU).
Data privacy and security
Find a Local Lead maintain a comprehensive data management work programme, which includes processes for ensuring that data protection is a key consideration of all new and existing IT systems that hold personal data. Where any concerns, risks or issues are identified, we conduct relevant impact assessments in order to determine any actions that are necessary to ensure optimum privacy.
We also maintain an active information security work programme which seeks to protect the availability, confidentiality and integrity of all physical and information assets. Specifically, this helps us to:
● Protect against potential breaches of confidentiality;
● Ensure all IT facilities are protected against damage, loss or misuse;
● Increase awareness and understanding of the requirements of information security, and the responsibility of our colleagues to protect the confidentiality and integrity of the information that they handle; and
● Ensure the optimum security of our websites. General
Questions and comments regarding this Privacy Notice are welcomed, and should be sent to our Data Protection Officer Colin Sewell at email@example.com
Alternatively, you can write to our Data Protection Officer at Pera Business Park, Nottingham Rd, Melton Mowbray LE13 0PB if you have any concerns or complaints about the ways in which your personal data has been handled as a result of you using our website.
If we cannot resolve your concerns, you have the right to lodge a complaint with the Information Commissioner’s Office who may be contacted at Wycliffe House, Water Lane, Wilmslow SK9 5AF or https://ico.org.uk
Manage Cookie Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behaviour or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.