CHEROKEE CONSULTING LTD t/a ANDY THE FAMOUS PLUMBER - GENERAL DATA PROTECTION REGULATION
In this document the following words shall have the following meanings:
1.1 "The Company" refers to Cherokee Consulting Ltd trading as Andy The Famous Plumber;
1.2 "Business Address" means 10 Park Street, Hatfield, Hertfordshire, AL9 5AX, United Kingdom;
2.2 For the purpose of the DPA and GDPR we are the data controller and any enquiry regarding the collection or processing of your data should be addressed in writing to our Business Address.
2.3 By using the Website you consent to this policy.
3 INFORMATION WE COLLECT
3.1 We will collect personal data on our Customer Services Management Database or on our Website only if it is directly provided to us by you the user. Examples of personal data are your name, e-mail address, home or work address, telephone number, and details about your heating and plumbing appliances.
3.2 Normally you will only provide such details if you wish to contact us to enquire about the services we provide. Any data collected on our Website will be deleted after it has been transferred to our Customer Services Management Database.
3.3 Although we may take debit/credit card information to complete a transaction, we do not store this information on our systems.
3.4. We also use analytical and statistical tools that monitor details of your visits to our website and the resources that you access, including, but not limited to: traffic data; location data; weblogs and other communication data (but this data will not identify you personally).
3.5 If you do provide personal information, we will assume that you have read this Notice and have consented to us using your personal information in the ways described within this Notice.
4 HOW WE COLLECT THIS INFORMATION
4.1 We collect this information when you send us a message via the contact form on our website, when you contact us via email, or when you give your details verbally over the phone.
4.2 Your personal information is retained in our Customer Services Management Database and may also be stored on our website temporarily.
5 WHY WE COLLECT YOUR PERSONAL INFORMATION
5.1 We collect this information in order to carry out our obligations to you in order to provide you with the services and products that you have requested from us and to meet your heating and plumbing requirements.
5.2 We will use the information:
to contact you on the anniversary of your boiler service to see if you wish to arrange a service appointment.
when you contact us as you require our services.
to provide us with a history of works completed at your property, which may assist in any further works you request from us.
to provide our customers with ongoing assistance and technical support.
5.3 Your personal information may be used by us, our employees, sub-contractors and suppliers in order to obtain and deliver materials/components to undertake and complete services, repairs and installations which you have requested from us.
5.4 Your personal information will be used for the specific reasons stated above only.
5.5 We will not share your information for marketing purposes with other companies.
6 HOW WE STORE, USE, AND SHARE YOUR PERSONAL INFORMATION
6.1.1 Our website is hosted on the Wix.com platform. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. Wix.com store your data on secure servers behind a firewall and are GDPR compliant.
6.1.2 Our Customer Services Management Database is hosted by Commusoft Ltd. Your data may be stored through Commusoft’s data storage, databases and the general Commusoft applications. Commusoft store your data on secure servers behind a firewall and are GDPR compliant.
6.1.3 We use Google Gmail for all our customer emailing requirements. Gmail stores your data on secure servers behind a firewall and are GDPR compliant.
6.2 We do not accept any responsibility or liability for the security policies of Wix.com, Commusoft Ltd, or Google Gmail whatsoever as we have no control over them.
6.3 All card payments taken by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our Company.
7 DISCLOSURE OF YOUR PERSONAL INFORMATION
7.1 We may disclose your information to regulatory bodies to enable us to comply with the law and to assist fraud protection and minimise credit risk.
7.2 Where you have consented for us to do so, we may provide your data to selected third parties who may contact you in relation to your project.
7.3 If you do not want us to use your data for third parties’ use you can withhold your consent to this by telling us when you give your details verbally over the phone, by writing to us at our Business Address or by sending an email to firstname.lastname@example.org at any time.
7.4 If you have given us consent to use your data for a particular purpose you can revoke or vary that consent at any time. If you do not want us to use your data or want to vary the consent that you have provided you can write to us at our Business Address or by sending an email to email@example.com at any time.
7.5 We will not share your information for marketing purposes with other companies.
8 HOW WE COMMUNICATE WITH YOU
8.1 We may contact you to notify you regarding your account, to troubleshoot problems with your account, to resolve a dispute, to collect fees or monies owed, to poll your opinions through surveys or questionnaires, to send updates about our company, or as otherwise necessary to contact you to enforce our User Agreement, applicable national laws, and any agreement we may have with you. For these purposes we may contact you via email, telephone, text messages, and postal mail.
8.2 We may contact you via email from time to time for marketing purposes. You can opt out of these marketing messages at any time by clicking on the "opt out" button at the bottom of our marketing emails or by emailing us at firstname.lastname@example.org.
10 YOUR RIGHTS
10.1 The DPA and GDPR give you the right to access information held about you by us. Please write to us or contact us by email if you wish to request confirmation of what personal information we hold relating to you. You can write to us at our Business Address, or email us at email@example.com. There is no charge for requesting that we provide you with details of the personal data that we hold. We will provide this information within one month of your requesting the data.
10.2 You have the right to change the permissions that you have given us in relation to how we may use your data. You also have the right to request that we cease using your data or that we delete all personal data records that we hold relating to you. You can exercise these rights at any time by writing to us at at our Business Address, or by emailing us at firstname.lastname@example.org
11 CHANGES TO THIS POLICY
Version: June, 2018