We are Protean Software Limited, a company incorporated in England. Our company number is 09532932 and our registered office is at Units 1130-40, Elliott Court Herald Avenue, Coventry Business Park, Coventry, England, CV5 6UB (“Protean” / “we”/ “our” / “us”). We are committed to ensuring that your privacy is protected. We will comply with the General Data Protection Regulation ((EU) 2016/679) (“GDPR”) unless and until the GDPR is no longer directly applicable in the UK, together with any national implementing laws, regulations and secondary legislation as amended or updated from time to time in the UK, and any successor legislation to the GDPR (together “Data Protection Legislation”). We are the data controller of data you pass to us pursuant to this policy.
1. What information do we hold and how will we use it?
- 1.1 We may collect and process the following data about you:
- 1.1.1 Information you give us: You may give us information about yourself by completing enquiry forms on the Website or by corresponding with us by phone, email or otherwise. You may also upload your image/photograph to the Website. The information you give us may include your name, email address, address/location, image/photograph, and phone number. We will retain this information while we are corresponding with you or fulfilling an order you have placed with us. We will retain this information for 6 years from the end of our working relationship or our contract with you ends;
- 1.1.2 Information we collect about you: We may collect the following information from you when you visit our Website:
- 188.8.131.52 technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; and
- 184.108.40.206 information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through and from the Website (including date and time), products you viewed or searched for, page response times, Website errors, length of visits to certain pages, page interaction information, methods used to browse away from the page and any phone number used to call our customer services number.
We will retain this information for 2 years.
3. Use made of the information
- 3.1 Provided that we have obtained your consent to the extent we are required to under the Data Protection Legislation, we may use the information we receive and/or collect about you to:
- 3.1.1 fulfil our obligations under any contract we have entered into with you and to provide you with information, products and services you have requested;
- 3.1.2 send you newsletters and marketing information if you have consented to us doing so or if there are other grounds in GDPR which mean we are entitled to send marketing communications to you;
- 3.1.3 notify you of products and services we offer that are similar to those you have purchased or enquired about;
- 3.1.4 notify you of other products and services we feel may interest you, or permit third parties to do so if you have consented to us doing so;
- 3.1.5 notify you of changes to our services and products; and
- 3.1.6 monitor Website usage and provide statistics to third parties for the purposes of improving and developing the Website and the services we provide via the Website.
- 3.2 We collect and process much of your personal information on the grounds of legitimate interests, which include some or all of the following:
- 3.2.1 where the processing enables us to enhance, modify, personalise or otherwise improve the Website, our services and communications for the benefit of our customers;
- 3.2.2 to identify and prevent fraud;
- 3.2.3 to enhance the security of our network and information systems;
- 3.2.4 to better understand how people interact with our websites;
- 3.2.5 administer the Website and carry out data analysis, troubleshooting and testing; and
- 3.2.6 to determine the effectiveness of promotional campaigns and advertising.
- 3.3 If we require your personal data for the fulfilment of a contract with you (for example to provide goods and services you have requested), we may be unable to fulfil the contract without your personal data.
- 3.4 If we are unable to rely on legitimate interests or any other ground set out in the GDPR to process your personal data, we will obtain consent from you for the processing.
- 3.5 If we obtain consent from you to do so, we may provide your personal details to third parties so that they can contact you directly in respect of services and/or products in which you may be interested.
- 3.6 You have the right to withdraw your consent to the processing of your personal data at any time. If you would like to withdraw your consent or prefer not to receive any of the above-mentioned information (or if you only want to receive certain information) from us please let us know by emailing us. Please bear in mind that if you object this may affect our ability to carry out the tasks above for your benefit. Withdrawal of your consent won’t affect any processing we have carried out in respect of your personal data prior to you withdrawing consent.
- 3.7 If you wish to have your information removed from our database or if you do not want us to contact you for marketing purposes, please let us know by clicking the “Unsubscribe” option in any email we send to you and providing the details requested or by contacting us via email and we will take steps to ensure that this information is deleted as soon as reasonably practicable.
- 3.8 We will not share, sell or distribute any of the information you provide to us (other than as set out in this policy) without your prior consent unless required to do so by law.
4. Third Party Sites
5. How safe is your information?
- 5.1 Where we have given you (or where you have chosen) a password which enables you to access certain parts of the Website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
- 5.2 Protecting your security and privacy is important to us and we make every effort to secure your information and maintain your confidentiality in accordance with the terms of the Data Protection Legislation. The Website is protected by various levels of security technology, which are designed to protect your information from any unauthorised or unlawful access, processing, accidental loss, destruction and damage.
- 5.3 We will do our best to protect your personal data but the transmission of information via the Internet is not completely secure. Any such transmission is therefore at your own risk.
6. Disclosure of your information
- 6.1 We may share your personal information with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the Companies Act 2006.
- 6.2 We may share your information with selected third parties including:
- 6.2.1 business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you;
- 6.2.2 third parties who may wish to contact you in respect of services and/or products they offer or sell which may be of interest to you, provided we receive your consent to such disclosure; and/or
- 6.2.3 advertisers and advertising networks that require the data to select and serve relevant adverts to you and analytics and search engine providers that assist us in the improvement and optimisation of the Website.
- 6.3 Please note that we may need to disclose your personal information where we:
- 6.3.1 sell any or all of our business or assets or we buy another business or assets in which case we may disclose your personal data to the prospective buyer or seller;
- 6.3.2 are under a legal duty to comply with any legal obligation or in order to enforce or apply our terms and conditions; or
- 6.3.3 need to disclose it to protect our rights, property or safety of our customers or others, including the exchange of information with other companies, organisations and/or governmental bodies for the purposes of fraud protection and credit risk reduction.
- 7. Where we store your personal data
- 7.1 We don’t transfer your personal data outside of the EEA.
- 8. Your rights in respect of your data
- 8.1 There are a number of rights available to you under GDPR:
- 8.1.1 Access to your information
You can ask us to confirm that we process your personal data and provide access to and copies of the information we hold about you by contacting us by email at firstname.lastname@example.org We will process your request to access your information and provide this information to you free of charge unless your request is manifestly unfounded or excessive or repetitive, in which case we are entitled to charge a reasonable fee. We may also charge if you request more than one copy of the same information.
We will provide the information you request as soon as possible and in any event within one month of receiving your request unless there are extenuating circumstances. If we need more information to comply with your request, we’ll let you know.
- 8.1.2 Rectification of your data
If you believe the personal data we hold about you is inaccurate or incomplete, or if any of the information you provide to us changes, please let us know as soon as possible so that we can make the necessary changes to the information we hold for you on our database. If you wish to make any changes to your information, please contact us via email at DSM@proteansoftware.co.uk.
We will comply with your request within one month of receiving it unless we don’t feel it’s appropriate for us to do so in which case we’ll let you know why. We’ll also let you know if we need more time to comply with your request.
- 8.1.3 Right to be forgotten
In some circumstances, you have the right to ask us to delete the personal data we hold about you. This right is available to you:
- where we no longer need your personal data for the purpose for which we collected it;
- where we have collected your personal data on the grounds of consent and you withdraw that consent;
- where you object to the processing and we don’t have any overriding legitimate interests to continuing processing the data;
- where we have unlawfully processed your personal data (i.e. we have failed to comply with GDPR);
- where the personal data has to be deleted to comply with a legal obligation; and
- where the personal data we process relates to the offer of online services to a child.
There are certain scenarios in which we are entitled to refuse to comply with a request. If any of those apply, we’ll let you know.
To request that your information is deleted, please contact us via email at DSM@proteansoftware.co.uk.
8.1.4 Right to restrict/object to processing
In some circumstances, you are entitled to ask us to suppress the processing of your personal data. This means we will stop actively processing your personal data but we don’t have to delete it. This right is available to you:
- if you believe the personal data we hold isn’t accurate – we’ll cease processing it until we can verify its accuracy;
- if you have objected to us processing the data (see below) – we’ll cease processing it until we have determined whether our legitimate interests override your objection;
- if the processing is unlawful; or
- if we no longer need the data but you would like us to keep it because you need it to establish, exercise or defend a legal claim.
You are entitled to object to us processing your personal data:
- if the processing is based on legitimate interests or performance of a task in the public interest or exercise of official authority;
- for direct marketing purposes (including profiling); and/or
- for the purposes of scientific or historical research and statistics.
In order to object, you must have grounds for doing so based on your particular situation. We will stop processing your data unless we can demonstrate that there are compelling legitimate grounds which override your interests, rights and freedoms or the processing is for the establishment, exercise or defence of legal claims.
If you wish to restrict or object to the processing of your information, please contact us via email at DSM@proteansoftware.co.uk.
8.1.5 Data Portability
You have the right to ask us to provide your personal data in a structured, commonly used and machine-readable format so that you are able to transmit the personal data to another data controller. This right only applies:
- to personal data you provide to us;
- where processing is based on your consent or for the performance of a contract (i.e. the right does not apply if we process your personal data on the grounds of legitimate interests); and
- where we carry out the processing by automated means.
We’ll respond to your request as soon as possible and in any event within one month from the date we receive it. If we need more time, we’ll let you know.
8.2 If you have any complaints about our use of your personal data, please contact us. You are also entitled to report any concerns which you may have to a supervisory authority in your jurisdiction. The supervisory authority in the UK is the Information Commissioner’s Office. You can call the ICO on 0303 123 1113 or get in touch via other means as set out on the ICO website at https://ico.org.uk/concerns/